Security Analyst

Description:

Security Analyst

Our Purpose

At Deloitte, our Purpose is to make an impact that matters. We exist to inspire and help our people, organizations, communities, and countries to thrive by building a better future. Our work underpins a prosperous society where people can find meaning and opportunity. It builds consumer and business confidence, empowers organizations to find imaginative ways of deploying capital, enables fair, trusted, and functioning social and economic institutions, and allows our friends, families, and communities to enjoy the quality of life that comes with a sustainable future. And as the largest 100% Canadian-owned and operated professional services firm in our country, we are proud to work alongside our clients to make a positive impact for all Canadians.

By living our Purpose, we will make an impact that matters.
 

• Have many careers in one Firm.
• Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
• Learn from deep subject matter experts through mentoring and on the job coaching
   

Summary

The SecurityL1 Analyst is responsible for the initial triage and analysis of security alerts and incidents within the Security Operations Center. This role involves monitoring security systems, identifying potential security threats, and escalating incidents as necessary. The ideal candidate will have a foundational understanding of cybersecurity principles, a keen eye for detail, and the ability to work effectively under pressure.

Please note the Security Operations Center operates on a 24/7 basis, as a result this role requires a flexible working schedule and will operate on rotational shifts. Due to the sensitve nature of the work, this role requires elgibility to obtain a Secret level clearance with the Federal Government (10 years of residency in Canada)

What will your typical day look like?
 

• Continuously monitor security alerts from various security tools and systems, including SIEM (Security Information and Event Management), and EDR (Endpoint Detection and Response).
• Perform initial triage of security events to determine their potential impact.
• Analyze logs and network traffic to identify signs of malicious activity.
• Respond to security incidents following established incident response procedures.
• Escalate incidents to the L2 Security Consultant or other relevant teams as necessary.
• Document incident details, actions taken, and outcomes in the incident management system.
• Collaborate with other SOC team members to ensure comprehensive coverage and effective incident response.
• Communicate effectively with stakeholders, providing clear and concise information regarding security incidents and their status.
• Collaborate with IT teams, stakeholders, and third-party vendors for issue resolution.
• Participate in audits and reviews to validate the effectiveness of SOC operations