Security Operations Center Analyst at North America in Kitchener, CA

Security Operations Center Analyst

Location:
Kitchener Ontario

Description: North Americaneed a Security Operations Center Analyst immediately starts from Wed, 06 Feb 2013 20:55:04 GMT, this position will be placed in Ontario.

For more detail information about this job vacancy please read the description below. If interested in this position, please email us your resume, along with salary requirements and a cover letter to North America starts from Wed, 06 Feb 2013 20:55:04 GMT.

Research In Motion (RIM), a global leader in wireless innovation, revolutionized the mobile industry with the introduction of the BlackBerry® solution in 1999. Today, BlackBerry products and services are used by millions of customers around the world to the people and connect that matter most throughout their day. Founded in 1984 and based in Waterloo, Ontario, RIM operates offices in North America, Europe, Asia Pacific and Latin America. RIM is listed on the NASDAQ Stock Market (NASDAQ: RIMM) and the Toronto Stock Exchange (TSX: RIM). For more information, visit www.rim.com or www.blackberry.com.

Security Operations Center Analyst

Waterloo, Ontario, Canada

This team will be focused on configuring and maintaining security technologies and SOC-relevant tools (CISCO IDS; Snort IDS; ArcSight; Archer). It will be responsible for integrating new technologies into the SOC’s monitoring program, as well as building out associated operational processes (examples: NetWitness; AirTight; Iron Port; McAfee ePO (+DLP) and NAC).

This role will provide advanced technical assistance, project and task direction, analytic consultation and relationship management expertise.

This team must ensure that the SLAs defined by internal customer groups are attainable via the use of distributed security monitoring tools. The role acts as the liaison point for customers, SOC contact point for security process and technology projects and the escalation/ guidance point for analyst team members.

This role has responsibility for SOC participation in new security process and technology projects; describing and documenting operational procedures for existing and new security monitoring technologies, leading in the definition of response plans; conducting and participating in vendor relationships and guiding input from the customer.

• Degree in related technology subject such as Network Security, Information Security and Computer Science preferred
• any industry related certifications will be considered a definite asset eg. CISSP; GSEC; GCIH; GCIA; CEH and/or CISA
• 5+ years professional experience, with minimum 1 year+ senior analyst or architect experience
• strong experience across a breadth of security tools and technologies
• excellent understanding of protocols (TCP/IP, SMTP, HTTP, FTP, POP, LDAP, etc.); packet analysis capabilities and operational experience and detailed understanding of Intrusion Detection Systems (IDS/IPS), including configuration, signature writing, development and tuning (both general and environmental) on large and complex networks
• experience using network forensic and ethical hacking tools & techniques eg. network sniffers, protocol analyzers, vulnerability scanners and network mapping tools
• proficiency using both Windows and Linux
• experience working with SIEM technologies such as Arcsight
• the ability to understand various log formats and be able to parse them to extract information of interest
• prior experience creating task automation solutions in a high level scripting language
• comfortable working with a ticketing system
• need to understand and have experience with information technology infrastructure
• must have the ability to analyze multiple sets of control and vulnerability/threat factors and propose appropriate solutions
• must have capability to drive projects and solutions to production use
• need to understand relevant security technologies/tools and how to maximize their use
• need to fully understand security monitoring processes

–