Technology Security Operations Analyst

FUNCTION: Reporting to the Manager, Technology Operations, the Technology Security Operations Analyst is primarily responsible for the implementation, maintenance and monitoring of security related components and aspects of the corporate infrastructure and software systems. This is to be performed in accordance with certification, compliance and security procedures based upon regulatory and corporate standards and policies. In addition, the Technology Security Operations Analyst is responsible for working with the Technology System Operations Analysts and IT Support Team to maintain the daily operations, performance, availability and reliability of the enterprise infrastructure and all critical systems.

DUTIES AND RESPONSIBILITIES:

• Work closely and cooperatively with all Technology department teams to ensure effective application and adherence to the corporate security policies and procedures under all circumstances

• Respond to security incidents and report on the impact and remediation steps to management

• Work with Technology Operations and IT Support Team to implement remediation plan and ensure compliance

• Accurately manage and audit access to resources, including domain, system, application and network

• Implement and maintain LAN/WLAN and WAN network security policies, procedures and control mechanisms to be adhered to by the Operations and Support teams while performing exception reporting analysis

• Manage WAN and LAN port accessibility and configurations

• Participate in internal and external security audits and vulnerability testing of all security procedures on a periodic basis

• Implement and maintain systems and controls to monitor all Technology systems for unusual behavior or breaches

• Assist in the development and maintainance all remote network access facilities (VPN, RDP,SSL etc.) policies, procedures and control mechanisms and perform routine audit and exception reporting

• Participate in and manage the coordination of the local and co-managed firewall installation and configuration

• Assist in the development and maintainance of internet access and email content filtering policies and work with the IT Support team to implement and maintain the internet access filtering and controls

• Work with the IT Support team to implement and maintain corporate anti-virus and spam filtering coverage

• Participate with the scheduling and installation of security patches on corporate server and network related equipment 

• Participate in the development of infrastructure, application systems and network security policies

• Participate in the development of mobility device and network security policies

• Maintain all SSL certificates

• Maintain accurate documentation and schematics of all security flow processes at the system, application accessibility and infrastructure levels 

• Maintain current knowledge of industry, governmental and corporate certifications, standards and policies

• Participates in PCI-DSS and NI 52-109 projects as a technology resource

• Assist with the maintaining, remediation for NI 52-109 certification requirements and participate with the audit process as requested by the Manager, Technology Operations

• Maintain, remediate PCI-DSS certification requirements and participate with the audit process

• Actively participate in Porter’s Safety Management System (SMS) including, reporting hazards and incidents encountered in daily operations; understand, comply and promote the Company Safety Policy

• Participate in after hours, on call rotation

• Any other duties as assigned

BEHAVIOURAL COMPETENCIES:

• Concern for Safety: Identifying hazardous or potentially hazardous situations and taking appropriate action to maintain a safe environment for self and others.

• Teamwork: Working collaboratively with others to achieve organizational goals.

• Passenger/Customer Service: Providing service excellence to internal and/or external customers (passengers).

• Initiative: Dealing with situations and issues proactively and persistently, seizing opportunities that arise.

• Results Focus: Focusing efforts on achieving high quality results consistent with the organization’s standards.

• Fostering Communication: Listening and communicating openly, honestly, and respectfully with different audiences, promoting dialogue and building consensus.

QUALIFICATIONS:

• Bachelor or Master’s Degree in Computer Science or equivalent experience

• Minimum of 3 years experience in information technology and minimum 1 year of experience in information security

• Experience with anti-malware management and vulnerability scanning tools

• Certification in information security disciplines is an asset 

• Penetration Testing experience is an asset

• Experience in Amazon Web Services is an asset

• Experience with Configuration Management Tools such as Ansible, Puppet or Chef is a definite asset

• Experience with Palo Alto next generation firewall is an asset

• Technical experience/exposure of 3 years

• Highly motivated and willing to take initiative

• Excellent analytical skills

• Ability to work in a team environment or individually as required

• Ability to travel when required (including travel to US destinations)

• Availability to work off hours (including evenings, weekends and holidays) if necessary 

• Advanced knowledge of Microsoft server concepts and processes

• Solid knowledge of networking concepts and technologies

• Strong knowledge of network security concepts and tools  

• Advanced knowledge of LAN security technologies

• Strong understanding of PCI/DSS and 52-109 regulations and other regulatory requirements

• Advanced knowledge of Windows operating systems

• Advanced knowledge of networking protocols/principles (i.e. TCP, IP, VPN) 

• Advanced knowledge of wireless protocols including 802.11 B,G & N and all encryption methods

• Knowledge of cellular technologies

• Excellent knowledge of MS-Active Directory

• Advanced knowledge of remote access features 

• Dependability (must have a clear attendance record and reliable on time reporting for work)

LOCATION: Billy Bishop Toronto City Airport - YTZ