Do you thrive in an environment where you are constantly on the hunt for security threats?  Are you diligent and enjoy working with Splunk, AD, Azure and O365?  Our client, a large utility company is seeking someone to join their team on a permanent basis.  This position is located downtown Calgary and would offer the right candidate the opportunity to build relationships with internal stakeholders and make meaningful contributions to the organization’s cyber security infrastructure. If this is something you would be interested in, apply today


Job Responsibilities
Perform threat hunting activities across the network leveraging threat intelligence from multiple internal and external sources

Assist in proactively identifying and profiling threat actors and their Tactics, Techniques and Procedures (TTPs)

Act as an information security SME in the areas of threat intelligence, incident response, log analysis and network traffic analysis

Analyze activity trends and logs in the network environment using a mix of tools and analytical methodologies to hunt for threats not detected by existing security systems and alerts

Collaborate with the incident response team to rapidly build detection rules as needed, and effectively respond to security incidents

Demonstrate knowledge of advanced threat actors and complex cyber security attacks and attack scenarios

Provide expert analytic investigative support of large scale and complex security incidents

Experience in a security operations center or similar environment tracking threat actors and responding to security incidents

Assist with the development of incident response plans, workflows, and standard operating procedures

Possess good understanding of current and emerging threats and ability to demonstrate practical knowledge of security research

Demonstrate experience in conventional network/host-based intrusion analysis, digital forensics and malware handling techniques

Advanced critical thinking and problem-solving skills with a proven ability to quickly analyze large amounts of often conflicting data and making sound decisions

Write technical solution operations documents


Candidate Qualifications
Three to eight years of experience in a similar cyber secutity role providing support to a large organization

Excellent hunting skills; able to actively identify threats or potential threats and go straight to their source

Strong knowledge of Splunk, AD, Azure and O365
A true “ethical hacker”