Cybersecurity Analyst - Corporate Services

Graham is an employee-owned construction solutions partner that services the buildings, industrial, infrastructure, water and project finance sectors. We deliver lasting value for our clients through meticulous planning and scheduling, while upholding rigorous safety and quality standards. With offices throughout North America, our passionate and knowledgeable teams deliver projects that enable communities to thrive and people to live, work, move and grow in a rapidly changing world. With over nine decades of experience, Graham has the resources, capacity and expertise to undertake projects of every scope, scale and complexity. Join our team to deliver a better tomorrow.
 

We are seeking top-tier talent to join our Corporate Services team and support our construction operations by applying your expertise to various Corporate Services business initiatives. As a member of this collaborative team, you can expect a safe, diverse and inclusive environment, and on-going learning and career development opportunities.

About the Role:

Reporting to the Cybersecurity Director, the Cybersecurity Analyst is responsible for protecting the confidentiality, integrity, and availability of Graham's data. The incumbent advises on and implements methods for protecting data and works on solutions to detect anomalies, executing any necessary implementations. The incumbent is focused on continuous improvement initiatives for the security of data within Graham and is always looking for better ways to detect and protect. 

As a Cybersecurity Analyst at Graham, you will:

• Act as a security technical expert
• Deploy, configure and maintain security tools (eg. SIEM, EDR, firewalls, DLP, IAM solutions, etc)
• Implement security controls in cloud and on-prem environments
• Research, advise, design and implement security solutions/initiatives, such as insider risk management, network segmentation or zero-trust adoption
• Automate security processes through scripting (eg. Python, PowerShell)
• Protect, detect, and respond to security threats - Incident response triage, containment, remediation and improvement/mitigation
• Detect, prioritize and remediate vulnerabilities
• Create and implement auditing mechanisms and other tools that are meaningful to the business to improve the security of data
• Create technical playbooks for common events
• Engage in end user awareness and education
• Carry out high-end troubleshooting for senior-level tickets for security issues
• Advise other technical teams on security standards
• Assist with the coordination of security tests and annual testing
• Remain focused on understanding the security needs of Graham, and present risk reports to the Cybersecurity Director
• Engage in Change Management, Incident Management, and Problem Management processes

Experience/Qualifications:

• 5-8 years of experience in an IT security role at a similar-sized organization
• Proven ability to find/discover issues and recommend and provide solutions to address them
• Ability to interpret data to detect trends or problems
• Strong analytical skills
• Proven knowledge, and usage, of a wide range of IT security tools including firewalls, SIEM, DLP and IAAM solutions
• IT Change Management processes
• Incident response, triage, remediation, escalation tasks
• Participation in vulnerability assessment, prioritization, and remediation
• Experience planning, deploying and maintaining security solutions
• Configuration of IAM, DLP, firewall, and/or SIEM policies/rules
• Strong understanding of secure cloud architecture (Azure, AWS)
• Experience with security framework implementation (NIST, CIS benchmarks)
• Experience in Fortinet, MS Defender/Purview, CrowdStrike, Arctic Wolf, Aruba ClearPass are preferred; SIEM experience is an asset
• CISSP certification is an asset

If this sounds like you, then Graham may be the right fit. Apply today.

Graham is an Equal Opportunity Employer, and employment selection decisions are based on merit, qualifications, and abilities. Graham does not discriminate in employment opportunities or practices on the basis of race, color, religion, gender, national origin, age, sexual orientation, gender identity, disability, veteran status or any other characteristic protected by country, regional or local law.
 

No unsolicited resumes or phone inquiries from agencies, thank you.

As Graham's trusted recruitment partner, Jardeg aids in the hiring of skilled professionals who play a crucial role in the success of Graham's Buildings, Industrial, Infrastructure, Water, Development, Maintenance and Turnaround projects across Canada.

#LI-RD1