IT Security Analyst (JR0000016887)
- Full Time
Support the IT infrastructure with specific emphasis on Information Security. Assure the confidentiality, integrity and availability of all data and IT infrastructure components. Research, design and implement hardware and software security solutions.
Duties and Responsibilities:
•Plan, implement and oversee the operation of the University information security protection program.
•Manage response to security incidents (e.g. data breaches). Aggregate, correlate and analyze data.
•Audit to ensure compliance with established regulations, standards, policies, procedures, and configuration security guidelines.
•Manage information security vendor assessments, security attestations, re-certifications, audits, risk assessments, security testing.
•Design, implement and integrate security information and event management (SIEM), log management, anomaly detection, and configuration and vulnerability management.
•Design and implement information security solutions/infrastructure.
•Manage information security risks. Assess risk strategies to manage risk. Provide solutions for remediation and compensating controls.
•Plan and implement identity and access management/governance.
•Review and analyze security device configurations and policies.
•Participate in defining, implementing and measuring security awareness and training.
Education: Undergraduate Degree
Experience: Three (3) years’ related experience
Desired: Certification: CISSP, or CISA, or master’s degree in Information Systems Security (MASc) or Certificate in Security Analysis and Information System from HEC.
Background checks: Criminal background and financial (annual)
Oncall rotation may be required.
- Change Agility, Level B
- Resourcefulness, Level B
- Teaming, Level B
- Managerial Courage, Level A
- Self-Awareness, Level B
- Client Service, Level B
- Performance Orientation, Level B
Skills & Expertise:
•Possess breadth of knowledge of IT and information security concepts, practices and standards, networks, data, systems, databases, applications and identities.
•Possess expertise in identity and access governance/management, network/data security, protection and countermeasures, risk management, auditing, incident response, forensics, and security/penetration testing.
•Demonstrated mastery of security tools.
•Experience in programming, batch processing. SQL Language and database administration is a definite asset.
•Demonstrated business acumen, process-oriented thinking, communication skills, project management, time management, self-reliance and strong technical writing skills.
•Well organized with ability to prioritize to meet regular deadlines.
•English and French, spoken and written.
Minimum Education and Experience:
Bachelor’s Degree 3 Years Related Experience /
(MPEX Grade 05) $64,210.00 – $96,310.00
Hours per Week:
33.75 (Full time)
Manager IT Info Security
McGill University hires on the basis of merit and is strongly committed to equity and diversity within its community. We welcome applications from racialized persons/visible minorities, women, Indigenous persons, persons with disabilities, ethnic minorities, and persons of minority sexual orientations and gender identities, as well as from all qualified candidates with the skills and knowledge to productively engage with diverse communities. McGill implements an employment equity program and encourages members of designated groups to self-identify. Persons with disabilities who anticipate needing accommodations for any part of the application process may contact, in confidence, email@example.com.