This job board retrieves part of its jobs from: Healthcare Jobs | Customer Service Jobs | Work From Home

Daily updated job offers for the people of Ottawa

To post a job, login or create an account |  Post a Job

   jobs in ottawa   

Find your next job here, with us! Daily updated job offers!

Slide 1
Slide 2
Slide 3
previous arrow
next arrow


Avaleris Inc.: Senior Security Analyst

Avaleris Inc.

This is a Full-time position in Ottawa, ON posted July 20, 2021.

Avaleris is a dynamic entrepreneurial IT professional services and solutions company specializing in the implementation of the latest Microsoft technologies.

Avaleris implements robust Security, Hybrid Identity, and Access Management infrastructures for government and enterprise clients to enable their Digital Business Transformation and move to the cloud.

Avaleris service offerings are ideally suited to address the challenges created by COVID-19 with respect to facilitating working from home and reducing the associated security risks.

Working with the latest technologies in the Cybersecurity domain provides ideal career opportunities for both technical and business IT professionals.As a growing organization, Avaleris is seeking a full-time Senior Microsoft Security Analyst (SMSA).

The SMSA will be responsible for providing security assessment services for customer related projects, including the Federal Government.Security deliverables will be focused on Security Assessment activities and identifying appropriate security controls, documenting the security controls, documenting the technical architecture and detailed design for the environment, provide security guidance to customers, contribute to Security Plans and other related security activities.

As a subject matter expert for the Microsoft 365 Suite of technologies and associated technologies you will develop and implement best practices for configuration and operation of these platforms contributing to strengthening our Cybersecurity Practice areas.

The responsibilities of this role include:Working on multiple projects assessing or writing of formal Security Assessment (ITSG-33 based) or Certification reports which meet Communication Security Establishment Canada directives and guideline publications.Working knowledge of the GC standards, policies and guidelines and the principles of security and privacy by design.Recent and direct working experience developing the following documents: Statement of Sensitivity, Asset Categorization, Threat modeling, Business Needs for Security, Statement of Acceptable Risk.Validation of the following:IT security controls (ITSG33 based) and applicable safeguards; assessment of mitigation strategies and assessment of residual risk.Experience working as a TRA Analyst developing and updating TRAs for IT Systems.Experience in authoring TRAs for IT Systems using the Harmonized Threat and Risk Assessment (HTRA) methodology.Experience applying Government of Canada IT Security policies.Knowledge and SkillsExperience with the following technologies:Microsoft Defender, Cloud App Security, Azure Security Center, Azure SentinelGood working knowledge of Microsoft O365, Azure, and Windows operating system.Cybersecurity incident response and handling.Cyber threats and vulnerabilities.Cybersecurity and privacy principles, best practices, and frameworks (E.G.: ISO27001, NIST, PCI and HIPAA).Cybersecurity technologies such as Firewalls, IDS, IPS, XDR, CASB, SIEM and other tools.Cyber-attack stages (e.G., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Computer networking concepts and protocols.Technical expert level knowledge in one or more specialties below are an asset that differentiates you from other candidates:Familiarity with the Microsoft 365 (M365) Suite of technologies would be desirable including:Microsoft Advanced Security Stack (Azure AD Identity Protection, Defender for Identity, Azure MFA, Microsoft Cloud App Security, Defender for O365, Defender for Endpoint, Azure Sentinel)Microsoft Intune, Teams, Windows 10, Microsoft Azure IaaS/PaaS servicesMicrosoft Information Protection solutions (WIP, AIP, labelling, classification, & DLP)Traditional On-premises Technologies (Exchange Server, Active Directory, SQL Server, Windows Server)Network & Wireless Solutions based on Fortinet and Cisco products in particular.Virtualization solutions (VMWare, Hyper-V)Endpoint Security Solutions, SIEM or SOAR platforms and solutions such as Microsoft SentinelDesirable Qualifications & Certifications Include:Bachelor’s degree in a related technical discipline or a college certificate or diploma in information technology and/or have relevant 10+ years of experience and industry certification.Relevant professional certification (CISSP, CISM, CISA, SSCP etc.)Successful completion, or working towards, Microsoft exams MS-500 (Microsoft 365 Security Administration) and AZ-500 ( Azure Security Technologies)