Analyst It Security Job In Markham

Job Description

Proudly Canadian-owned, Enercare is committed to providing the best services, solutions and advice to make customer’s homes as comfortable as they can be. With Enercare Advantage, we provide affordable clean air and water solutions for homes and workplaces. We are committed to operating in an environmentally responsible way, including keeping as much waste out of landfills as possible, and giving back to the communities where we live and work. Enercare is about putting people first by listening to our customers, continuous improvement and making our organization a destination for building people’s careers.
Come and join one of North America's largest home and commercial services and energy solutions companies! We offer comprehensive benefits, a DC Pension Plan and savings match plan. If you are passionate about joining an organization committed to delivering 5 Star Customer Service, we would love to hear from you.
Enercare has embraced a hybrid work environment for the time being as we try different options and technologies to determine what will work best for the future of our people and our organization. Join us with an open mind on the future of work!

Role: Analyst, IT Security

Status: Regular, Full-Time

Department: IT

Reports to: Manager, IT Security

Location: Markham (Hybrid)

Summary:

The Senior Analyst, IT Security will assess information risks and facilitate remediation of identified vulnerabilities utilizing IT security tools and methodologies. This position is responsible for the development and implementation of policies, programs and tools related to Technology Controls and Information Security. They will also lead projects of high complexity, providing reports, analysis, and assessments at the functional, business and enterprise levels.

Responsibilities

• Manage all aspects of IT security and risks across the enterprise, ensuring the latest operating system patches, security updates and virus protection are within operational standards.
• Provide direction, coordination, assistance, and training support to correct identified security vulnerabilities and implement priority security controls.
• Manage and lead the Identity and Access Management (IAM) and Privileged Access Management (PAM) evaluations, implementations, and continued support.
• Ensure regulatory compliance for the organization, related to IT security.
• Oversee and serve as primary resource, responsible for all technical aspects of Enercare’s Data Protection platform and lead in the development and governance of Data Loss Prevention (DLP).
• Plan, coordinate, and conduct Active Directory security best practices.
• Develop and implement Cloud Security best practices through Microsoft Azure environment.
• Promote awareness of upstream risks and industry best practices.
• Develop and implement password policy based on NIST standard and manage its enforcement through Microsoft AD policies.
• Provide oversight of IT and vendor partners, compliance and security maintenance of their systems and applications.
• Develop policies, procedures and standards that meet existing and newly developed policy and regulatory requirements.
• Conduct security assessments through vulnerability testing and risk analysis.
• Continuously review and update the company's Incident Response Plans and coordinate DR Testing with the BC Team.
• Conducts research of new products, tools, methodologies, and standards related to all aspects of the infrastructure environment and its security, and make recommendations
• Provide business and after hours support of corporate systems

Qualifications

• 3-5 years of experience in cybersecurity
• University Degree in Computer Science or equivalent work experience
• Proficient with IAM and PAM technologies
• Working experience with SIEM platforms
• Advanced understanding of securing Cloud services
• Knowledge of Microsoft Azure and Microsoft 365 suite
• Strong familiarity with data protection concepts and processes
• Experience with Penetration Testing would be an asset
• Security related certification preferred e.g. CySA+, Security+, CEH, CISSP
• Ability to work, lead projects and communicate well with business partners
• Excellent interpersonal skills, including written and verbal communication along with strong organizational abilities

Technologies

• Security Information and Event Management (SIEM) – Rapid 7
• End Point Detection and Response (EDR) – Cisco SecureX
• Email Security – Mimecast
• Data Protection - Varonis

Enercare is an equal opportunity employer. We are committed to equal employment opportunity regardless of race, colour, ancestry, national origin, religion, sex, age, sexual orientation, gender identity, citizenship, marital status, disability, pregnancy, military status, protected veteran status or other characteristics protected by applicable law. Enercare’s recruitment process includes accommodation for applicants with disabilities in accordance with applicable provincial accessibility laws and regulations. All accommodations will take into account the applicant’s accessibility needs due to disability and are available upon request.