Senior Security Analyst - Canada - 27599 - Maximus

General information

Job Posting Title

Senior Security Analyst

Date

Tuesday, January 21, 2025

City

Victoria

State

Country

Canada

Working time

Full-time

Description & Requirements

About Maximus

At Maximus, we share an authentic desire to do something meaningful to help others succeed. We apply our deep operational expertise, technology innovation, and digitally enabled citizen engagement in new ways and help governments solve complex problems.

Maximus has been reinventing the way government agencies engage with citizens and are sought out by governments to solve complex problems by supporting various Healthcare Administration, Employment and Citizen service programs worldwide in the United States, Australia, Saudi Arabia, Singapore, South Korea and the United Kingdom.

Our mission is to affect fundamental change in the lives of every individual with whom we engage and at every touchpoint. But ultimately, what we do is improve people’s lives. And that is a testament to the ingenuity, commitment, and compassion everyone brings to their role at Maximus and their dedication to connecting citizens with the services they need from Government agencies.

We welcome and encourage applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process

Position Summary

We are seeking a highly skilled and experienced Senior Security Analyst specializing in Incident Response to join our security team. The successful candidate will play a key role in safeguarding our systems, networks, and data. The position requires a strong understanding of cybersecurity best practices, government compliance requirements, and hands-on experience in identifying, analyzing, and responding to security threats.

Your typical week at Maximus

Lead and coordinate the response to cybersecurity incidents, including detection, investigation, containment, eradication, recovery, and post-incident analysis.
Monitor and analyze security alerts and reports from various sources (SIEM, IDS/IPS, M365, firewalls, endpoint protection, etc.) to identify potential threats or vulnerabilities.
Conduct analysis of affected systems to determine the cause and extent of security breaches.
Provide security expertise for cloud environments (e.g., Azure, AWS, and Google Cloud)
Collaborate with internal teams, including IT, legal, and compliance, as well as external stakeholders, such as law enforcement and third-party security vendors, to resolve incidents.
Monitor and assess the security posture of Microsoft 365 and other cloud-based services, implementing best practices to ensure data protection and compliance.
Develop, maintain, and continuously improve the incident response plan, ensuring alignment with federal and provincial security policies and standards
Perform root cause analysis and recommend corrective actions to prevent future incidents.
Create detailed incident reports and provide regular updates to management and government clients.
Conduct threat hunting activities to identify suspicious behavior and unknown threats before they can escalate.
Stay current on the latest cybersecurity threats, vulnerabilities, and regulatory requirements.
Train and mentor junior security analysts on incident response processes, techniques, and best practices

What you offer us

Knowledge Skills and Abilities

Knowledge of security frameworks: Strong understanding of industry security frameworks such as NIST Cybersecurity Framework (CSF) and ISO/IEC 27001:2022.
Technical skills: Proficiency in security technologies (IDS/IPS, firewalls, EDR), forensic tools, and scripting languages (Python, PowerShell).
Communication skills: Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders.
Problem-solving: Strong analytical skills with a proven ability to think critically in high-pressure situations.

Additional Requirements:

Willingness to participate in an on-call rotation for after-hours incident response.
Ability to work independently and in a team-oriented environment.

Other

Must hold or be eligible for a Government of Canada security clearance at the Secret level.

Education and Experience

Minimum 5-7 years of experience in cybersecurity, with at least 3 years in incident response roles.
A Degree/Diploma, or other related education in Computer Science, Information Security, or equivalent combination of education and experience.
Certifications: Relevant cybersecurity certifications such as CISSP, GCIA, GCIH, CEH, OSCP, or CISM are strongly preferred.

What we offer you

We value your work, which enables us to continuously raise the bar on how we can best serve citizens worldwide. Maximus Canada offers the following:

Competitive market-based salaries
Comprehensive employer-paid benefits
Generous paid time off package
Group Retirement Savings Plan
Hybrid and remote work environments in Canada
Annual paid bonus based on overall company performance
Employee appreciation events

Maximus Global Core Values

Accountability - Accepting responsibility to solve problems and rise to each challenge
Collaboration - Partnering to instill trust and working as one
Compassion - Empowering humanity by applying empathy and insight to every interaction
Customer Focus - Cultivating an authentic desire to help others succeed
Innovation - Embracing change and championing new ways forward
Respect - Valuing the work we do, who we do it with, and the people we serve

We will be accepting applications until 11:59 on February 05, 2025.

Please note that while all applications are appreciated, only those candidates selected for an interview will be contacted.

(No agencies please)

EEO Statement
Maximus is passionate about our employees and place their well-being at the center of our people strategy.  We are committed and proud to build a workforce that reflects the communities we serve.  We value diversity, equity and inclusion and invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, ethnic and cultural origins, sexual orientations, veterans and gender identities recognizing that this is paramount for the growth and success of our organization.