Senior Security Analyst
Maximus
Position Summary
We are seeking a highly skilled and experienced Senior Security Analyst specializing in Incident Response to join our security team. The successful candidate will play a key role in safeguarding our systems, networks, and data. The position requires a strong understanding of cybersecurity best practices, government compliance requirements, and hands-on experience in identifying, analyzing, and responding to security threats.
Your typical week at Maximus Lead and coordinate the response to cybersecurity incidents, including detection, investigation, containment, eradication, recovery, and post-incident analysis. Monitor and analyze security alerts and reports from various sources (SIEM, IDS/IPS, M365, firewalls, endpoint protection, etc.) to identify potential threats or vulnerabilities. Conduct analysis of affected systems to determine the cause and extent of security breaches. Provide security expertise for cloud environments (e.g., Azure, AWS, and Google Cloud)Collaborate with internal teams, including IT, legal, and compliance, as well as external stakeholders, such as law enforcement and third-party security vendors, to resolve incidents. Monitor and assess the security posture of Microsoft 365 and other cloud-based services, implementing best practices to ensure data protection and compliance.Develop, maintain, and continuously improve the incident response plan, ensuring alignment with federal and provincial security policies and standards Perform root cause analysis and recommend corrective actions to prevent future incidents. Create detailed incident reports and provide regular updates to management and government clients. Conduct threat hunting activities to identify suspicious behavior and unknown threats before they can escalate. Stay current on the latest cybersecurity threats, vulnerabilities, and regulatory requirements.Train and mentor junior security analysts on incident response processes, techniques, and best practices
What you offer usKnowledge Skills and Abilities
Knowledge of security frameworks: Strong understanding of industry security frameworks such as NIST Cybersecurity Framework (CSF) and ISO/IEC 27001:2022.Technical skills: Proficiency in security technologies (IDS/IPS, firewalls, EDR), forensic tools, and scripting languages (Python, PowerShell). Communication skills: Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders. Problem-solving: Strong analytical skills with a proven ability to think critically in high-pressure situations. Additional Requirements:
Willingness to participate in an on-call rotation for after-hours incident response. Ability to work independently and in a team-oriented environment.OtherMust hold or be eligible for a Government of Canada security clearance at the Secret level.
Education and ExperienceMinimum 5-7 years of experience in cybersecurity, with at least 3 years in incident response roles. A Degree/Diploma, or other related education in Computer Science, Information Security, or equivalent combination of education and experience. Certifications: Relevant cybersecurity certifications such as CISSP, GCIA, GCIH, CEH, OSCP, or CISM are strongly preferred.
What we offer you
We value your work, which enables us to continuously raise the bar on how we can best serve citizens worldwide. Maximus Canada offers the following:
Competitive market-based salariesComprehensive employer-paid benefitsGenerous paid time off package Group Retirement Savings PlanHybrid and remote work environments in CanadaAnnual paid bonus based on overall company performance Employee appreciation events
Maximus Global Core Values
Accountability - Accepting responsibility to solve problems and rise to each challengeCollaboration - Partnering to instill trust and working as oneCompassion - Empowering humanity by applying empathy and insight to every interactionCustomer Focus - Cultivating an authentic desire to help others succeedInnovation - Embracing change and championing new ways forwardRespect - Valuing the work we do, who we do it with, and the people we serveWe will be accepting applications until 11:59 on February 05, 2025.
Please note that while all applications are appreciated, only those candidates selected for an interview will be contacted. (No agencies please)
EEO Statement
Maximus is passionate about our employees and place their well-being at the center of our people strategy. We are committed and proud to build a workforce that reflects the communities we serve. We value diversity, equity and inclusion and invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, ethnic and cultural origins, sexual orientations, veterans and gender identities recognizing that this is paramount for the growth and success of our organization.
We are seeking a highly skilled and experienced Senior Security Analyst specializing in Incident Response to join our security team. The successful candidate will play a key role in safeguarding our systems, networks, and data. The position requires a strong understanding of cybersecurity best practices, government compliance requirements, and hands-on experience in identifying, analyzing, and responding to security threats.
Your typical week at Maximus Lead and coordinate the response to cybersecurity incidents, including detection, investigation, containment, eradication, recovery, and post-incident analysis. Monitor and analyze security alerts and reports from various sources (SIEM, IDS/IPS, M365, firewalls, endpoint protection, etc.) to identify potential threats or vulnerabilities. Conduct analysis of affected systems to determine the cause and extent of security breaches. Provide security expertise for cloud environments (e.g., Azure, AWS, and Google Cloud)Collaborate with internal teams, including IT, legal, and compliance, as well as external stakeholders, such as law enforcement and third-party security vendors, to resolve incidents. Monitor and assess the security posture of Microsoft 365 and other cloud-based services, implementing best practices to ensure data protection and compliance.Develop, maintain, and continuously improve the incident response plan, ensuring alignment with federal and provincial security policies and standards Perform root cause analysis and recommend corrective actions to prevent future incidents. Create detailed incident reports and provide regular updates to management and government clients. Conduct threat hunting activities to identify suspicious behavior and unknown threats before they can escalate. Stay current on the latest cybersecurity threats, vulnerabilities, and regulatory requirements.Train and mentor junior security analysts on incident response processes, techniques, and best practices
What you offer usKnowledge Skills and Abilities
Knowledge of security frameworks: Strong understanding of industry security frameworks such as NIST Cybersecurity Framework (CSF) and ISO/IEC 27001:2022.Technical skills: Proficiency in security technologies (IDS/IPS, firewalls, EDR), forensic tools, and scripting languages (Python, PowerShell). Communication skills: Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders. Problem-solving: Strong analytical skills with a proven ability to think critically in high-pressure situations. Additional Requirements:
Willingness to participate in an on-call rotation for after-hours incident response. Ability to work independently and in a team-oriented environment.OtherMust hold or be eligible for a Government of Canada security clearance at the Secret level.
Education and ExperienceMinimum 5-7 years of experience in cybersecurity, with at least 3 years in incident response roles. A Degree/Diploma, or other related education in Computer Science, Information Security, or equivalent combination of education and experience. Certifications: Relevant cybersecurity certifications such as CISSP, GCIA, GCIH, CEH, OSCP, or CISM are strongly preferred.
What we offer you
We value your work, which enables us to continuously raise the bar on how we can best serve citizens worldwide. Maximus Canada offers the following:
Competitive market-based salariesComprehensive employer-paid benefitsGenerous paid time off package Group Retirement Savings PlanHybrid and remote work environments in CanadaAnnual paid bonus based on overall company performance Employee appreciation events
Maximus Global Core Values
Accountability - Accepting responsibility to solve problems and rise to each challengeCollaboration - Partnering to instill trust and working as oneCompassion - Empowering humanity by applying empathy and insight to every interactionCustomer Focus - Cultivating an authentic desire to help others succeedInnovation - Embracing change and championing new ways forwardRespect - Valuing the work we do, who we do it with, and the people we serveWe will be accepting applications until 11:59 on February 05, 2025.
Please note that while all applications are appreciated, only those candidates selected for an interview will be contacted. (No agencies please)
EEO Statement
Maximus is passionate about our employees and place their well-being at the center of our people strategy. We are committed and proud to build a workforce that reflects the communities we serve. We value diversity, equity and inclusion and invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, ethnic and cultural origins, sexual orientations, veterans and gender identities recognizing that this is paramount for the growth and success of our organization.
Confirm your E-mail: Send Email
All Jobs from Maximus