Sr Soc Cybersecurity Analyst

TL;DR

Sr Soc Cybersecurity Analyst (Cybersecurity): Responsible for conducting advanced threat analysis, validating and responding to security incidents and enhancing detection capabilities. Focus on incident response, evidence gathering, root cause investigation, maintaining detailed records of security events and providing comprehensive reports to stakeholders.

Location: Onsite in Toronto, Canada

Salary: 66,400.00 – 99,600.00 CAD

Company

We are ready to take this game to the next level and need someone passionate to join the SOC team, responsible for conducting advanced threat analysis, validating and responding to security incidents and enhancing detection capabilities.

What you will do

• Investigate escalated alerts or incidents using established procedures and analytical tools; correlate data across sources (SIEM, EDR, NDR, firewall, AD logs) to build timelines.
• Execute containment steps (e.g., isolate host, disable accounts, block IPs) and resolve security events to maintain system integrity.
• Manage incident lifecycle: prioritize, categorize, document investigations, escalate unresolved issues, and coordinate recovery and closure.
• Provide feedback for alert tuning, perform routine threat intelligence tasks, and collaborate with HR on incidents involving employee data or policy violations.
• Participate in on-call rotations and troubleshoot escalated access issues within SLA commitments.
• Assist in implementing and monitoring security policies, protocols, and compliance standards; support risk assessments and information assurance activities.

Requirements

• Post-secondary degree or diploma, preferably in Computer Science or Cybersecurity
• 2 –5+ years’ experience in Information Technology related disciplines is an asset.
• Strong knowledge of cybersecurity principles, access control, cryptography, privacy requirements, and system administration/hardening across multiple platforms; understanding attacker TTPs and mapping detection to MITRE ATT&CK.
• Hands-on experience with network protocols (TCP/IP, DNS, HTTP/S, SMTP, SMB, DHCP), SIEM log analysis, endpoint telemetry tools (Defender, CrowdStrike, Trend Vision One), incident detection/response techniques, threat intelligence, and report writing.

Nice to have

• Cybersecurity Professional Certification is an asset (CC, GSEC, GCIH, GCIA SC-900, Security+)
• IT Service Management Certification is an asset (ITIL Foundations)

Culture & Benefits

• Eligible employees and dependents have access to comprehensive, employer-paid group benefits coverage (permanent employees only).
• Participation in a highly desirable defined benefit pension plan.
• Participation in a performance-based incentive plan that recognizes organizational and individual achievements (permanent employees only).
• Competitive paid time-off provisions to support work-life balance and well-being.
• Become your best self with access to new opportunities and personalized support programs.
• 24/7 access to robust online learning programs.