Porter Airlines has revolutionized short-haul flying with a warm and effortless approach to hospitality, restoring glamour and refinement to air travel. Porter is an Official 4 Star Airline® in the World Airline Star Rating®.
The airline currently offers flights to Toronto, Ottawa, Montreal, Quebec City, Fredericton, Saint John, Moncton, Halifax, St. John’s, Stephenville, N.L, Thunder Bay, Sault Ste. Marie, Sudbury, Timmins, Windsor, New York (Newark), Chicago (Midway), Boston and Washington (Dulles), and has seasonal flights to Mt. Tremblant, Que., Muskoka, Ont., and Myrtle Beach, S.C.
FUNCTION: Reporting to the Manager, Technology Operations, the Technology Security Operations Analyst is primarily responsible for the implementation, maintenance and monitoring of security related components and aspects of the corporate infrastructure and software systems. This is to be performed in accordance with certification, compliance and security procedures based upon regulatory and corporate standards and policies. In addition, the Technology Security Operations Analyst is responsible for working with the Technology System Operations Analysts and IT Support Team to maintain the daily operations, performance, availability and reliability of the enterprise infrastructure and all critical systems.
DUTIES AND RESPONSIBILITIES:
Work closely and cooperatively with all Technology department teams to ensure effective application and adherence to the corporate security policies and procedures under all circumstances
Respond to security incidents and report on the impact and remediation steps to management
Work with Technology Operations and IT Support Team to implement remediation plan and ensure compliance
Accurately manage and audit access to resources, including domain, system, application and network
Implement and maintain LAN/WLAN and WAN network security policies, procedures and control mechanisms to be adhered to by the Operations and Support teams while performing exception reporting analysis
Manage WAN and LAN port accessibility and configurations
Participate in internal and external security audits and vulnerability testing of all security procedures on a periodic basis
Implement and maintain systems and controls to monitor all Technology systems for unusual behavior or breaches
Assist in the development and maintainance all remote network access facilities (VPN, RDP,SSL etc.) policies, procedures and control mechanisms and perform routine audit and exception reporting
Participate in and manage the coordination of the local and co-managed firewall installation and configuration
Assist in the development and maintainance of internet access and email content filtering policies and work with the IT Support team to implement and maintain the internet access filtering and controls
Work with the IT Support team to implement and maintain corporate anti-virus and spam filtering coverage
Participate with the scheduling and installation of security patches on corporate server and network related equipment
Participate in the development of infrastructure, application systems and network security policies
Participate in the development of mobility device and network security policies
Maintain all SSL certificates
Maintain accurate documentation and schematics of all security flow processes at the system, application accessibility and infrastructure levels
Maintain current knowledge of industry, governmental and corporate certifications, standards and policies
Participates in PCI-DSS and NI 52-109 projects as a technology resource
Assist with the maintaining, remediation for NI 52-109 certification requirements and participate with the audit process as requested by the Manager, Technology Operations
Maintain, remediate PCI-DSS certification requirements and participate with the audit process
Actively participate in Porter’s Safety Management System (SMS) including, reporting hazards and incidents encountered in daily operations; understand, comply and promote the Company Safety Policy
Participate in after hours, on call rotation
Any other duties as assigned
BEHAVIOURAL COMPETENCIES:
Concern for Safety: Identifying hazardous or potentially hazardous situations and taking appropriate action to maintain a safe environment for self and others.
Teamwork: Working collaboratively with others to achieve organizational goals.
Passenger/Customer Service: Providing service excellence to internal and/or external customers (passengers).
Initiative: Dealing with situations and issues proactively and persistently, seizing opportunities that arise.
Results Focus: Focusing efforts on achieving high quality results consistent with the organization’s standards.
Fostering Communication: Listening and communicating openly, honestly, and respectfully with different audiences, promoting dialogue and building consensus.
QUALIFICATIONS:
Bachelor or Master’s Degree in Computer Science or equivalent experience
Minimum of 3 years experience in information technology and minimum 1 year of experience in information security
Experience with anti-malware management and vulnerability scanning tools
Certification in information security disciplines is an asset
Penetration Testing experience is an asset
Experience in Amazon Web Services is an asset
Experience with Configuration Management Tools such as Ansible, Puppet or Chef is a definite asset
Experience with Palo Alto next generation firewall is an asset
Technical experience/exposure of 3 years
Highly motivated and willing to take initiative
Excellent analytical skills
Ability to work in a team environment or individually as required
Ability to travel when required (including travel to US destinations)
Availability to work off hours (including evenings, weekends and holidays) if necessary
Advanced knowledge of Microsoft server concepts and processes
Solid knowledge of networking concepts and technologies
Strong knowledge of network security concepts and tools
Advanced knowledge of LAN security technologies
Strong understanding of PCI/DSS and 52-109 regulations and other regulatory requirements
Advanced knowledge of Windows operating systems
Advanced knowledge of networking protocols/principles (i.e. TCP, IP, VPN)
Advanced knowledge of wireless protocols including 802.11 B,G & N and all encryption methods
Knowledge of cellular technologies
Excellent knowledge of MS-Active Directory
Advanced knowledge of remote access features
Dependability (must have a clear attendance record and reliable on time reporting for work)
LOCATION: Billy Bishop Toronto City Airport - YTZ