Security Analyst

Security Analyst
The Security Analyst(s) will support CSRMB's daily operations and projects, performing duties such as:

Managing the security queue in Service Now and following incident response processes.

Analyzing threats and communicating risks to business units.

Creating and maintaining reporting artifacts (, incident reports, HR investigations, stolen/lost equipment reports).

Compiling/analyzing data for management metrics.

Developing and executing security awareness campaigns based on trends and needs.

Responding to security incidents, guiding first responders, and coordinating across business units.

Conducting root cause analysis of incidents and staying updated on threat trends.

Executing phishing simulation exercises and tracking/reporting results.

Managing Privilege Access Management (PAM) requests within defined SLAs via Service Now.

Background on CSRMB:

Oversees IT security policy, education, incident response, threat risk assessments, procurement security reviews, and threat/vulnerability evaluation.

Mandatory Qualifications/Requirements
Qualification/Requirement
Candidate Response
Reference to Résumé Candidate must demonstrate experience working in the IT sector within the cybersecurity or networking fields within the past five () years. Candidate must be able to work % onsite at a Government of Saskatchewan office in Regina, Saskatchewan, effective the contract start date. Candidate confirms the all-inclusive hourly rate cannot exceed $ plus applicable taxes for the contract duration.

Local Knowledge
GOS is interested in understanding the Resource's experience with GOS, or comparable entities, as it relates to the technical and business landscape. Describe in detail.
This requirement is heavily weighted.
Provide specific detailed examples Demonstrated working experience with network security and protocols (TCP/IP, VPN, firewalls, IDS/IPS).
Provide specific detailed examples Demonstrated working experience with security tools and platforms ( SIEM systems like Sentinel, antivirus, vulnerability scanners).
Provide specific detailed examples. Demonstrated working experience with operating systems and platforms (Windows, Linux).
Provide specific detailed examples. Demonstrated working experience with incident response and handling with an ability to detect, investigate, and mitigate security threats.
Provide specific detailed examples. Demonstrated working experience with risk assessment and management techniques for evaluating risks and implementing effective security solutions.
Provide specific detailed examples. Demonstrated awareness of compliance and regulations such as ISO and NIST security frameworks, privacy legislation, etc.
Provide specific detailed examples. Demonstrated working experience with scripting and automation skills ( Python, Power Shell, Bash).
Provide specific detailed examples. Certifications in networking and/or cybersecurity such as CompTIA Network+/Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC) are considered assets. Demonstrated working experience with penetration testing and ethical hacking is considered an asset.
Provide specific detailed examples. Bachelor's Degree in a related field ( Computer Science, Information Technology, Cybersecurity) is considered an asset.

Anticipated

Start Date:

October , (or ASAP after award)

Client / Ministry: Government of Saskatchewan (GOS)

Division: Ministry of Sask Builds and Procurement – Information Technology Division (ITD)

Branch: Cybersecurity and Risk Management Branch (CSRMB)

Location: % on-site in Regina, Saskatchewan, Canada