Senior Information Security Analyst
Doing business to business, person to person. Payworks is a leading workforce management solutions provider and multi-year winner of the Canada’s Best Managed Companies program. We are proud to be Canadian owned and operated as well as committed to developing world-class products and providing a progressive workplace culture where Doing Right by People is our purpose.
With clients of all sizes from coast to coast and more than 600 employees, we currently have an exciting opportunity on our IT Security team for the right candidate. Because when it comes to great people, there’s always room for one more.
DOING RIGHT BY PEOPLE – IT’S WHAT WE DOYou are motivated, energetic, driven for success and a results-oriented team player. As a Senior Information Security Analyst with Payworks, you will leverage your analytical mindset and sound judgment to navigate your daily responsibilities with precision. Your day-to-day tasks will involve swiftly identifying and addressing risks with meticulous attention to detail and a strong technical and investigative approach. This will include monitoring Payworks' IT infrastructure, responding to alerts, and handling tickets and other requests from outside the Security Team.
With your knowledge of industry leading security technologies and best practices in security engineering and architecture, you will be the first line of defense against information security threats. Acting as a subject matter expert on all things security, you will play a key role in ensuring information security principals are included in the design and implementation of systems to defend Payworks against potential threats.
WHY YOU SHOULD CHOOSE PAYWORKS- Comprehensive employer paid benefits for you and your family and excellent pension plan with employer contributions.
- Plenty of professional development opportunities.
- Community-minded culture – Receive two paid days per year to volunteer and lots of opportunity to “Pay it Forward”.
- Time and flexibility to meet your needs – Hybrid work model with flexible work options, plus 3 weeks vacation to start, flex time and parental leave benefits.
- Cool perks – Annual wellness subsidy, Costco membership, fun office environment and events, and more!
- Innovate and administer intrusion detection/prevention and access control systems with a focus in network, privileged access and identity management systems.
- Evaluate, deploy, and manage security tools and technologies.
- Explore and integrate various security solutions and controls in both on premise and cloud environments.
- Perform third party risk assessments, conduct regular security audits and present reports to stakeholders at all levels of the organization.
- Support and respond to security-related incident tickets and events, develop preventative solutions and enforce security policies and procedures.
- Support incident response processes and procedures, oversee and participate in regular tabletop exercises and lead efforts to make improvements to security measures.
- Embrace and champion emerging technology, security trends, global developments and best practices, and share your insights through security awareness training.
- Contribute to projects by ensuring security requirements are met and development aligns with established policies, standards, and guidelines.
- A University Degree or College degree within the IT Security field and approximately 5 years of previous experience working in a security operations centre.
- Proven experience providing highly effective security event triage, incident response and forensic analysis and vulnerability management.
- Strong understanding of security best practices in network communications, common protocols and services, risks and implementation.
- Expertise in security by design, security engineering and architecture.
- Excellent analysis, organizational, communication and documentation skills.
- Cloud infrastructure and/or security experience considered an asset.
- Experience in using tools or languages, such as PowerShell, ReGex, or others is considered an asset.
- Familiarity with tools and techniques for intrusion prevention and vulnerability management.
- Experience with any of the following vendors, tools or products considered an asset: LogRhythm, TCP dump, Wireshark, Palo Alto Networks Firewalls, BeyondTrust, Cisco DUO, Cortex XDR, BitSight, OneTrust, McAfee, Nessus, WhiteHat Sentinel Dynamic, Burp Suite, Rapid7 products, Proofpoint products, and NetScaler Web Application Firewalls.
- SANS, ISC2, ISACA, Offensive Security, CompTIA, EC-Council and CISCO certifications are an asset.
- Openness to working flexible hours, including after hours and weekends, on an ad-hoc basis as required.
We are proud to support a Flexible Work Plan that recognizes the diverse needs and lifestyles of our people. The Senior Information Security Analyst has the option to work fully out of a Payworks office or on a hybrid work model, working in the office at least three (3) days a week.
Payworks is committed to providing an inclusive, accessible environment, and collaborating with employees, clients and guests to identify and effectively remove barriers, in a manner that respects the principles of independence, dignity, integration, reasonable accommodation and equal opportunity. Payworks welcomes and encourages applications from all persons. Individuals applying for employment with Payworks may request accommodations at all stages of recruitment and employment from Human Resources.
Please visit our careers page to see more job opportunities.
Apply for this Position
OR