Job
Description
Company Description Our mission, your future As a global community of trusted advisors, we create cutting-edge technological solutions to overcome today’s challenges and anticipate tomorrow’s needs. It all starts with the collaboration of a diverse team of passionate intrapreneurs, each driven to make a difference. Together, we challenge the status quo and push each other to new heights. Ready to make a significant impact on mission-critical projects and shape the future through digital transformation and strategic consulting? Take your ambitions to the next level and discover your next exciting challenge with us! Your role, your impact As a Security Specialist, you will report to the Vice-President and Chief Information Security Officer and be a key member of the IT team. You will be responsible to maintain the security solutions’ effectiveness, contribute to the IT security incidents and requests resolution. When a security incident does arise, you will investigate and help resolve the issue in a timely manner. In addition, you will be responsible for vulnerability management, and support the patch management and systems’ hardening procedures. You will operate on our endpoint protection platform and physical access systems, following enterprise IT security policies and standards. Your day-to-day Contribute to the Enterprise IT Operation team through coordinating IT security incidents, assessing and resolving IT security service requests, and administering Azure Sentinel SIEM, the endpoint security platform (Defender) and the vulnerability management solution (Qualys); Promptly respond to IT security incidents and coordinate mitigation and resolution (assess risk, containment, mitigation, remediation, reporting); Prepare management reports related to security (incidents, requests, alerts, breach, leak, etc.); Coordinate the remediation of identified vulnerabilities (e.g., patch management) with the Infrastructure Team and the Service Desk; Manage and handle endpoint protection alerts (virus, breach, intrusion detection, security updates and patches); Lead the deployment and operationalization of Azure Sentinel SIEM; Centralize a variety of log sources (Defender EDR, Network, Cloud apps); Develop complex KQL queries to enable reliable detection of threats; Translate real-time threat intelligence into actionable detection playbooks and automation; Contribute to the incident response process using Sentinel by providing technical guidance, coordination, and support; Support logs documentation; Serve as an expert technical resource to advise and assist in security issues, both proactively and reactively. Keys to your success Minimum 4 years of experience in a security operations role; Experience as a subject matter expert for Microsoft security solutions, such as Microsoft Defender 365, Defender for Cloud and Azure Sentinel; Experience in search query languages such as KQL (Sentinel) or SPL (Splunk); Proficiency in managing Defender; Proficiency in Azure Sentinel onboarding, Data Connectors, Content Hub, Playbooks, Workbooks; Working knowledge of SIEM, SOAR and incident management platforms; Deep knowledge of operating systems, network infrastructure and IT security solutions; Knowledge of cyber security standards, regulations, and best practices, such as ISO 27001 and NIST; Understanding of typical threat actors (Tactics, Techniques, Procedures [TTPs]); Strong skills with PowerShell, VB Script and Python. Extra edge Cyber security-specific certifications (e.g., SC-200, CISSP, CCSP, CISM, Security+, SANS, GSEC, AWS Certified Security Specialty, Azure Security Engineer Associate, Azure Sentinel). Language Skills English: Proficient Our authenticity is our strength The diversity of our backgrounds, experiences, thoughts and insights is our competitive advantage. We foster a collaborative environment rooted in our core values of respect, well-being, passion, trust, integrity and creativity. For us, diversity, equity and inclusion aren’t just buzzwords; they’re essential drivers of innovation and excellence, and powerful catalysts for inspiration and evolutionary ideas. The empowerment of our people is fundamental to being the trusted advisor to our clients. Join us in embracing our authenticity and in leveraging our unique perspectives to collectively build the future we all envision. An inclusive path to success Fostering an environment where you can thrive starts with ensuring an accessible recruitment process. If you require any accommodations, we welcome you to contact us. For more information, please visit our accessibility page at https://www.alithya.com/en/accessibility . Show more Show less
