Security Analyst at EXFO monitoring threats and responding to incidents for IT systems. Collaborating with IT teams to enhance cybersecurity measures with diverse client environments.
About the role
- Security Analyst overseeing vulnerability management within Intact Financial Corporation. Assessing risks and improving remediation processes through Python automation.
Responsibilities
- Join our vulnerability management team as an experienced security analyst.
- You will be an expert in assessing and tracking infrastructure vulnerabilities, technology obsolescence, and security configurations, leveraging Python automations to accelerate analysis, prioritization, and remediation.
- Your primary mission is to analyze risks, orchestrate remediation, and industrialize the process through Python scenarios and tools.
- Serve as the principal expert in infrastructure vulnerabilities, software obsolescence management, and configuration standards (CIS Benchmarks), with a focus on Python-based automation.
- Analyze, prioritize, and triage threats (CVE/CVSS, obsolescence, configuration drift) and develop Python workflows to correlate findings, enrich data (platform APIs), and generate reports.
- Collaborate closely with system administrators and application teams to interpret analysis results and validate remediation plans, enabling these steps through automation.
- Coordinate remediation with systems/network/cloud and application teams; remove technical blockers; manage exceptions and risk compensations, measuring progress via Python-generated dashboards.
- Ensure adherence to security timelines by setting up automated alerts, metrics, and tracking.
- Advise technical teams on remediation best practices and explain the impact of identified risks, relying on evidence and indicators from Python-developed tools.
- Continuously improve the process (lightweight automations and data pipelines), aligned with CIS Benchmarks, NIST CSF, ISO 27001, and internal governance.
Requirements
- Studies in computer science, cybersecurity, IT management, or equivalent experience.
- Minimum of 5 years of relevant experience in information security as a security analyst (vulnerability management, remediation coordination, risk prioritization).
- Mastery of CVE, CVSS, technology obsolescence, and configuration standards (CIS Benchmarks).
- Strong experience in Python development applied to security: scripting, platform APIs (Tenable, Qualys, Rapid7, CrowdStrike, Prisma Cloud), data transformation (CSV/JSON), automated reporting and dashboards.
- Proven experience in project coordination, priority management, and tracking complex cases involving multiple teams.
- Good understanding of operating systems and networks.
- No Canadian work experience required however must be eligible to work in Canada.
- For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country
Benefits
- Flexible work arrangements and a hybrid work model
- Possibility to purchase up to 5 extra days off per year
- Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
- Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Provide IT support and security analysis for MaRS users. Diagnosing and resolving technical issues while ensuring secure access to IT services and applications.
SAP Security Analyst and Junior Security Analyst roles ensuring ERP system security for the Government of Alberta. Lead security controls, collaborate with teams and resolve access issues.
LP
Cybersecurity Compliance Analyst
LinkedIn Recruiter Post
Permanent, full - time Cybersecurity Compliance Analyst role. Hybrid work in Edmonton, AB, leading compliance and governance activities.
LP
Cybersecurity Consultant
LinkedIn Recruiter Post
Cybersecurity Consultant (PCO or project management exp) 5 - month contract with a top 5 bank. Hybrid 2 days per week on site.
LP
PCO – Cybersecurity
LinkedIn Recruiter Post
Hiring PCO - Cybersecurity in Downtown Toronto (hybrid). Requires 3+ years in cybersecurity, audit, or compliance.
Join TD as an Information Security Analyst focusing on audit response and controls implementation. Contribute to enhancing compliance and security solutions in an agile environment.
IT Security Analyst monitoring Stantec’s systems for signs of intrusion and security incidents. Collaborating with IT Security team for compliance and remediation effort.
Security Analyst safeguarding networks and systems at PointClickCare using AI for enhanced security operations and incident response. Responsible for implementing security measures to protect data centers and cloud deployments.
LP
Cyber Security Analyst
LinkedIn Recruiter Post
6 - month contract, 3 days onsite in Scarborough. Focus on vulnerability management, incident response, and security gap analysis across Azure AD, O365, and on - prem.