Canadian North is a vital air service provider for the Canadian Arctic and an industry-leading charter carrier. With a mission to make life better in the communities we serve, we provide reliable passenger and cargo services to 25 northern communities, connecting them with major southern hubs in Ottawa, Montreal, Calgary, Winnipeg, and Edmonton.

As a proudly 100 Inuit-owned airline, we are deeply committed to cultural inclusivity, community investment, and the well-being of northern communities. Canadian North strives to be a trusted partner for the North by contributing to prosperity, fostering community connections, and supporting innovation and teamwork.

We prioritize safety, reliability, and collaborative success in everything we do. Our customers choose us because they trust us to deliver essential services with care and consistency. At Canadian North, we offer more than just a job—we provide an opportunity to embark on an adventure while making a meaningful difference in the communities we serve.

Join us as we connect northern Canada with the world, delivering on our mission and building a workplace where people want to start and grow their careers.

We are seeking a skilled and versatile Security Analyst to join our team. The ideal candidate will possess broad cybersecurity expertise and play a key role in strengthening our organizations security posture. This position combines broad cybersecurity responsibilities with hands-on Security Operations Center (SOC) tasks, including monitoring, detecting, and responding to security incidents.

As a Security Analyst, you will collaborate with cross-functional teams, manage security tools and technologies, and ensure adherence to security policies and best practices.

Duties & Responsibilities:

Generalist Cybersecurity Duties

• Develop, review, and enforce cybersecurity policies, standards, and procedures.
• Ensure compliance with frameworks such as ISO 27001, NIST, SOC 2, or PCI DSS.
• Conduct risk assessments and recommend mitigation strategies.
• Perform regular vulnerability scans and coordinate remediation efforts.
• Track and analyze vulnerabilities and patch management across systems.
• Develop and deliver cybersecurity awareness programs for employees.
• Promote best practices to reduce human risk factors.
• Act as an escalation point for critical incidents.
• Lead post-incident reviews and generate lessons learned.
• Evaluate and recommend security technologies and solutions to improve security posture.
• Collaborate with IT teams for secure implementation of systems and services.

SOC Operations

• Monitor security alerts and logs from tools such as SIEM, EDR, NDR, and firewalls.
• Identify, investigate, and prioritize potential security incidents.
• Respond to and mitigate security incidents using established protocols.
• Perform root cause analysis and implement corrective measures.
• Leverage threat intelligence feeds to identify potential risks and trends.
• Analyze and disseminate relevant threat intelligence to stakeholders.
• Develop and improve automated playbooks for incident detection and response.
• Optimize SOC processes to reduce response times and improve efficiency.
• Provide regular reporting on SOC metrics, incidents, and trends.
• Maintain up-to-date incident response documentation and security runbooks.

Skills & Qualifications:

• Bachelors degree in Computer Science, Information Security, or a related field. Relevant work experience may be considered in lieu of a degree.
• 5+ years of experience in cybersecurity, with at least 2 years in a SOC or incident response role.
• Preferred certifications: CISSP, CISM, CEH, GIAC, or equivalent.
• Proficiency in SIEM platforms (e.g., Splunk, QRadar, Sentinel).
• Experience with EDR tools (e.g., CrowdStrike, Defender for Endpoint).
• Knowledge of firewalls, IDS/IPS, and network security principles.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation.

Closing date: February 12, 2025