Analyst II, Security Operations
Company Liberty Utilities
Location US or Canada (Remote)
Preferred GIAC Certifications GSEC
Travel 10%
Salary Not provided
Contact Name Melissa
Contact Email melissa.mclauchlan/at/
Expires 2024-04-30

Job Description

At Algonquin-Liberty, we hire passionate people who care about doing the right thing for our customers. We are entrepreneurial, creative, and outcome-focused. Here, your natural talent and achievements will flourish in an inclusive environment of teamwork, trust and continuous learning. We are always pursuing excellence to exceed our ambitions goals, rewarding both the goal outcome and how we achieve it.


As the Analyst, Security Operations at Liberty, you will be collaborating with key stakeholders across the organization to operate and sustain a security operations program. You will be instrumental in operationalizing the Security Operations Team at Liberty – defending both the Information Technology (IT) and Operational Technology (OT) environments against an ever-evolving threat landscape. You will work alongside the IT Infrastructure, IT Operations, and other security partners within Liberty to support the enterprise cybersecurity program. You will be an active team member in daily Security Operations which includes: Incident Monitoring & Response, Web Application Firewall administration, SIEM administration, Threat Intelligence gathering, Threat Hunting, Tabletop Exercise execution, Red & Blue team engagements, and Vulnerability Management reporting, developing hardened configurations, and improving system protection configurations. Your role will also include supporting various IT related engagements such as supporting regulatory and compliance requirements (NERC CIP, SOX, PCI-DSS). The Analyst, Security Operations must apply their advanced knowledge of security technology and operations gained extensive professional experience with these technologies, processes, and theories. You will help develop and coach junior members of the team in advancing their knowledge and expertise upon effective security operations and administration.


Security Operations:

Perform incident response activities
Deliver Comprehensive Post-Incident Response Reports
Standardize and Maintain Incident Response Playbook
Perform forensic analysis on workstations, malware, malicious domains, etc.
Monitor Security Monitoring Tools for Alerts
Support ITSRC projects and IT engagements

ITSRC Ticket Management:

Review, document, evaluate, and support response to reported phishing emails.
Develop and compile reports on security incidents (phishing, viruses, breaches, etc.)
Respond to and research innovation request technologies submitted by the business. Triage and provide recommendations to IT Security Risk and Compliance leads.

IT Security & Threat Hunting:

Monitor Security Monitoring Tools for Alerts
Support ITSRC projects and IT engagements

Education and Experience

University - Bachelor degree or equivalent experience
3-5 years of cybersecurity experience
Relevant security certifications is an asset (i.e., GCIA, GCIH, GSOC, Security+, CISSP, etc.)
Strong background in ticket management systems
Strong familiarity in incident response
Windows-Administration background
Familiarity of IT Best-Practices (NIST, ISO27001)
Understanding of antimalware technologies (Signature-based & Heuristic)
Solid understanding of threat vectors and incident response investigation best-practices
PC skills and hands-on experience building tools and presentations with Microsoft Word, Excel, PowerPoint, Project, and Access.
Knowledge of scripting languages is preferred
Strong documentation skills required
Knowledge of information security industry best practices is preferred