Information Security Analyst – Tech

About Company

Driving innovation while safeguarding our digital assets defines our mission at Hiring.zycto. We are a dynamic tech organization, passionately committed to excellence and fostering a culture of continuous learning and growth. For an Information Security Analyst, Hiring.zycto offers a unique opportunity to directly impact our security posture, working with cutting-edge technologies and collaborating with brilliant minds. Here, your expertise is valued, your voice is heard, and your contributions are crucial to protecting our infrastructure and data. Join a team where challenge fuels progress and security is paramount to our shared success.

Job Description

Hiring.zycto is on the lookout for a proactive and detail-oriented Information Security Analyst to join our expanding technology team in East York, Toronto. This role is pivotal in maintaining the integrity, confidentiality, and availability of our critical information systems and data. As an Information Security Analyst, you will be at the forefront of identifying, assessing, and mitigating security risks, ensuring our technological infrastructure is resilient against evolving cyber threats. You will play a crucial role in incident response, vulnerability management, and the implementation of robust security measures.

Your day-to-day will involve a diverse set of challenges, from monitoring security systems and analyzing logs for suspicious activity, to conducting security audits and collaborating with development and operations teams to embed security best practices into every stage of our software development lifecycle. We are seeking someone passionate about cybersecurity, who thrives in a fast-paced environment, and is committed to continuous learning in a rapidly changing threat landscape. If you possess a keen analytical mind, excellent problem-solving skills, and a solid understanding of information security principles and technologies, you will find a rewarding career path with us. This position offers the chance to contribute significantly to our enterprise-wide security strategy, utilizing cutting-edge tools and methodologies to protect our assets and uphold our commitment to data security for our global client base. We believe in empowering our team members with the resources and autonomy to excel, fostering an environment where your expertise directly contributes to our collective success.

Key Responsibilities

• Monitor security systems (SIEM, IDS/IPS, DLP) for alerts and suspicious activity, performing initial triage and investigation.
• Respond to security incidents, analyze their root causes, and implement containment, eradication, and recovery strategies.
• Conduct vulnerability assessments and penetration testing, providing recommendations for remediation and tracking their implementation.
• Assist in the development, implementation, and enforcement of security policies, procedures, and standards.
• Perform security reviews of new and existing systems, applications, and network infrastructure.
• Collaborate with IT and development teams to integrate security controls into various projects and initiatives.
• Stay current with the latest cybersecurity threats, trends, and technologies, recommending proactive measures.
• Participate in security awareness training initiatives for employees.
• Generate detailed reports on security posture, incidents, and compliance metrics.

Required Skills

• 2+ years of experience in an information security role.
• Strong understanding of information security principles, frameworks (e.g., NIST, ISO 27001), and best practices.
• Proficiency with security tools such as SIEM, vulnerability scanners (e.g., Nessus, Qualys), and endpoint protection.
• Experience with incident response methodologies and forensic analysis.
• Solid knowledge of network protocols (TCP/IP), firewalls, VPNs, and intrusion detection/prevention systems.
• Familiarity with operating systems security (Windows, Linux) and cloud security concepts (AWS, Azure).
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and collaboratively in a team environment.
• Bachelor's degree in Computer Science, Information Security, or a related field.

Preferred Qualifications

• Relevant security certifications (e.g., CompTIA Security+, CEH, CYSA+, GSEC).
• Experience with scripting languages (e.g., Python, PowerShell) for automation and analysis.
• Familiarity with compliance requirements (e.g., GDPR, CCPA, PCI-DSS).
• Experience in a hybrid cloud environment.
• Master's degree in a relevant technical field.

Perks & Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• Generous paid time off and flexible work arrangements.
• Opportunities for professional development and continuous learning.
• Access to cutting-edge security tools and technologies.
• Collaborative and inclusive company culture.
• Employer-matched retirement savings plan.
• Employee wellness programs and initiatives.

How to Apply

Interested candidates are invited to submit their resume and a cover letter outlining their qualifications and experience by clicking on the application link below. Please highlight your specific experience with information security tools and incident response.

Apply Now