Security Operations Specialist - Queens University

Reporting to the Chief Information Officer (CIO), the Security Operations Specialist plays a key role in the planning, design, and delivery of ongoing cybersecurity operations within Canadian Cancer Trials Group (CCTG). Working within the systems team, the Specialist will work to minimize risks against internal and external threats by assisting in the cybersecurity solution design, implementation, testing, maintenance, active monitoring, reporting, intrusion detection/ prevention, and escalation within the CCTG security architecture to maintain the integrity and/or efficiency of the networks and servers. The Specialist is a subject matter expert in cybersecurity architecture, tools and technologies, and is responsible for project planning and management. The Specialist provides management of intrusion detections and prevention systems for both the network and host-based systems, as well as the security management systems. The Specialist is an excellent problem solver, an excellent communicator and is a demonstrated leader in establishing relationships and communicating with internal and external stakeholders. The Specialist will provide guidance and assistance from various sources to ensure current and future security in architectural design and systems implementation. The Specialist will play a leading role in cybersecurity incident response.

The schedule for this position may require the incumbent to work occasional early mornings, evenings and/or weekends for both scheduled maintenance and upgrades, and in response to urgent security issues.

REQUIRED QUALIFICATIONS:

• University Degree in computer science or equivalent combination of education and work experience, with a minimum of 5 years’ experience in a Security Specialist role.
• Professional certifications from bodies such as ComTIA A+, Security+, Network+, SANS GSEC, and/or other information security certifications.
• Experience in information security, ideally in multi-platform environments in three or more of the following areas: web applications, operating system security, cloud computing, desktop applications, networking, DLP, anti-malware, IDS/IPS, penetration & vulnerability testing.
• The ability to read and understand vulnerability bulletins and security event data from many sources.
• Ability to understand and utilize HTTP and similar protocols for analysis and troubleshooting.
• Familiarity with information security best practices.
• Demonstrated technical proficiency in the implementation and maintenance of multi-user Windows and Linux computer systems.
• Experience with analyzing security attacks and exploits.
• Demonstrated knowledge and experience in Unix/Linux OS and scripting and automation, Power shell, and firewall management. Knowledge of VMWare technology, databases, Active Directory, PHP and web stacks on Linux is considered an asset.
• Consideration may be given to an equivalent combination of education and experience.

APPLICATION INSTRUCTIONS

Review full job description, knowledge, and requirements and APPLY online.