Junior Security Analyst to support the banking security controls for data loss prevention (DLP) using McAfee/BigID/Microsoft for one of our major banking clients - 31847
Job Type: Contract
Positions to fill: 1
Start Date: Nov 13, 2023
Job End Date: Nov 11, 2024
Pay Rate: Hourly: Negotiable
Job ID: 133548
Location: Toronto
Junior Security Analyst to support the banking security controls for data loss prevention (DLP) using McAfee/BigID/Microsoft for one of our major banking clients - 31847
Location Address: Scarborough - Hybrid (as required for meetings)
Contract Duration: 12 months (Possibility of extension & conversion to FTE)
Scheduled Hours: 37.5 Hours Per Wee
Story Behind the Need
- Business group: Cyber Integration & Automation (CIA) team, the Policy Design and Implementation group is responsible for designing, testing and implementing security control configurations operated under Cyber Security Services (CSS). This involves building security policy configurations, testing to ensure they meet business requirements and deploying them globally across the bank’s security infrastructure. This team also provides post implementation support and root cause analysis in supporting the bank’s mission and mandates for cyber security.
- Project: The Cyber Automation group is seeking an IT Security Analyst to manage and support the bank’s security controls, with focus on solutions around data loss prevention (DLP) and user behavior analytics (UBA). This individual will report directly to the Senior Manager of Cyber Integrations & Automation.
Typical Day in Role
- Build and create and manage policies all across data loss prevention for the Bank
- Work with various teams on creating policies, working with vendors to bring in updates on infrastructure
- Working with big software such as McAfee, Big ID and Microsoft
- Use Forcepoint as secondary DLP program
- Looking to expand to Microsoft, Google and Big ID discovery/DLP programs
- The work is specific to DLP on this one and the candidate will work with the other teams to bring it all into play
- The main function of an IT Security Analyst is to plan, coordinate, and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction or disclosure of information
- The candidate will be planning, coordinating and implementing security measures to safeguard the computer database
- Identify security issues and risks, and develop mitigation plans
- Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles
- Develop and interpret security policies and procedures
- Participate in security compliance efforts
- Develop and deliver training materials and perform general security awareness and specific security technology training
- Evaluate and recommend new and emerging security products and technologies
Candidate Requirements/Must Have Skills:
- 3+ years of experience in a similar IT Security Analyst or Cybersecurity Role
- 3+ years of experience managing and designing DLP within McAfee or other related technologies
- 3+ years of experience monitoring or investigating DLP incidents directly on application or console
- 3+ years of experience with end user troubleshooting – someone with desktop support, or troubleshooting report preferably using Windows
- 3+ years of Experience in McAfee preferably – ForcePoint, Microsoft, Big ID and Symantec are acceptable replacements
- Proficiency in MS Office (extended knowledge in MS Excel preferred)
Nice-To-Have Skills:
- Bilingual in Spanish
- You have experience in regulatory and compliance frameworks for USA, UK, Asia
- You have experience with Windows, Linux and Unix operating systems
- VPN, IPS, SIEM
- Microsoft Active Directory and file server experience
- Experience in infrastructure or application-level vulnerability testing and auditing
- Any scripting experience, specifically with RegX or Python, – shooting for intermediate level experience with scripting
Best vs. Average Candidate:
- Banking experience is preferred – DLP works with special financial classifications
- Data governance and/or financial data classification knowledge
- Certifications: CISSP, CISA preferred
Education:
- Bachelor's degree in a technical field such as computer science, computer engineering or related field required
Candidate Review & Selection:
- 1 Step Process: Microsoft Teams Video Interview (30 minutes to 1 hour)
- Hiring manager will cover a various of components including assessment of soft skills and technical skills.