Sr. Security Analyst to assist in day-to-day security operations activities, implement security

Job Type: Contract
Positions to fill: 1
Start Date: Apr 03, 2023
Job End Date: Apr 30, 2024
Pay Rate: Hourly: Negotiable
Job ID: 128211
Location: Winnipeg, Calgary, Edmonton, Halifax, London, Montreal, Ottawa, Regina, Toronto, Vancouver, Victoria
Apply
Our valued Healthcare client is seeking a Sr. Security Analyst to assist in day-to-day security operations activities, implement security enhancements and improvements in AWS cloud environment 

1 year contract (100% remote)

Responsibilities:
  • Configure, update, implement, monitor, assess, and respond to alerts, recommendations, and findings reported by AWS detective controls such as AWS GuardDuty, Security Hub, Trusted Advisor, IAM Access Analyzer, CloudWatch Anomaly Detection, etc.
  • Establish organizational security and compliance guardrails within the cloud environment using services such as AWS Config, Service Control Policies, Tag Policies, Permission Boundaries, AWS Firewall Manager, etc.
  • Engage in root-cause analysis using tools such as Amazon Detective, AWS CloudTrail, CloudWatch Logs Insights, and VPC Flow Logs
  • Assist in operations automation for security-related tasks such as patch management, building EC2 images, and container image scanning.
  • Manage and improve network access control in AWS using a third-party firewall
  • Integrate and collect AWS logs and events into Splunk using AWS CloudTrail, SQS, SNS, and the Splunk App for AWS.
  • Acquire visibility and insight of the cloud environment and of services through the use and configuration of Splunk.
  • Ensure that all cloud solutions adhere to enterprise cloud security and compliance controls using frameworks such as the AWS Well-Architected Security Pillar
  • Develop processes, in the form of playbooks and runbooks, for incident response affecting the cloud environment as per security incident protocols.
  • Identify gaps and assist in improving AD/Azure AD, M365, MS Defender, ZScalar security posture.
  • Lead application security improvement initiatives including but not limited to SAST, DAST and other security best practices.
  • Assist with the development, implementation and maintenance of ISMS policies and procedures.
Must have skills:
  • 4+ years experience Implementing security in an AWS cloud environment
  • 4+ years experience Architecting enterprise systems and solutions with AWS
  • 4+ years experience using/configuring CloudFormation, IAM, EC2/EBS, S3, ALB/ELB, Security Groups, Lambda, AWS Config, Secrets Manager
  • 3+ years experience with firewall administration
  • 3+ years experience with Splunk SPL
  • 5+ years experience Scripting skills (ex: Python, PowerShell, Bash)
  • 3+ years experience automating AWS findings and remediations
  • 4+ years experience with implementation of security best practices in AD/Azure AD, M365, ZScalar and MS Defender.