Description:
The Security Platform Analyst is a key member of the security operations that run the operational services that align to the security technology supporting the overall Information Security program. They participate in the support of the Sun Life Cyber Security program.
This includes working with the security platform and investigations teams to ensure that the operations of the security portfolio is running smoothly and in an optimized manner in our production environment.
This will be in the form of ticket and problem management, security tool management, project contribution and acceptance of new technology into production while running the service effectively. Your goal is to provide stellar service, have a continuous improvement mindset to help drive operational efficiencies and secure our environment.
What will you do:
- Ensure the Cyber Security capabilities and protection mechanisms are running well.
- Manage the ticket queue and provide initial support for problems and ticket intake, triage and either resolve or forward to the appropriate operational team to resolve/investigate.
- Provide technical skills and as Subject Matter Expert in various security technologies.
- Collaborate with security teams to ensure the service meets the end requirements.
- Communicate operational issues, status and escalations as required.
- Continuously verify that the appropriate controls are in place to protect the organization against cyber security risks.
- Continuously improve upon operational and security platform process activities.
- Smoothly transition and operationalize each project as the implementation phase ends. This includes developing roles & responsibilities (RACI) documents and educating the teams who will be performing BAU (Business as usual) the day-to-day work.
- Document, update and maintain cyber security playbooks, policies and knowledge base articles used to support the established Incident Management and CSIRT processes.
What you need to succeed:
- University degree/college diploma in related discipline(s) or equivalent work experience
- 3+ years in security IT industry experience
- Experience with cloud security toolset; including CrowdStrike, NetSkope, Wiz, HashiCorp, AWS Secrets manger
- Professional designation in IT security (such as CCM, CISM, CISSP, CISA) preferred
- Familiar with Cyber Security frameworks (NIST, MITRE) and security tools and services.
- Work experience in Financial Industry preferred
Preferred Skills:
- This position requires a strong technical aptitude with the ability to meet client expectations.
- Able to work independently and deliver expected outcomes, be focused on the end deliverables, and build trust with clients and peers.
- Excellent communication and collaboration skills.
- Strong technical skills in one or more security products and platforms: endpoints, crypto, email, cloud, perimeter, application, proxy management, EDR products, DDoS protection, SIEM.
- Strong communicator spoken and written with the ability to communicate technical issues to peers and management.