Senior IT Security Specialist

Overview

Senior IT Security Specialist – Job Vacancy in Toronto, Ontario – Canada

• Experience:- As Described below
  
• Job Location:-  Toronto, Ontario – Canada
• Education:- Degree or Equivalent
• Nationality:- Any Nationality
• Gender:- Male / Female
• Number of Vacant Positions:- Multiple Job Vacancies
• Salary:- Negotiable
• Job Type:- Permanent / Temporary

Working with Hydro One Networks Inc

We put stock in development — giving groundbreaking thoughts a spot to develop and succeed. At Hydro One, we invest heavily in offering our workers the opportunity to challenge customary approaches to getting things done and to change our cycles. We are not just an involved organization, we are pioneers in mechanical plan.

We must be.

Our electrical framework is one of the biggest on the planet and keeping up with and modernizing it requires top personalities both in the workplace and in the field. We have gained notoriety for being the most incredible in the power conveyance business and huge thoughts are at the core of our administration culture.

Our kin transparently share their insight and experience. This aggregate knowledge is essential for what makes major areas of strength for us extraordinary. At the point when you work with Hydro One, your group has you covered. The actual work might be the best award, yet there are various advantages to working with Hydro One:

 

Senior IT Security Specialist – Job Vacancy in Toronto, Ontario – Canada

Accountabilities:

• Provide day to day review analysis of the perimeter network trying to determine unauthorized access attempts, probes, pre-attack information gathering, network mapping and monitoring for unauthorized data extraction.
• Review server and network security for inappropriate activity/incidents such as large amounts of unauthorized data being moved or transferred or unauthorized access to confidential and or secret data.
• Participate in Business and OT initiated projects. Ensure that security requirements for the projects are defined and captured. Catalogue all security risks within projects, including those created within the proposed solutions.
• Utilize ISD’s 5 Stage Project Methodology when delivering security guidance and services. Manage OT CyberSecurity sponsored projects. Manage or co-manage OT CyberSecurity Operations.
• Participate in the ongoing development of Hydro One Security Policy, Procedures and Guidelines.
• The incumbent must possess a strong client service orientation and a desire to help the business meet their objectives.
• Provide security scans of internal computer networks to search for unauthorized devices and to detect suspicious activity.
• Provide scans to detect suspicious clearing of system audit logs, information leaks, IT sabotage-specific detection and to identify inappropriate access or transmission of sensitive data or use and presence of hacking tools.
• Provide security architecture expertise to the projects.
• Catalogue all security risks with the project, including those created within the proposed solution and those generated through project activities; Review and recommend approval for proposed technology solution.
• Review and recommend approval for sustainment adjustments as a result of remedial actions for risk reduction
• Remain operationally current for all key and critical Hydro One  systems and networks to ensure investigations are necessary, core operational competencies and skills will improve and ensure that the full range of potential root causes are explored without putting at risk the continued operation of the system or network.
• Conduct complex and technical IT investigations and address general queries regarding recovery, authentication, and analysis of electronic data when an investigation involves issues relating to reconstruction of computer usage, examination of residual data, authentication of data by technical analysis.
• Conduct IT security threat and risk assessments related to key and critical IT systems and networks as it relates to external threats, labor disruptions and internal wrong-doing.
• Complete detailed investigative reports outlining the key elements, evidence collected, findings and recommendations regarding IT security investigations.
• Work with Law Enforcement High Tech crime groups and maintain an operational skills level in order to gather and protect key IT evidence that may lead to criminal, civil (or both) court proceedings.
• Remain current with the safe and effective securing of evidence on a wide variety of wired and wireless electronic devices used for and within the Hydro One business.
• Provide assistance to physical security relating to Cyber asset security by identifying critical cyber related devices and determine IT system relevance.
• Conduct IT Data and Cyber Security awareness programs through presentation and education.
• Assist in the assessment of IT Security work programs focused on the prevention, detection and response to breaches and malicious behaviors targeting Hydro One’s OT systems and networks.
• Assist CSS Security Consultants in responding to their work programs.

 

Selection Criteria:

• 5+ years in a Cyber Defense Operations role or SOC team
• 5+ years experience with SIEM technologies (IBM qRadar, RSA NetWitness, Splunk, ArcSight, ElasticSearch, , etc)
• 5+ years experience supporting a vulnerability management program, analyzing vulnerability data, running VA scans (Nessus, Qualys, Nexpose, etc), working with the LOB to remediate and validate, manage and prioritize risk, support the technology in an administrative capacity, etc.
• 5+ years experience working hands-on with Offensive Security tools, e.g. Kali with its hundreds of pre-installed tools, Metasploit, Burp Suite, Cobalt Strike, etc.
• 5+ years experience with scripting languages, e.g. Python, Bash, Powershell, etc.
• 5+ years experience working hands-on with IPS/IDS and APT prevention technologies in an administrative capacity
• 5+ years experience in a Cyber Security Incident Response, Analysis & Triage related role
• 5+ years of experience with hands-on technical forensic investigations (EnCase Enterprise, Autopsy, Volatility, etc.)
• Prior working experience in an OT/ICS environment and working knowledge and understanding of various security control frameworks including NERC CIP and NIST is highly preferred and considered an asset
• Holds one or more of the following credentials is considered an asset:  OSCP, OSCE3 or CISSP
• Bachelor in Computer Science (or equivalent) or College Diploma in Computer Studies considered an asset
• Prior working experience in Cyber Threat Intelligence and or Cyber Threat Hunting is a nice to have
• Must be willing to travel (minimal)
• 7 x 24 rotational on-call support required for high priority security incidents
• The ideal candidate would be able to receive a federal government security clearance that is Secret/Top Secret

 

 

 

 

 

 

Job Vacancy in Toronto, Ontario – Canada | Working with Hydro One Networks Inc