Security Analyst at EXFO monitoring threats and responding to incidents for IT systems. Collaborating with IT teams to enhance cybersecurity measures with diverse client environments.
About the role
- Application Security Analyst focusing on embedding security in software development lifecycle at Nutrien. The role involves collaboration with development teams and managing vulnerabilities.
Responsibilities
- Develop rapport with others by demonstrating an understanding of their concerns, needs, and issues, and build an internal network of relationships that can provide advice and support.
- Consistently deliver quality client services.
- Monitor progress, manage risk, and ensure key stakeholders are informed about progress and expected outcomes.
- Stay abreast of current business and industry trends relevant to global development teams, business operations, and cyber security.
- Assist engagement with DevOps teams in evaluating vulnerability management tools across people, process, and technology.
- Work with engagement teams to own distinct portions of vulnerability management solutions tailored to client environments.
- Perform and control targeted vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls.
Requirements
- It is preferred that you have, or are working on, a bachelor’s degree or certificate in Computer Science, Information Systems, Engineering, Business, or a related field.
- An understanding of the vulnerability management lifecycle and governance.
- Familiarity with security and risk standards including ISO 27001-2, ISO 31000, PCI DSS, NIST, ITIL, COBIT, CVSSv4, and MITRE ATT&CK.
- Hands-on operational experience with vulnerability management tools (e.g., Qualys, Tenable, Snyk, trufflehog pro).
- Understanding of various operating systems (Windows, Unix, MacOS); cloud concepts (secure build images, ephemeral workloads, cloud patching); and networking fundamentals.
- A full understanding of full stack application development and mobile development on iOS and Android.
- Deep expertise in writing and running queries to prepare metrics reports and dashboards.
- Good understanding of scanning tools for APIs.
- Ability to report issues clearly and succinctly and adapt communication styles to demonstrate vulnerability severity to technical stakeholders and leadership.
- Knowledge of general cybersecurity concepts and methods including secure configuration management, data protection and privacy, security monitoring, incident response, governance, risk and compliance, patch management, and enterprise security strategies and architecture.
- Strong written and verbal communication skills with the ability to interact with senior management and technical SMEs.
- Ability to examine issues both strategically and analytically.
- Experience working in cloud and container environments.
- Penetration testing experience.
- Application security experience.
- Automation and scripting experience (e.g., Python, Bash).
- Enterprise application development experience.
- Financial services sector regulatory experience.
- Attack Surface Management experience.
Benefits
- Nutrien is an equal opportunity employer.
- We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.
- Background check required.
- Substance test may be required.
- Several employment initiatives and events including recruitment fraud alert and application tracking.
- Opportunities for career growth.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Provide IT support and security analysis for MaRS users. Diagnosing and resolving technical issues while ensuring secure access to IT services and applications.
SAP Security Analyst and Junior Security Analyst roles ensuring ERP system security for the Government of Alberta. Lead security controls, collaborate with teams and resolve access issues.
LP
Cybersecurity Compliance Analyst
LinkedIn Recruiter Post
Permanent, full - time Cybersecurity Compliance Analyst role. Hybrid work in Edmonton, AB, leading compliance and governance activities.
LP
Cybersecurity Consultant
LinkedIn Recruiter Post
Cybersecurity Consultant (PCO or project management exp) 5 - month contract with a top 5 bank. Hybrid 2 days per week on site.
LP
PCO – Cybersecurity
LinkedIn Recruiter Post
Hiring PCO - Cybersecurity in Downtown Toronto (hybrid). Requires 3+ years in cybersecurity, audit, or compliance.
Join TD as an Information Security Analyst focusing on audit response and controls implementation. Contribute to enhancing compliance and security solutions in an agile environment.
IT Security Analyst monitoring Stantec’s systems for signs of intrusion and security incidents. Collaborating with IT Security team for compliance and remediation effort.
Security Analyst safeguarding networks and systems at PointClickCare using AI for enhanced security operations and incident response. Responsible for implementing security measures to protect data centers and cloud deployments.
LP
Cyber Security Analyst
LinkedIn Recruiter Post
6 - month contract, 3 days onsite in Scarborough. Focus on vulnerability management, incident response, and security gap analysis across Azure AD, O365, and on - prem.