Information Security Analyst

Summary

Join PointClickCare as an Information Security Analyst and safeguard our networks, data centers, and cloud deployments. You will be the primary point of contact for daily security monitoring, incident reporting, and vulnerability management. Collaborate with various teams to remediate security issues and improve our overall security posture. Lead security projects, participate in audits and investigations, and contribute to the development and maintenance of a proactive company-wide security presence. This role requires strong technical skills, experience with various security tools, and excellent analytical and problem-solving abilities. You will also be responsible for reporting key security metrics and conducting threat risk assessments.

Requirements

• College diploma or university degree in the field of computer science OR relevant work experience as an Information Security Analyst
• Proven experience with security software, such as: SIEM, Vulnerability Scanning, Advance Endpoint Protection (Anti-virus/Anti-Malware), Privilege Access Management, Data Loss Prevention solutions, Cloud Security Posture Management, and Asset Management
• Extensive working knowledge of information security and vulnerabilities/threats, security best practices, tools, and techniques, including encryption
• Working technical knowledge of IT technical environments with a strong understanding of IP, TCP/IP, network administration protocols, Access Control methods, WAFs, Firewalls, and virtualized access control solutions (e.g., Network Security Groups)
• Understanding/working knowledge of Windows, Active Directory, Group Policy, DNS, and Apple operating systems
• Critical thinking skills, detail oriented, well developed troubleshooting, analytical and problem-solving skills
• Good working knowledge of MS Office, MS Project, MS Excel and Visio
• Team player with ability to work autonomously and collaboratively
• Ability to prioritize, and re-prioritize work as required
• Solid written & verbal communication

Responsibilities

• Primary point of contact to facilitate with the daily monitoring, assessing and reporting of security incidents from the SIEM platform
• Assist with ongoing Vulnerability Management program to perform routine vulnerability scans and working closely with SaaS Operations and Corporate Technology teams to coordinate remediation of identified findings
• Provide advice and apply your experience to help tune alerting to reduce false positives
• Actively assist with Security Incident Response process and support security investigations by documenting findings and root causes as and when needed
• Manage processes relating to the installation, maintenance and operation of security infrastructure including SIEM, anti-virus, DLP, PAM, IAM, etc
• Work closely with key business groups across the organization to develop and maintain a proactive company-wide security presence
• Act as a technical lead in security related projects/initiatives such as new security solutions to improve the overall security posture of PointClickCare
• Assist with periodic security audits on current PointClickCare infrastructure, and work with appropriate team(s), such as Security, Corporate Technology, SaaS Operations and other departments to remediate any vulnerabilities found
• Participating in security investigations and compliance reviews, as requested by the GRC team
• Assist with the evaluation of security tools and processes in conjunction with Director, Security Operations. Recommend improvements to security tools, configurations, processes and policies
• Report monthly security KPIs, change requests, incidents and threats/events
• Perform ad hoc threat risk assessment (TRA) on infrastructure and systems as well as cloud-based solutions and facilitate remediation tasks with other operational teams
• Researching and assessing new threats and security alerts and determining relevance to PointClickCare environments and staff
• Ability to work independently, engage leadership as needed, and be proactive in advancing PointClickCare’s security posture
• Complete other duties as assigned

Preferred Qualifications

• 1-3 years’ experience as a Security Analyst or similar role
• Certifications desired are: Security+, CompTIA Security are desired but not mandatory
• AWS or Azure Cloud Certifications are desired
• Associate of (ISC)2 is desired
• Knowledge of relevant security standards such as NIST, ISO and HITRUST and privacy legislation such as PHIPPA, HIPPA, PIPEDA
• High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity
• Excellent analytical skills, ability to manage multiple projects under strict timelines, as well as the ability to work well in demanding, dynamic environment and meet overall infrastructure and data protection objectives
• Experience with AI enabled security tooling or methods of utilizing AI in analysis of log or vulnerability data is an asset

Benefits

• Retirement Plan Matching
• Flexible Paid Time Off
• Wellness Support Programs and Resources
• Parental & Caregiver Leaves
• Fertility & Adoption Support
• Continuous Development Support Program
• Employee Assistance Program
• Allyship and Inclusion Communities