Atlantis IT group -
45 Jobs
Toronto, ON
Role: Cyber security- SAE - Splunk, Palo Alto XSOAR Location: Toronto XSOAR:
1. Incident response management: Designing and implementing processes and procedures for efficient response to cybersecurity incidents. Collaborating with cross-functional teams to ensure prompt identification, containment, and remediation of security threats.
2. Automation and orchestration: Developing and maintaining playbooks (Specially on Palo Alto XSOAR), scripts, and workflows to automate routine security tasks, streamline incident response processes, and improve efficiency. Integrating various security tools and technologies to create a unified platform for threat detection and response.
3. Threat intelligence analysis: Analyzing and interpreting threat intelligence data from various sources to identify potential risks and vulnerabilities. Researching emerging threats and trends to proactively update security measures and stay ahead of evolving cybersecurity landscape.
4. Security tool management: Evaluating, implementing, and maintaining security tools and technologies to enhance security posture. Conducting regular reviews of existing security infrastructure and recommending necessary upgrades or modifications to optimize performance.
5. Strong knowledge of cybersecurity principles, practices, and technologies.
6. Experience in implementing and managing security automation and orchestration platforms (e.g., Phantom, Demisto).
7. Proficiency in scripting and programming languages (e.g., Python, PowerShell).
8. Familiarity with security frameworks and standards (e.g., MITRE, NIST, ISO 27001).
9. Ability to analyze and interpret complex threat intelligence data.
10. Excellent communication and interpersonal skills for effective collaboration with stakeholders at all levels of the organization.
11. Strong problem-solving and critical-thinking abilities to quickly assess and respond to security incidents.
12. Knowledge of cloud security, network security, and data protection mechanisms.
13. Experience with security incident event management (SIEM) systems and threat intelligence platforms.
14. Knowledge of regulatory requirements and compliance frameworks relevant to the industry (e.g., GDPR, PCI-DSS).
1. Incident response management: Designing and implementing processes and procedures for efficient response to cybersecurity incidents. Collaborating with cross-functional teams to ensure prompt identification, containment, and remediation of security threats.
2. Automation and orchestration: Developing and maintaining playbooks (Specially on Palo Alto XSOAR), scripts, and workflows to automate routine security tasks, streamline incident response processes, and improve efficiency. Integrating various security tools and technologies to create a unified platform for threat detection and response.
3. Threat intelligence analysis: Analyzing and interpreting threat intelligence data from various sources to identify potential risks and vulnerabilities. Researching emerging threats and trends to proactively update security measures and stay ahead of evolving cybersecurity landscape.
4. Security tool management: Evaluating, implementing, and maintaining security tools and technologies to enhance security posture. Conducting regular reviews of existing security infrastructure and recommending necessary upgrades or modifications to optimize performance.
5. Strong knowledge of cybersecurity principles, practices, and technologies.
6. Experience in implementing and managing security automation and orchestration platforms (e.g., Phantom, Demisto).
7. Proficiency in scripting and programming languages (e.g., Python, PowerShell).
8. Familiarity with security frameworks and standards (e.g., MITRE, NIST, ISO 27001).
9. Ability to analyze and interpret complex threat intelligence data.
10. Excellent communication and interpersonal skills for effective collaboration with stakeholders at all levels of the organization.
11. Strong problem-solving and critical-thinking abilities to quickly assess and respond to security incidents.
12. Knowledge of cloud security, network security, and data protection mechanisms.
13. Experience with security incident event management (SIEM) systems and threat intelligence platforms.
14. Knowledge of regulatory requirements and compliance frameworks relevant to the industry (e.g., GDPR, PCI-DSS).