IT Advisor - Vancouver, Canada - BC Hydro

BC Hydro

Verified Company

Vancouver, Canada

1 week ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Powered by water... and by people like you

Providing clean electricity to 4 million customers takes a diverse workforce and that's where you come
in. We need your talent to help us build major projects to meet growing demand. To help our
customers find clean energy solutions for their homes and businesses and to be ready to respond
during storms and outages to keep our system reliable.

Working for BC Hydro is meaningful. And now, the stakes have been raised as we work towards a
solution to climate change while safely providing clean, affordable electricity to our customers.

We offer a healthy work life balance, training opportunities and career progression. We're proud to be
ranked as one of B.C.'s Top Employers and one of Canada's Best Diversity Employers. Join us as we
build an even cleaner B.C.

JOB DESCRIPTION

Duties:

As a member of the Cyber Security Operations team, you may perform a combination of the

following tasks:

Cyber Defence
Use data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic

logs) to analyze events that occur within their environments for the purposes of mitigating threats

Perform cyber defense trend analysis and reporting.
Use cyber defense tools for continual monitoring and analysis of system activity to identify

malicious activity

Assist in the construction of signatures which can be implemented on cyber defense network

tools in response to new or observed threats within the network environment or enclave

Develop content for cyber defense tools
Incident Detection & Response
Investigate, analyze, and respond to cyber incidents
Assist with the development of new analytic methods/correlation rules for detecting threats and

incidents

Perform event correlation using information gathered from a variety of sources within the

enterprise to gain situational awareness and determine the effectiveness of an observed attack

Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous

activities, and misuse activities and distinguish these incidents and events from benign activities.

Analyze identified malicious activity to determine weaknesses exploited, exploitation methods,

effects on system and information

Determine tactics, techniques, and procedures (TTPs) for intrusion sets
Analyze, isolate, and remove malware.
Threat & Vulnerability
Identify and assesses the capabilities and activities of cybersecurity criminals or foreign

intelligence entities; produce findings to help initialize or support law enforcement and
counterintelligence investigations or activities

Characterize and analyze network traffic to identify anomalous activity and potential threats to

network resources

Support vulnerability management by producing reports and making remediation

recommendations

Monitor external data sources (e.g., cyber defense vendor sites, Computer Emergency

Response Teams, Security Focus) to maintain currency of cyber defense threat condition and
determine which security issues may have an impact on the enterprise

Perform scans and/or recommend computing environment vulnerability corrections
Support and configure BC Hydro's vulnerability management tools.

Qualifications:

***- Bachelor's Degree or Technical Diploma

5+ years IT / network operations experience
3+ years of experience in a security operations role is preferred
Ability to work independently with mínimal supervision
Strong knowledge of various security technologies, infrastructure, and network systems
Good verbal, written, and customer services skills
Plus, some combinations of the following: One or more security certifications including CISSP,

CRISC, CISA, CISM, GCIH, GPEN, CEH- Scripting (python) and Security DevOps experience

Knowledge of networking concepts and protocols, and network security methodologies.
Knowledge of cyber threats and vulnerabilities.
Knowledge of cyber defense and vulnerability assessment tools and their capabilities
Knowledge of incident response and handling methodologies
Knowledge of network traffic analysis methods
Knowledge of adversarial tactics, techniques, and procedures
Knowledge of defenseindepth principles and network security architecture
Knowledge of the common attack vectors on the network layer
Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name

System (DNS), and directory services

Knowledge of how to use network analysis tools to identify vulnerabilities
Knowledge of computer forensics and investigative procedures
Knowledge of packetlevel analysis using appropriate tools (e.g., Wireshark, tcpdump).

ADDITIONAL INFORMATION

This position is located downtown Vancouver (333 Dunsmuir Street) and is a Hybrid role.
This is a rebulletin, previous applicants don't need to reapply.

PN# for internal reporting purposes)
We're always looking for exceptional pe