Cybersecurity Operations Analyst (Contract)

CoreFactor is searching for a Cybersecurity Operations Analyst on a contract basis to join on our clients in the GTA.

This position if fully remote. The successful incumbent can be located anywhere within Canada, however, will be required to work 9AM-5PM EST.

Description

This role is crucial for monitoring, analyzing, and responding to security incidents to protect our clients networks, systems, and data. The ideal candidate will have a strong background in cybersecurity practices, incident response, and the ability to use a variety of security tools effectively. The Cybersecurity Operations Analyst will report into the Manager, Cybersecurity Operations, and work closely with Cybersecurity and other Technology teams in the organization.

Responsibilities

• Maintain and administer cybersecurity technologies such as vulnerability assessment, endpoint detection/response, data security, SIEM, and privileged access management tools.
• Contribute to developing, implementing, and fine-tuning SIEM use cases/associated rules and security control configurations to enhance threat detection capabilities.
• Conduct detailed investigations and analyses of security events and incidents to determine their impact and root causes.
• Apply fixes, patches, updates, and suggest configuration remediations to address deficiencies.
• Deploy logging, alerting, and auditing configurations for integration with tool stack.
• Analyze business and information technology systems to understand cybersecurity control gaps.
• Author documentation related to Standard Operating Procedures, deployment/configuration guides, and incident reports.
  
  

Requirements

• Post-Secondary education in cybersecurity-related field.
• Minimum of 2 years of experience in cybersecurity operations or a similar role.
• Experience reviewing and implementing cybersecurity controls for Active Directory, Entra ID, and Microsoft 365 deployments.
• Strong understanding of Identity and Access Management solutions.
• Proficiency with various cybersecurity technologies such as SIEM, XDR, SASE, and DSPM.
• Familiarity with common cybersecurity frameworks/models such as NIST, MITRE ATT&CK, CIS, and OWASP/OSINT.
• Excellent problem-solving skills and ability to work under pressure.
• Ability to effectively communicate cybersecurity-related content to both technical and non-technical stakeholders.
  
  

Nice to Have

• Experience in digital forensics and malware analysis
• Familiarity with administering Mac and Linux-based systems.
• Knowledge of regulatory compliance standards relevant to cybersecurity (e.g., PCI DSS, HIPAA, GDPR, etc.).
• Industry-specific certifications such as CompTIA Security+, CISSP, CEH, OSCP, etc.