1.844.822.0541

info@nexusgroup.ca

Nexus Systems Group

by

Location Address: Hybrid – Scarborough – 1/week currently onsite
Contract Duration: 6 months
Possibility of extension
Number of Positions: 1
Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week (Possible OT in evenings)

Reason: Additional Workload

Story Behind the Need

Business group: Security Operations Centre – main activities for CSOC are data loss monitoring activities, EQRs (email quarantine releases)
Project: As part of the  Data Loss Monitoring program within the Cyber Security Operations Centre (CSOC) the incumbent is responsible for protecting the bank’s assets and data globally through the Security Operation Center (SOC)- ensuring that customer information continues to be protected as expected.
Specifically: the contractors will work on Email Quarantine Releases (Mexico) and help manage review and release of backlog of EQRs

Candidate Value Proposition:
The successful candidates will have the opportunity to work in a fast-paced and dynamic challenging environment; exposure to different teams in CSOC operations team; a lot of opportunity for learning, training and networking – will be set up for success in the space of cybersecurity.

Typical Day in Role:
• Works to protect the bank’s assets and data globally through the Security Operation Center (SOC)
• Analyzing emails in quarantine and requesting approvals for release – working with Email Quarantine Releases (Mexico)
• Releasing emailing in quarantine which are in the Mexico console – help manage review and release of backlog of EQRs
• Reports to the GCDI IB Manager
• Responds to the Data Loss security events generated by the Security Information & Event Monitoring (SIEM) platform as well as events as reported by employees, customers, and discovered through Threat Intelligence
• Uses technical knowledge to perform cybersecurity investigations using various analytical methods and technologies
• Uses different solutions to enhance the company’s global security monitoring and threat intelligence programs for DLM
• Uses available intrusion detection infrastructure to detect and remediates threats.
• Investigates and reviews suspicious activities (e.g. Phishing) reported by customers or other employees of the bank.
• Takes part in initiatives to contribute to the strategic direction for security related technologies or other controls that need to be put in place to reduce the threat levels to the company.
• Effectively break down complex technology knowledge & communicates same to non-technical people.
• 24/7 support is provided for the Data Loss Monitoring team in a rotational basis.

Candidate Requirements/Must Have Skills:
1) 5+ years hands-on technical working experience in performing any of: network security, information security, network and IT support or any other related fields
2) 1+ years’ experience with various network principles, cyber security concepts, investigation procedures, and adversary techniques
3) 1 + years of experience conducting investigations across multiple security technologies
4) Bilingual in Spanish (written & oral) required

Nice-To-Have Skills:
1) SOC experience and familiar with SIEM solutions.

Soft Skills Required:
• Possesses advanced communication (verbal/written/presentation) skills in English and Spanish
• Has developed capabilities in prioritizing and completing assigned tasks in a timely manner and provide oversight and training to other less experienced team members.
• Strong analytical and problem resolution skills
• Strong organizational skills

Education:
Post-secondary education in Computer Science or in a related technical field
• Certifications (GSEC, CompTIA Security+, CCNA, CompTIA Networking+, ITIL CEH, and OSCP) are nice to have

Best VS. Average Candidate:
Ideal candidate is willing to go above and beyond what they are being asked to do; has critical and analytical thinking skills; able to prioritize their job; can understand how to action certain tasks in organized way; good communication skills – on top of having good required experience in network security

NOTE: Candidates need to be flexible to work outside of regular working hours (evenings).

Candidate Review & Selection
2 rounds – MS Teams Video Interviews
1st panel interview – HM and peers – 30 minutes
2nd interview with Director – 30 minutes