IT Security Analyst

Job Posting

Halifax Regional Municipality (HRM) is inviting applications for the permanent, full-time position of IT Security Analyst in Information Technology.

Halifax Regional Municipality (HRM) is committed to reflecting the community it serves and recognizing Diversity and Inclusion as one of the Municipality's core values. We have an Employment Equity Policy and we welcome applications from African Nova Scotians and Other Racially Visible Persons, Women in occupations or positions where they are underrepresented in the workforce, Indigenous/Aboriginal People, Persons with Disabilities and 2SLGBTQ+ Persons. Applicants are encouraged to self-identify on their electronic application.

Reporting to the Manager, Cybersecurity, the IT Security Analyst is an information security expert responsible for designing, implementing, maintaining, and administering all IT security systems and their associated Hardware/Software, including firewalls, intrusion detection systems, cryptography systems, proxy systems, remote access solutions, and anti-virus software solutions to mitigate risk and maximize security, service availability, efficiency and effectiveness. This position will assist with the development, implementation, and maintenance of IT security policies, practices and procedures to ensure security of the data and technology infrastructure. This includes developing and supporting security initiatives, analyzing and resolving security breaches and vulnerability issues in a timely fashion, and overseeing vulnerability, user activity audits and assessments as required. This position will be responsible for effectively communicating what we are doing and the rationale for it, both proactively and reactively during a security breach.

The duties also include participation in the establishment and implementation of a comprehensive security program aimed at preventing unauthorized access to municipal data, information, systems and supporting infrastructure. This role will also provide specialized expertise and guidance in assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect the Municipality's resources.

DUTIES AND RESPONSIBILITIES:

• Design, implement, maintain, administer, and upgrade as needed all security related systems and their associated hardware and software through their life cycle including firewalls, intrusion detection systems, cryptography systems, proxy servers, remote access solutions, and anti-virus software solutions that mitigate risk and maximize security, service availability, efficiency and effectiveness
• Assist with the development, implementation, maintenance, and enforcement of security strategies, policies, practices, procedures, standards, baselines, and associated plans for the enterprise security model based on accepted security industry standards (i.e., PCI, ISO, CobiT, etc.)
• Assist the Information Security Officer with the creation and implementation of the system of General Computing Controls (GCC), Key Computing Controls (KCC), PCI Computing Controls (PCI) and Risk Governance Framework (RGF)
• Establish and implement a comprehensive security program (including patch management, anti-virus/anti-malware protection, and security awareness training) aimed at preventing unauthorized access to information, IT technology or other sensitive assets of the municipality which may result in disclosure, removal, modification or interruption of the Municipality's valuable assets.
• Establish and administer contracts for all security related activities (i.e., Threat Risk Assessments, PCI Scans, etc.)
• Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats.
• Performs real-time analysis and correlation of logs/events and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Document findings and conform to processes related to security monitoring. Report to management on recurring risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance.
• Maintain currency with emerging security alerts (SANS Top 20 Critical Security Controls and OWASP Top 10), trends and issues, and recommend/conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts and educate executive and management teams on their relative importance and financial impact.
• Executes all IT security related investigations and forensic review/analysis of IT assets and resources assigned to staff and consultants under investigation and provides ongoing communication with senior management determining the cause of the security incident and preserving evidence for potential legal action when required.
• Maintain inventory of risks related to IT identified during audits, quarterly attestations or project assessments.
• Participates in all HRM security compliance activities that include but not limited to: Security and Access Auditing requirements and implementation, PCI Assessments, Privacy Impact Assessments, Threat Risk Assessments, Business Continuity Plans, and Disaster Recovery Planning.
• Implements prompt remediation actions/activities to be taken to address security audit recommendations and known security vulnerabilities in conjunction with other staff.
• Participates in assuring HRM's continued PCI compliance in collaboration with key stakeholders in IT and the business units.
• Create, monitor and maintain reporting mechanisms to report on audit/activity logs, security compliance, security breaches, vulnerabilities, etc.
• Analyze security breaches to determine their root cause
• Create, test, and implement network disaster recovery plans
• Install firewalls, data encryption and other security measures
• Recommend security enhancements and associated purchases
• Work closely with IT staff on corporate technology deployment to fully secure information, computers, networks, and server infrastructure to ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise IT resources.
• Provide advice and direction to business units and staff regarding cybersecurity trends, security solutions for traditional, IoT, and augmented intelligence solutions, security vulnerabilities, and remediation actions/activities.
• Work with the Contract Manager to ensure that information security requirements are included in contracts.
• May perform other related duties as assigned.

QUALIFICATIONS:

Education & Experience:

• Undergraduate degree in Computer Science or Information Technology
• A professional designation in information technology risk and controls such as the CISA, CISM, CISSP, GIAC, CompTIA Security+, GCED, GCES, IAAP, etc. designations
• Minimum 5 years of experience in the information technology security field
• Experience with any combination of the following: PCI DSS, ISO 27001 Maturity Model, SOC2 and CobiT framework
• Experience with risks and controls in the IT processes of Governance, Security, Systems Development, Change Management and Production Operations & Support. Documentation of controls, evaluating their effectiveness and developing and executing tests of the controls
• Demonstrated high-level of personal integrity and honesty
• Experience with procurement, contract negotiations, or contract management
• Experience with developing and managing a security awareness program would be an asset

Technical/Job Specific Knowledge and Abilities:

• Extensive knowledge of Microsoft 365 Suite administration, including configuring and administering user accounts, permissions, and security policies across services.
• Experience managing and maintaining Microsoft Entra ID environment, configuring global access policies, user and group management, ensuring compliance with security standards and best practices
• Extensive knowledge of current and emerging security architecture, principles, practices, methodologies, and industry trends
• Experience with network connectivity, provisioning and monitoring to distinguish between authorized versus unauthorized usage and activity.
• Working knowledge in cryptography technologies, PKI, CA, Symmetric/Asymmetric keys, key and certificate management would be an asset
• General understanding of transport layer security (SSL/TLS), X.509, cypher suites, etc.
• Understanding of the latest Security techniques that are included in the SANS Top 20 Critical Security Controls and OWASP Top 10
• In-depth knowledge of forensic methods, procedures and tools
• Strong understanding of firewalls, authentication processes, content inspection, anti-virus and anti-spyware software, intrusion detection and prevention, remote access/VPN, and other tools and resources used in assessing and responding to security vulnerabilities
• Knowledge of and experience with data encryption and other security measures used in the delivery of personal and mobile computing solutions and services
• Competence in understanding and responding to risks and controls in the IT processes of Governance, Security, Systems Development, Change Management and Production Operations & Support
• Ability to write policies and practices on a technical subject matter that is easily understood by non-technical staff, and to write technical procedures and documentation for technical / IT staff
• Ability to perform analysis and reporting of information from multiple data sources for documenting analysis results, producing reports and presenting to technical and executive stakeholders
• Knowledge of all applicable municipal legislation, HRM corporate / departmental policies and procedures would be an asset
• Excellent analytical, written, oral and presentation skills
• Demonstrated ability to foster strong working relationships
• Strong knowledge of Infrastructure Architecture and Design would be an asset

Security Clearance Requirements: Applicants may be required to complete an employment security screening check.

Please note - Testing may be conducted as a component of the selection process to assess technical and job specific knowledge. Candidates, who are selected for testing, may be tested in a group setting, scheduled at the employer's discretion.

COMPETENCIES: Analytical Thinking, Communication, Customer Service, Organizing and Planning, Teamwork and Cooperation, Valuing Diversity, Managing Change, Decision Making.

WORK STATUS: Permanent, full-time.

HOURS OF WORK: 8:30am - 4:30pm, Monday to Friday; 35 hours per week. (Flex options to work outside these hours under a hybrid work model may be available). Some overtime hours may be required.

SALARY: $88,690 -$114,700; NU 08 on the non-union salary scale; salary to be commensurate with education and experience.

WORK LOCATION: Barrington Tower, Scotia Square - Halifax, NS

CLOSING DATE: Applications will be received up to 11:59 pm on Sunday, May 25, 2025

Please note: We thank all applicants for their interest in this position. Only those applicants selected for interview/testing will be contacted.
During the recruitment process, applicants have the right to request an accommodation. Applicants invited to participate in an assessment process (such as interview or testing) and who require an accommodation, should discuss their needs with the recruiter when invited to the assessment process. For more information on our accommodation process please click on the link; Accommodations | Hiring | Employment | Halifax