Senior Security Analyst

Job Details:

Permanent Full-Time (CUPE 1329)

Posting Status:

Open to all current Town of Oakville employees and external applicants

Closing Date:

Applications for this position must be received at oakville.ca by no later than 11:59 pm on October 31st, 2024. Please do not apply through LinkedIn.

Located on Lake Ontario, just outside the Greater Toronto Area, Oakville is a rapidly growing municipality with a vibrant and dynamic community, making it a great place to live, work and play. If you're team-oriented and possess outstanding interpersonal and communication skills, the town can be a great place of employment for you. Some benefits of working for the town include:

• A great work environment with excellent recreational facilities conveniently located nearby
• Competitive compensation and benefits
• Focus on maintaining a healthy work life balance
• Opportunity to work within a community dedicated to providing quality service to residents
• A great variety of occupations within one organization
• The opportunity for advancement and professional development
• An opportunity to work with leading-edge technology and the latest business application tools
• The opportunity to work with great people in a supportive and fun environment

We offer:

• A hybrid work schedule
• A defined benefit pension plan (OMERS)
• Comprehensive health plan complemented with life and disability insurance
• A progressive work environment that promotes a work/life balance and strives to be a great place for great people to do great things

Job Responsibilities:

• Provide guidance in meeting cybersecurity governance and compliance objectives.
• Identify cybersecurity risks and recommend remediation and/or mitigation methods.
• With deep experience working with Linux and Windows operating systems on both virtualized and stand-alone environments, must be able to securely setup, install and configure systems without assistance.
• Daily maintenance, control and enforcement of the Town of Oakville’s cybersecurity fabric which may include firewalls, load balancers, switches, wireless, end points and other key products and solutions.
• Remain vigilant and knowledgeable in cybersecurity strategy, technology and training methods.
• Control, enforcement and maintenance of SSL certificates on systems and applications.
• Participate in the validating and testing of system changes, track and enforce change control management and compile test data for service deployments.
• Support of network security environments includes management of network security system resources; risk management, security compliance, vulnerability scanning, patching, upgrades, multivendor firewalls, routers, switches, load balancers; network design and architecture problem analysis; network troubleshooting and network maintenance, measured against internal and external customer SLAs.
• Participate in privacy & security incident investigations conducted by the corporate privacy and security office.
• Interface with management, clients and department heads on cybersecurity issues.
• Lead all cybersecurity projects.
• Conduct incident response and investigation and provide root-cause analysis for cybersecurity incidents.
• Contribute to the knowledge base, and provide recommendations for continuous improvements to workflow, process, resiliency, cost structure, and technology.
• Train and/or mentor other team members, peers and client as appropriate.
• Manage security vendor and partner relationships.
• Communicate technical subjects in plain language both orally and in writing.
• Work as needed to fulfil the duties of the position; this could include, evening and/or weekend periods.

Qualifications:

• Minimum of 7 years' IT Security experience
• Bachelor's Degree or diploma in Computer Science, Information Systems, Science Technology or related field.
• Fortinet NSE certification or other major firewall certifications.
• ITIL certification is required or commitment to complete.
• Current security certification such as CISSP, CEH, ISC2, and Security+ are a plus.
• Experience in TCP/IP and common network protocols.
• Experience with enterprise security technologies (Fortinet, Defender for Endpoints, CrowdStrike, Trend Micro, F5, Aruba).
• Experience in providing support for Web Proxy, inline IPS and Sniffer systems.
• Experience support, patching and remediation in response to security flaws.
• Technical writing experience.
• Expert knowledge of network security best practices.
• Excellent verbal, written and presentation skills.
• Strong decision-making skills.
• Expert knowledge of network security protocols and infrastructure, like PKI, IKE/IPsec, SSL etc.
• Knowledge of VMware, Citrix, SAN, Windows systems.
• Knowledge of Data Center Operations.
• Demonstrated strong analytical and troubleshooting skills.
• The successful candidate must hold a valid and unrestricted Ontario Driver’s License Class G minimum and will be required to supply their own personal vehicle for performing job duties/corporate business.
• Please note that successful candidates, who are new hires and/or who have not performed in this position previously will be required to provide a satisfactory criminal record check dated within the last 30 days as a condition of employment.

DATED: October 10, 2024

This job profile reflects the general requirements necessary to perform the principal functions of the job. This does not include all of the work requirements of the job. Applicants are required to demonstrate through their application and in the interview process that their qualifications match those specified. The minimum threshold score for the interview is 75%.

We thank all applicants and advise that only those selected for an interview will be contacted.