Job Title

Title: Technical Security Analyst/ExpertDuration: Permanent Full timeLocation: Kanata, ON ( 2/3 days per week onsite)Do you want to work with an Innovative Global Telecommunications leader right here in Ottawa?WHAT WILL YOU DOProvide technical support to product development teams on security best practices, standards, and guidelines, and act as a security consultant to assist as requiredSupport the product teams with technical risk assessments and resolution of vulnerabilities and security issuesWork with the product teams to ensure they comply with the company product security posture.Review and approve security plans for each S/W or H/W releaseConduct threat modelingConduct security audits and review artifacts (scans, defects, pen test reports) to ensure severity and risks are well managedProvide support with security testing and act as consultant to the security test teamsAssess the compliancy to the security posture (e.g. security score cards)Support customer facing teams with RFPs, audits, customer requests such as security questionnaires, contract renewals, analysis of customer reported security findingsProvide support for customer security reviews and deep divesAssess security risks and recommend security solutions for new and existing products and servicesResearch and stay current on the latest security trends, threats, and technologiesQUALIFICATIONSBachelor's degree in Computer Science, Information Security, or related fieldExperience in security-related roles, such as security analyst, security engineer, or security consultantStrong knowledge of security frameworks, standards, and best practices, such as ISO 27001, NIST, CIS, OWASP.Experience with spearheading security requirements for application security.Solid understanding on IP networking.Strong knowledge of security protocols, PKI/X.509, Identity Management and centralized authentication (e.g. TLS, Radius, LDAP, SAML, OAuth, OpenID), Linux and OS hardening, API security (e.g. REST)Experience or familiarity with virtualized and cloud-based software architectures, including Virtualized Network Functions, Cloud-Native Network Functions, DevOps/DevSecOps methodologies, Public Clouds.Experience with security testing and assessment methods, such as penetration testing, vulnerability scanning, risk analysis.Experience with threat modeling and methodologies (e.g. STRIDE, OCTAVE, PASTA, VAST, Attack Trees, etc.)Excellent communication and presentation skills, both written and verbalAbility to work independently and collaboratively with cross-functional teams across the globe.Certifications such as CISSP, CISM, CEH, or OSCP are a plusPERKSStrong team-based culture and fun, positive, work environmentCompetitive salaryExcellent health/dental Flex benefitsBonus structure and company reward programRSP matching program