Security Operations Analyst II, Information Security

Security Operations Analyst II, Information Security

Manager, Security Operations

Full-time

February 10, 2026

February 20, 2026

$66,685 - $106,695

8:30 a.m. – 5:00 p.m.

12.4

Toronto – Great location! Steps away from the main public transit station

Highly competitive compensation package which includes a base salary, bonus, benefits, and career advancement opportunities!

• Eligibility for benefits is dependent on the terms of employment

Reporting to the Manager, Information Security and working closely with our Infrastructure team, the Senior Security Operations Analyst role is to ensure the operation of in-house security systems. This includes supporting audits, security operations reporting, engage with our Security Operations Centre vendor, and endpoint device security. This person will also analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct device and user activity audits where required.

• Administer tools and manage alerts associated with MDR (Manage Detection and Response) and End-point protection tools, FIM, SIEM and User Behavior Analytics tools.
• Support in reviewing events and alerts associated with server logs, firewall logs, intrusion detection logs, syslog, network traffic, etc. for unusual or suspicious activity and interpret activity and make recommendations and process resolutions.
• Support with implementation and enforcement of policies, permissions, and controls associated with Security Operations.
• Work closely with IT Infrastructure and other teams to implement and continuously improve effectiveness and efficiency of controls.
• Help collect and organize security data for biweekly and quarterly reports. Support the team by putting together basic summaries of alerts, incidents, and trends that will be reviewed by senior team members or leadership.
• Adhere to policies/procedures to ensure AML requirements are met, when applicable.

• Work collaboratively with teams and support the IT Teams as part of the incident response from Detection till Recovery of systems.
• Support in technical forensic investigation analysis with vendor.

• A university/ college degree
• A minimum of 5+ years hands-on practical experience in IT security
• Any of the following
  
  Certifications:
  
  GCIA, GCIH, Azure Security Engineer, Microsoft SC-200 etc. would beneficial
• Experience working with at least one leading SIEM, EDR and AV solution, preferably Microsoft suite of Security Products, such as Microsoft Sentinel and Microsoft Defender for Endpoint.
• A working knowledge of ISO
  27001 and NIST-800 would be beneficial.
• A working knowledge of network security which includes firewalls, routers, network architecture, IDS/IPS, VPN, Access Control Lists, etc. would be beneficial.
• Works well with others and supports team members to achieve common goals.
• Threat Hunting
• Incident Handling and Documentation
• Develop playbooks and automate incident responses
• Basic Network Security
• Communication and Collaboration

Working with Security Operations Vendor, Forensics Team

IT, Business users

• Office environment
• Periods of high volume with tight timelines
• Long periods of stationary position/sitting
• Prolonged periods of repetitive movement (i.e. using a keyboard and mouse)
• Long periods of time in viewing a computer screen
• Multi-tasking may include speaking to customers on a telephone call while looking up information on a computer program.

• Competitive Compensation
• Comprehensive benefits program (i.e., Health Spending Account, Maternity and Parental Leave Top Up)
• Extensive training programs to set our employees up for success
• Modern office environment conducive to collaboration
• Supportive teamwork culture
• Opportunities to give back to the communities and work through events focused on a variety of charities
• Ongoing social events throughout the year

Founded in 1988, First National is one…