Job Description

Permanent Full Time

-

Are you looking to join an organization that values and understands the importance of cyber detection and response, operationally and tactically? If so then we are looking for you, our next: Detection Analyst.

The Detection Analyst is a critical role reporting to the Manager, Detection Enablement within our Global Security Operations Centre (SOC). In support of Great-West Lifeco global security operations, the detection analyst will help mature the detection processes and capabilities to better defend our environments. You will be on the front lines of innovation working with a highly motivated team focused on identifying and developing solutions to detect and stop adversaries. This role will support our global 24/7 SOC by providing high-fidelity signals and technical analysis aimed to detect adversary tactics, techniques, and behaviors.

What you will do 

• Actively work with our threat operations, threat intelligence, and detection engineering teams to enhance the processes that support the SOC team’s mission:
• Assist threat modelers with architecture analysis, threat modeling and technical design reviews of various solutions
• Ensure detection coverage aligns with threat model findings
• Translate threat model outputs into actionable detection requirements
• Define detection use cases and data source requirements
• Perform detection gap analysis between threat models and SIEM telemetry
• Prioritize detection use cases
• Work with stakeholders to ensure effective implementation of detection use cases
• Define and tune data sources to better identify and stop threat actor activity

What you will bring 

• Query language proficiency (YARA, SQL, KQL, etc)
• Experience with git and common continuous delivery processes, JIRA and Confluence
• Effective written and verbal communication skills
• Strong community building or group collaboration skills
• Ability to self-teach, research, or quickly learn new technical and non-technical topics
• Ability to break down complex problems or systems using a hands-on approach
• Solid technical background related to at least one of application development, systems administration, network administration, systems architecture, cloud service providers
• Strong cybersecurity and application security background
• Familiarity of the core functionalities of security operations centres and detection engineering teams
• Ability to work independently and function effectively as part of a team in a dynamic environment
• The ability to work under stressful conditions for sustained periods of time
• A desire to make it harder for adversaries to succeed
• A degree or equivalent education in a related discipline such as Computer Science or Cyber Security, or a Certification in Information Security, or a combination of training and experience within Cyber Security
• Experience working in a SOC environment
• Specialized Knowledge
  • Analytical capabilities and a strong ability to think creatively when approaching issues
  • An ability to analyze logs from multiple sources (e.g. firewall, cloud, endpoints) to identify and investigate security events and anomalies
  • An understanding of cyber advanced persistent threats, threat actors, IOC’s and TTPs
  • Deep understanding of Cloud and Application Security Best Practices, including threat modeling
  • Familiarity with the Lockheed Martin Kill Chain analysis, MITRE ATT&CK framework, STRIDE threat modeling framework
  • Familiarity with the concept of detection engineering
  • Ability to author products for peer and management audience levels
  • Understanding of security technologies (intrusion detection/prevention system, network and operating system security, network firewall, WAF, SIEM, log management, VPN)
  • Familiarity with incident handling processes and techniques
  • Knowledge of the cyber threat landscape and how to apply attacker motivation, capability, and intent to an organizational threat profile
• Reliability Status Security Clearance – this can only be completed with candidates who receive an offer of employment. This is a personal security status that is required as a condition of employment before an employee can gain access to Protected B information, assets or work sites as outlined by the Government of Canada website. The cost of submitting these checks will be covered by Great West Life.

-

The base salary for this position is between $53,900.00 - $95,000.00 annually. This represents base salary only and does not represent other variable compensation components of our total compensation ( i.e. annual bonus, commission etc). If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.

Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.

Grow with Canada Life

We’re united by a shared purpose: to improve the financial, physical and mental well-being of Canadians. Our company is trusted by 1 in 3 Canadians and contributes to the strength of communities across the country.

We’re looking for people who live our values everyday: we step up, we do the right thing, and we deliver – for our customers, communities and each other. Are you someone who always strives to do the right thing, who steps up for themselves and others, and who delivers with impact? Then we want to hear from you!

What we offer

We’re committed to supporting our employees through every stage of their career. Here’s what you can expect as a full-time or part-time permanent team member:

• Career Development Opportunities for career advancement, access to industry-leading learning programs and up to $2,000 annually towards education reimbursement.

• Health & Wellness: Flexible health and dental benefits, plus a $5,000 mental health benefit to support your well-being.

• Time Off: In addition to regular vacation and personal days, we support community involvement with a volunteer day. 

• Financial Security: Company-matching pension plan, share ownership program and additional investment options.

• Rewards and Recognition: Employee recognition programs, service milestone celebrations, employee discounts and more!
• Emphasis on Community We provide a workplace where employees feel connected and supported through Employee Resource Groups (ERGs), mentorship programs, social clubs and events.

Learn more about Canada Life

We’re committed to removing barriers and ensuring equal access to employment. Applicants requiring reasonable accommodation during the application process may contact talentacquisitioncanada@canadalife.com All information provided will be handled in accordance with applicable laws and Canada Life policies.

Canada Life would like to thank all applicants, however only those who qualify for an interview will be contacted

#LI-Hybrid