Cybersecurity Analyst (Cloud Security)

TL;DR

Cybersecurity Analyst (Cloud Security): Protecting an organization handling highly sensitive and regulated medical data, monitoring security events, securing cloud environments, managing vulnerabilities, and supporting incident investigations with an accent on designing detection rules, optimizing security tooling, and driving improvements across the security posture. Focus on monitoring and analyzing security events across Microsoft Sentinel, Sumo Logic, and Azure Event Hub, administering the Wiz cloud security posture management platform, and managing the complete vulnerability lifecycle.

Location: Hybrid work available in Montréal, Quebec City, and Toronto, Canada, with teleworking options up to maximum flexibility.

Company

hirify.global is a leading Canadian healthcare orchestration and billing company that revolutionizes healthcare systems through Healthcare BI, advanced analytics, and informed insights.

What you will do

• Monitor and analyze security events across Microsoft Sentinel, Sumo Logic, Azure Event Hub, and related log sources.
• Design and optimize detection capabilities by implementing and fine-tuning rules and automated response playbooks.
• Administer the Wiz CNAPP platform and conduct continuous cloud security assessments in Azure environments.
• Manage the complete vulnerability lifecycle, including scanning, triage, and remediation tracking.
• Oversee Git CI/CD security scanning, reviewing configurations and collaborating on mitigation strategies.
• Lead threat investigations and actively participate in incident response, including root-cause analysis and containment.

Requirements

• 3–5 years of experience in cybersecurity operations, cloud security, or security engineering.
• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• Strong hands-on experience with Azure, including cloud logging, monitoring tools, and cloud-native security features.
• Familiarity with security tools such as Cloudflare WAF, Wiz CNAPP, Microsoft Sentinel, and GitLab CI/CD scanning.
• Understanding of threat detection techniques, vulnerability management practices, and web application security principles.
• Full proficiency in English and French (spoken, written, and read) is preferred due to regular interaction with unilingual English-speaking colleagues located outside Quebec.

Nice to have

• Certifications such as Security+, CySA+, AZ-500, SC-200, CCSP, or GIAC credentials.
• Experience working in environments handling PHI/PII or under frameworks like SOC 2, HIPAA, or ISO 27001.
• Knowledge of container security, OWASP Top 10, and CI/CD pipeline security best practices.
• Experience supporting threat modeling or penetration testing programs.
• Interest in artificial intelligence technology to optimize security and processes.

Culture & Benefits

• Teleworking options up to maximum flexibility and recurring hybrid work allowance.
• Competitive compensation, 4-6 weeks of paid vacation, and 5 paid personal days per year.
• Group RRSP / DPSP plan with employer contribution and a complete group insurance plan from day 1.
• Annual wellness allowance and access to the Lumino Health™ telehealth application.
• Flexible work hours and a commitment to fostering an exceptional workplace culture.