Key skills
AzureCyber SecurityDNSSMTPCommunicationNetwork Security
About this role
Role Overview
- Help monitor Stantec’s systems for signs of intrusion
- Work closely with the IT Security team to investigate, contain, and remediate security incidents
- Perform operational reviews of IT security systems and monitor key consoles
- Participate in the investigation of alleged security breaches to help determine root cause, impact, remediation
- Respond to incidents reported by users through Stantec's IT ticketing systems
- Assist IT Security administrators in management and operational configuration of IT Security systems and controls
- Document all security incidents and near misses reported in our incident response system
- Other duties as assigned
Requirements
- Basic understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management
- Basic understanding of networking concepts and protocols (such as DNS, SMTP, FTP, SSL, etc.)
- Strong written and verbal communication skills
- Demonstrates an outstanding “customer orientation” personality towards service management
- Capable of learning our tools, consoles and applications used in day-to-day performance of job responsibilities (e.g. Microsoft Exchange Online Protection (EOP), Microsoft Sentinel, Microsoft 365 Defender, Microsoft Azure, Abnormal Security, Proofpoint TRAP, IBM QRadar (SOAR), CrowdStrike Falcon)
- Self-starter – Shows initiative, is solutions-focused and shows the ability to work with minimal supervision
- Awareness of the challenges and benefits of working in a geographically and culturally dispersed, global, virtual teams, and willingness to work cooperatively with others on such teams, which sometimes entails working outside normal business hours
- Demonstrate diligence in detailed documentation of activities and actions taken during incidents and activities to ensure accountability of actions
- Promote innovation and continual process improvement
- Demonstrates knowledge and skill in a technical area, and the ability to tackle a problem by using logical, systematic, sequential approaches
- Prefer candidates who show current or past information and/or Cybersecurity program related activities
- Education and/or experience in the following course areas are a plus: CompTIA Security+ entry level, CompTIA CySA+ Focused on Cybersecurity analysis, Certified SOC Analyst (CSA), Cybersecurity Bootcamps
Tech Stack
- Azure
- Cyber Security
- DNS
- SMTP
Benefits
- Health, dental, and vision plans
- Wellness program
- Health care spending account
- Wellness spending account
- Group registered retirement savings plan
- Employee stock purchase program
- Group tax-free savings account
- Life and accidental death & dismemberment (AD&D) insurance
- Short-term/long-term disability plans
- Emergency travel benefits
- Tuition reimbursement
- Professional membership fee coverage
- Paid time off