Visionpool Business Services is hiring a Senior Cyber Security Specialist who will be responsible for the support of the overall cyber security posture through implementation and monitoring of advanced security controls across premise and cloud environments. This position will ensure compliance with industry specific security frameworks and standards while proactively identifying and mitigating cyber security risk. THIS OPPORTUNITY IS LOCATED ON SITE IN REGINA, SK.
RESPONSIBILITIES:

• Incident Reports & Analysis – detailed security incident investigation and reports post-incident lessons learned documentation for and cyber security issues
• Vulnerability Assessment Reports – regular vulnerability scan results and remediation tracking reports utilizing Tenable One to communicate risk levels and progress to stakeholders
• Security Posture Metrics – periodic security posture and compliance reports, including Azure Secure Score Dashboards, and other metrics to inform management of the current state and improvements over time
• Compliance Documentation – documentation demonstrating alignment of security controls with NIST, CSF, ISO 27001 and applicable CSA standards to support regulatory audits and compliance requirements.
• Updated Security Artifacts – up to date cyber security artifacts such as security policy documents, standard operating procedures, network diagrams and system security plans for nuclear related projects and systems

QUALIFICATIONS:

• University Degree in Computer Science, Computer Engineering or Information Security
• Minimum 5 years of hand on experience in IT Security and Cyber Security operations including involvement in security monitoring and incident response.
• One or more relevant Professional Security Certification such as CISSP, CISM, GIAC or Microsoft Certified Azure Security Engineer Associate
• Demonstrated experience with cloud and enterprise security technologies – specifically Microsoft Azure , Microsoft Defender Suite, Microsoft Sentinel and vulnerability management tools such as Tenable One
• Demonstrated ability to configure and use these tools for threat detection, analysis and automated response.
• Proficient in Powershell, JSON, Kusto Query and Logic Apps
• Demonstrated knowledge of industry cyber security frameworks and standards such as NIST, Cybersecurity Framework, ISO/IEC 27001/27002, or relevant CSA standards
• Demonstrated knowledge of incident response methodologies and best practises for handling and managing cyber security incidents
• Excellent analytical and problem solving skills with the ability to assess complex systems for security risks
• Ability to analyze system logs, alerts, and forensic data across various sources (network, endpoint, cloud) to identify and resolve security issues
• Must be eligible to obtain and maintain a Government of Canada Level II (Secret) Security Clearance

ASSET:

• Demonstrated experience working in a highly regulated or critical infrastructure environment such as energy utilities, nuclear industry, etc