JOB DESCRIPTION
Reporting to the Security Operations Manager, the Senior Cyber Security Analyst is responsible for deployment and management of security operations tools and platforms with focus on cloud native or third-party cloud security solutions. This role actively works with partners within and beyond the Enterprise Security Team to identify requirements, deploy necessary changes and to provide timely support to system users. The role will also be collaborating with Enterprise Architecture team and Cyber Security Risk Architect to review the infrastructure & microservices network and data architecture and identify vital security detection and visibility controls and requirements. In addition, this role is responsible for building and maintaining operational KPIs (Key Performance Indicators) for the tools within the portfolio. This role maybe given responsibilities in other areas from time to time.
Security Operations Platform: Responsibilities in this position will be to maintain and operate core security platforms for CSPM (Cloud Security Posture Management) and cloud workload security and to ensure availability in accordance with published SLAs (Service Level Agreement) and quality benchmarks.
Projects: The Security Analyst also works on and support delivering new projects, ensuring that the delivery is aligned with stakeholders' requirements, end-to-end processes are defined and detailed, monitoring and meaningful metrics defined and deployed in alignment with Teck’s operational excellence.
Dimensions: The Security Analyst will lead and act as the primary analyst for a group of platforms. This means being decisive, acting independently as well as managing and collaborating on assigned tasks. This will also involve proposals, and execution of action plans for improvements to the operations platforms, to build and maintain “capability” and “value” which aligns with business objectives. The Security Analyst will be required to ensure that documentation is up to date and complete, assist with sprint planning (Agile Project Management) and ensure the tools meet the needs of the users. As such, the analyst must possess expert technical skills and the highly developed communication skills necessary to interact with a wide variety of colleagues at all levels.
Key Accountabilities
- Maintain Security Operations platforms to the defined standards, SLAs, and quality benchmarks
- Propose, plan, and conduct improvements and implement mitigations to improve service quality and SLAs for such platforms
- Participate and lead technical activities for projects and initiatives
Experience Required
- 5+ years working in a security operations/security engineering role with focus on Threat and Vulnerability management
- 2+ years in a lead role in Cyber Security
- Hands-on experience creating technical documentation and diagrams
- Hands-on experience with establishing and maintaining policies and guardrails for cloud resources and workloads
- Hands-on experience with Cloud platforms such as Microsoft Azure, scripting language and cloud security, including but not limited to:
- Tenant Security,
- AKS Security,
- Containers & Mesh Networking Security
- Application Gateway & WAF (Web Application Firewall),
- Security Groups and VNET Segmentations,
- Security Analytics,
- Encryption & Keys Management
- Working experience with agile framework and Azure DevOps and CI/CD pipeline security
- Ability to translate technical challenges and security findings with written and oral reports
- 2+ years’ experience building and maintaining Security KPIs
- Degree/Diploma, preferably with a focus on Information Security
- CCSP, Azure Security Engineer Associate or equivalent certification (required)