A prestigious Finance Tech proprietary trading firm is hiring for a SOC Analyst
The position is located in Downtown Montreal (Hybrid Environment)
Competitive based Salary + Performance bonus
You'll be joining the Global Cybersecurity Team, and further continue the efforts to improve the security posture.
Job Responsibilities/Duties:
â–ª Monitor alerts for potential security incidents and requests for information. This includes, but is not limited to monitoring of real-time channels, tools, dashboards, periodic reports, chat sessions, and tickets.
â–ª Follows incident-specific protocols or procedures to perform a basic triage of potential security incidents to determine their nature and priority and eliminate obvious false positives and process requests for information.
â–ª Escalate potential security incidents to senior analysts and implement countermeasures/mitigating controls.
â–ª Serve as a subject matter expert in at least one security-related area (e.g. Malware re-engineering, Cloud Security, Phishing, Deception etc)
â–ª Coordinate with stakeholders with supporting third-party security service providers to triage alerts, events, or incidents. â–ª Monitor and analyze SIEM to identify security issues for remediation.
â–ª Create SIEM policy rulesets.
â–ª Recognize all attempts of potential, successful, and unsuccessful types of instructions and compromises
â–ª Perform thorough reviews and analyses of relevant event detail and summary information.
â–ª Interface with a variety of customers in a polite, positive, and professional manner.
â–ª Create documentation on all actions taken in a ticketing system
Requirements:
â–ª Bachelor's degree in cyber security or other related disciplines
â–ª 3-6 Years with a minimum of three years in the Information Security / Cybersecurity domain with a focus on security event monitoring and analysis in the Financial Services Industry
â–ªWilling to work on Saturday/Sunday with other days being flexible (This is still a full-time position); but its imperative that we have weekend coverage for the Information Security Team to cover Crypto Trading against threats!
â–ª Analyzing detected security events
â–ª Performing triage of potential security incidents
â–ª Experience with the following: SIEM, IDS/IPS, Network/Host based firewalls, data leakage prevention (DLP).
â–ª Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.
â–ª Scripting Experience in Python, Bash, or PowerShell
â–ª Willing to work on any of three shifts to offer 24 hours support service.
Qualifications (Nice to Haves):
â–ª Master's degree in Cyber Security or other related disciplines
â–ª Certifications: Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH).
Additional Qualifications:
â–ª Understanding of common network devices such as routers, switches.
â–ª Understanding of basic networking protocols such as IP, DNS, HTTP.
â–ª A strong desire to understand the what / why / how of security incidents.
