Senior security analyst – ISL 27R
Government of British Columbia’s OCIO Enterprise Services Division based in Prince George, BC is inviting applications from suitable candidates for the position of Senior security analyst. Government of British Columbia’s OCIO Enterprise Services Division focuses on managing and enhancing the province’s central IT infrastructure. It provides strategic IT planning, cybersecurity measures, and digital transformation initiatives to support efficient public service delivery. The division collaborates closely with ministries and agencies to implement innovative technology solutions. The candidates selected for the vacancy will be required to start the work as soon as possible.
Also hiring: Preventative maintenance tech I
Job Description:
Employer Name: Government of British Columbia
Organization: Citizens’ Services
Division: OCIO Enterprise Services
Ministry Branch: Cybersecurity and Digital Trust Branch
Position: Senior security analyst – ISL 27R
No of Vacancies: 2
Salary: $91295.85 – $104132.83 yearly
Employment Type: Regular/Full Time – Remote Job
Classification: Information Systems R27
Union: GEU
Job Category: Information Management/Information Technology
Location: Prince George, BC
Work Options: Remote
Job ID: 114867
Requirements:
Languages: Candidates must have knowledge of the English Language
Education: Candidates should have completion of post-secondary cybersecurity-related degree recognized by the Canadian Centre for Cyber Security
Experience: Candidates should have at least four years of direct hands-on experience in the cybersecurity field in an operationally technical role
Physical Requirements:
- The candidates should exhibit the ability to design applications, systems, and services within a large and complex enterprise network architecture securely and effectively
- The candidates should demonstrate the ability to design and architect complex IM/IT services and technologies, integrate significant applications with enterprise systems, and manage a cybersecurity risk management program
- The candidates should possess proficiency in configuring, implementing, developing, and maintaining platforms like ServiceNow, Jira, or similar for deployment or release automation processes in on-premises or cloud environments
Other Requirements:
- The candidates should possess a or an equivalent combination of other security-related education or training and relevant experience
- The candidates should have a security professional designation such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or equivalent
- The candidates should demonstrate proficiency with advanced security professional designations such as Certified Ethical Hacker (CEH), Certified Penetration Testing Professional (CPENT), or equivalent, which may be advantageous
- The candidates should possess experience scripting in PowerShell, Python, or Bash, essential for various cybersecurity tasks and exhibit proficiency with server operating systems including Linux, UNIX, UNIX-like operating systems, and Windows Server, along with command line experience
- The candidates should demonstrate experience coordinating the patching and updating of software, systems, or technology, essential for maintaining security standards and familiarity with common network commands and tools to effectively monitor and secure networks
- The candidates should possess the ability to analyze complex technical issues, maintain IM/IT systems, manage networks, manage cloud services, and develop applications (software) and proven track record in performing cybersecurity-related risk assessments and leading significant security-related projects
- The candidates should demonstrate proficiency in penetration testing, vulnerability scanning, security notifications, advising on security treatments, and tracking security-related tasks and possess strong report writing skills for communication with senior technical staff and for preparing executive-level business reports
- The candidates should have familiarity with enterprise Vulnerability Management software, IM/IT asset inventories, Software Bill of Material (SBOM) inventory, National Vulnerability Database’s Common Vulnerabilities and Exposures (CVEs), and the CVSS scoring system
- The candidates should possess experience in threat hunting, cybersecurity risk assessments using a threat modeling methodology, managing risk registers, leveraging the NIST Cyber Security Framework or equivalent, and disaster recovery and business continuity planning and experience leading cybersecurity-related Agile projects, performing cybersecurity incident response and handling tasks, and developing, implementing, and maintaining secure applications
Responsibilities:
- The candidates should be able to develop, implement, and maintain a comprehensive information security architecture
- The candidates should be able to protect the confidentiality, integrity, and availability of government information and technology
- The candidates should be able to stay abreast of current and emerging security threats and identify and report security incidents promptly
- The candidates should be able to provide expert input on system applications regarding security
- The candidates should be able to collaborate with Security Investigators for mitigation and remediation of security incidents
- The candidates should be able to ensure the protection of systems delivering essential services to BC residents
- The candidates should be able to demonstrate high technical expertise and a passion for cybersecurity in this critical and high-profile role
Benefits:
- The candidates will get pension, Employee and family assistance services, extended health, dental, vision care, medical services like chiropractic, massage therapy, naturopathy, physiotherapy, podiatry and Basic life insurance
How to apply:
If the position is fit for you and the basic requirements are fulfilled then you can now apply directly to the employer (along with your resume) through the below-mentioned details.
We thank all the applicants for showing their interest and trust in us, however, only the most eligible candidates will be selected and conducted for further procedure directly from employers, in between no charges/fees or original documents will be asked from any applicant. All the best!