Security Operations Center Analyst (Night Shift)

ATCO

Job title:

Security Operations Center Analyst (Night Shift)

Company

ATCO

Job description

Job Description:ATCO is a global organization. Our companies operate in many different industries and countries, with different regulatory regimes and business conditions. The cyber security team protects ATCO from cybersecurity threats and ensures the business is enabled and supported. We require a Security Operations Center Analyst to join our cybersecurity operations team for the SOC dedicated Night Shift.The Security Operations Center (SOC) Analyst is a critical position within the Security Operations Center (SOC) responsible for cybersecurity threat monitoring and incident response activities. Reporting to the Security Operations Manager, this role requires expertise in cybersecurity threat analysis and response, managing escalations and assisting with incident updates and communications.You will ensure that cybersecurity events are effectively triaged, investigated, and mitigated during the night shift. This role also involves driving continuous improvement efforts within the SOC to enhance the organization’s security posture and reduce the risk of cyber threats.Always there. Anywhere. That’s us! A team committed to delivering inspired solutions for a better world. We care for our communities and each other, and we are committed to showing up for those who need us. We value and encourage diversity, and we have the courage to do the right thing, even when it’s hard.What Else You Get To Do

  • Continuously monitor security alerts and events from various sources such as SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, Endpoint Protection and other security tools
  • Investigate and respond to security incidents, including malware infections, phishing attacks, and unauthorized access attempts. Investigate and manage incident escalations from SOC Analysts and act in a primary responder role for major or complex incidents
  • Analyze and assess potential threats, vulnerabilities, and risks to the organization’s information systems. Document notable threats and facilitate IOC sharing within the team
  • Provide feedback on rules and detections to minimize false positives and enhance detection capabilities. Provide recommendations and POCs for rule tuning and false positive reduction
  • Provide feedback on quality of log events and perform in depth log analysis to identify potential gaps in existing logging. Provide best practice recommendations and configurations for remediation of identified log gaps
  • Work closely with other ATCO security teams and business units to ensure a coordinated response to security incidents and to improve overall security posture. Participate in shift handovers to ensure continuity of monitoring efforts
  • Perform threat hunts during incidents to search for signs of malicious activity or potential threats within the network
  • Validate and implement IOC uploads and threat blocking in security platforms
  • Document and report security incidents, findings, and actions taken to relevant stakeholders. Gather and provide data for SOC KPIs and metrics
  • Provide review and validation of Security Operations Center Analysts verdicts, ensuring accuracy and appropriate handling of threats
  • Participate in security projects, ensuring security is represented and security requirements are implemented in a timely manner.

Who You Are:

  • Bachelor’s degree in Cybersecurity, Information Technology, or related field, or equivalent work experience
  • At least 2-4 years of experience in a Security Operations Center (SOC) or similar security monitoring environment
  • Knowledge of common attack techniques, tools, and tactics (e.g., MITRE ATT&CK framework, malware analysis)
  • Ability to recognize common attack vectors such as phishing, DDoS, and malware
  • Solid understanding of networking, operating systems (Linux/Windows), and security principles
  • Experience with incident detection, escalation, and response
  • Proficiency with SIEM tools (e.g., Splunk, ArcSight, QRadar, or similar platforms)
  • Familiarity with security technologies like firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and vulnerability scanning tools
  • Familiarity with forensic tools and procedures and threat intelligence frameworks and tools
  • Excellent communication skills, with the ability to clearly explain technical issues to non-technical stakeholders
  • Ability to work in a 24/7 environment including days, evenings, weekends, holidays and nights.

What We Offer:

  • A culture based on caring, integrity, agility, collaboration, and striving for excellence
  • Competitive compensation
  • Flex benefits
  • Tuition assistance program
  • Training and mentorship programs
  • Charitable donation matching

We would like to thank everyone for their application; however, only those being considered for an interview will be contacted. Successful candidates may be required to complete a criminal background check and others screening as needed for the position.Canadian Utilities is part of ATCO Ltd. ATCO delivers inspired solutions for a better world. We are a diversified global corporation with investments in the essential services of Structures & Logistics, Utilities, Energy Infrastructure, Retail Energy, Transportation and Commercial Real Estate. Learn more about how we build communities, energize industries and deliver customer-focused solutions like no other company in the world at www.atco.com.
At ATCO, we support a diverse and inclusive environment that values the contributions and perspectives of everyone on the ATCO team. We believe the ATCO team is the foundation of our business and our most valuable asset across our global operations. Without each team members’ unique skills, strengths, and knowledge, we simply wouldn’t be able to achieve our fundamental vision of delivering life’s essential services to our customers around the world.
ATCO is an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

Expected salary

Location

Calgary, AB

Job date

Sat, 07 Dec 2024 00:41:40 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (globalvacancies.org) you saw this job posting.

To apply for this job please visit jobviewtrack.com.

Job Location