Title: Network Security Analyst

Duration: Permanent Full time

Location: Kanata, ON ( 2/3 days per week onsite)

Do you want to work with an Innovative Global Telecommunications leader right here in Ottawa?

WHAT WILL YOU DO

• Provide technical support to product development teams on security best practices, standards, and guidelines, and act as a security consultant to assist as required
• Support the product teams with technical risk assessments and resolution of vulnerabilities and security issues
• Work with the product teams to ensure they comply with the company product security posture.
• Review and approve security plans for each S/W or H/W release
• Conduct threat modeling
• Conduct security audits and review artifacts (scans, defects, pen test reports) to ensure severity and risks are well managed
• Provide support with security testing and act as consultant to the security test teams
• Assess the compliancy to the security posture (e.g. security score cards)
• Support customer facing teams with RFPs, audits, customer requests such as security questionnaires, contract renewals, analysis of customer reported security findings
• Provide support for customer security reviews and deep dives
• Assess security risks and recommend security solutions for new and existing products and services
• Research and stay current on the latest security trends, threats, and technologies

QUALIFICATIONS

• Bachelor's degree in Computer Science, Information Security, or related field
• Experience in security-related roles, such as security analyst, security engineer, or security consultant
• Strong knowledge of security frameworks, standards, and best practices, such as ISO 27001, NIST, CIS, OWASP.
• Experience with spearheading security requirements for application security.
• Solid understanding on IP networking.
• Strong knowledge of security protocols, PKI/X.509, Identity Management and centralized authentication (e.g. HTTPS, TLS, Radius, LDAP, SAML, OAuth, OpenID), Linux and OS hardening, API security (e.g. REST)
• Experience or familiarity with virtualized and cloud-based software architectures, including Virtualized Network Functions, Cloud-Native Network Functions, DevOps/DevSecOps methodologies, Public Clouds.
• Experience with security testing and assessment methods, such as penetration testing, vulnerability scanning, risk analysis.
• Experience with threat modeling and methodologies (e.g. STRIDE, OCTAVE, PASTA, VAST, Attack Trees, etc.)
• Excellent communication and presentation skills, both written and verbal
• Ability to work independently and collaboratively with cross-functional teams across the globe.
• Certifications such as CISSP, CISM, CEH, or OSCP are a plus

PERKS

• Strong team-based culture and fun, positive, work environment
• Competitive salary
• Excellent health/dental Flex benefits
• Bonus structure and company reward program
• RSP matching program