Information Security Analyst

Central 1 is the partner of choice for financial, digital banking and payment products and services – fueling the success of businesses across Canada. With $16.9 billion in assets, we leverage our scale, strength and expertise to power progress for more than 225 credit unions and other financial institutions, enhancing the financial well-being of more than five million customers from coast to coast. For more information, visit Central1.com.

Because of COVID19, all Central1 offices are currently closed to non-essential employees. This role will see you working remotely until our offices are reopened. The timeline to reopen is still under consideration, as are our future remote working policies.

An experienced Information Security professional, you’re someone who proactively solves problems, exploring and testing options and ideas when presented with a challenge.  In this role, you’ll not only handle the day to day operational incidents for security but work on projects aligned to our multiyear, multimillion-dollar cyber maturity program. We’ll also need you to be keen on the automation of repeatable tasks and process improvement as well as knowledge and continuous learning.

You may not have had the word security in a past title, you’re passionate about it and eager to continue to learn.

What you'll be doing:

• Assist the operations team in defining current baselines for the secure configuration of all devices (eg. Servers, workstations, network devices)
• Maintain operational configurations of all security solutions as per the established baselines.
• Review logs and reports of all installed devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution.
• Participate with investigations into problematic activity.
• Participate in the design and execution of vulnerability assessments, penetration tests and information security audits.
• Participate in the planning and design of enterprise security architecture, under the direction of the Director, Information Security
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures) under the direction of the Corporate Information Security Officer, where appropriate.
• Provide oversight and contribute to the design and deployment of application solutions within Central 1 to ensure they are carried out following industry standard best practices.
• Maintain up-to-date detailed knowledge of the information security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.

What you''ll have

• Typically, you have a University degree and 5 years information technology related work experience, ideally with 3+ spent working in a security function.
• One or more of the following certifications preferred:
  • (ISC)2 - CISSP,  CSSLP, CCSP
  • GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEE
• Experience with deploying and securing Cloud deployments including PAAS, IAAS and SAAS
• Experience with Incident handling
• Working understanding of OWASP Top 10 and SANS Top 25
• Working technical knowledge of log management platforms including Syslog and at least one enterprise class SIEM.
• Strong understanding of IP, TCP/IP, and other common network protocols.
• Familiarity with ITIL, incident management, and ISO 27001.
• Experience with two or more of the following scripting languages:  Python, Ruby, Go, Perl and PowerShell.

As much as we believe in working hard, we also believe in personal growth and taking time for ourselves. Accordingly, our total rewards philosophy amounts to one of the best compensation and benefits packages in the industry – from performance-based incentives and extended benefits, to training and education reimbursements and ample vacation time.

Central 1 is committed to building a diverse and inclusive workforce by creating an environment where everyone feels like they belong and has the opportunity to be successful. We are welcoming of all applicants and we will provide an accessible candidate experience.

Reporting to: Manager, Information Security 
Grade:D1/ E
Location: Vancouver, British Columbia