PURPOSE OF JOB
Are you looking for a role where you can define, lead and grow a Security Operations Centre team? Staples Canada is looking for a senior SOC analyst who can work with the Manager for Security Operations Centre to oversee Staples’ information security operations.
This role is a Tier 3 Analyst role, within the Security Operations Centre (SOC). The role has direct responsibility for the effectiveness of security tooling, technologies, incident response, awareness and vulnerability management across the enterprise. This role is also accountable for continuously improving the SOC, developing policies, standards and playbooks to effectively protect our critical assets alongside a team of analysts. This role is also responsible for the management of potential incidents across diverse set of business stakeholders.
PRIMARY DUTIES AND RESPONSIBILITIES
Update and maintain Staples Canada Security Operations roadmap, and functions including managing security posture and an acceptable enterprise risk profile.
Enhance governance and develop operational policies and process for incident management, incident response and incident reporting including analysis of playbook effectiveness.
Collaborate with Information Security and IT leadership to maintain efficient security monitoring and response functions aligned to the business strategy.
Strong technical leadership in the areas of firewalls, AV, IDS/IPS, Phishing and e-mail security, content filtering, wireless, DDoS, WAF, Splunk, ServiceNow and EDR.
Experienced with partnering with stakeholders including business, application, IT, compliance and legal teams and communicating technical challenges in a business capacity.
Validate and respond to security tickets generated by tier 2 Analysts.
Investigate and Analyze security-related events, review the risk and validity, and engage the right teams for mitigation.
Ability to understand system data, including, security event logs, system logs, and firewall logs for in-depth investigations and RCA.
Takes an active part in the resolution of incidents, even after they are escalated.
Work with technology vendors, research present threat landscapes and develop proactive measures to secure the staples environment.
PHYSICAL DEMANDS / WORKING CONDITIONS
May require up to 5% travel within North America and travel to retail stores
May require working hours in the evenings and weekends as required by the business
Knowledge / Skill Requirements:
Strong knowledge of standards such as NIST Cyber Security Framework, ISO27001, PCI-DSS
Strong knowledge of leading security products and device best practices including Firewalls, AV, IDS/IPS, Phishing and e-mail security, content filtering, wireless, DDoS, WAF, Splunk, ServiceNow, EDR, Vulnerability management and more
Strong knowledge of best practices for incident tracking, ticketing and reporting
Strong knowledge of managing incident investigations, working with in-house and vendor teams to research, identify and report on incidents.
Knowledge of vulnerability management, including penetration testing tools, methodologies.
2-4+ years of demonstrable experience in deploying and operating security capability for a Security Operations center.
Experience with management of threat intelligence and managing security incident and breach response.
Experience with managing internal investigations and best practices in breach response is an asset.
Proven ability to collaborate between the SOC and business stakeholders.
Diploma or degree in Computer Technology or related to Security
Security certification is an asset
Staples is an equal opportunity employer committed to diversity and inclusion and we encourage applications from all qualified candidates, including those with disabilities. We will accommodate applicants’ needs, upon request, throughout all stages of the recruitment process. Please inform us of the accommodation(s) that you may require. Information received relating to accommodation will be addressed confidentially.
Location(s): CA-ON-Richmond Hill
Staples Canada is committed to the principle of equity in employment. We welcome diversity and encourage applications from all qualified women and men, including persons with disabilities, members of visible minorities & Aboriginal People.