Cyber Security Analyst - Markham
23 hours ago
Job description
Department of Position:
Technology
Reports to:
Director, Technology
Existing vacancy:
Yes – Open and available immediately
Company Description
Proudly Canadian-founded, the Lorex team across North America is committed to the design, development, and deployment of ingenious smart home security and business monitoring solutions that enhance our customers' lifestyles and sense of well-being.
We achieve this by continuing to produce innovative solutions, all backed by cutting-edge technology and a dedicated team of forward thinkers.
Job SummaryThe Cyber Security Analyst is a key member of the Cloud Technology & Security team, reporting to the Director of the department.
You will play a critical role in ensuring compliance with security standards and regulations, conducting security analysis and vulnerability scans, designing secure solutions, analyzing threats, and implementing safeguards to protect sensitive data.
This role combines proactive security reviews, incident response, and collaboration with cross-functional teams to maintain and strengthen Lorex's security posture.
In addition to security, the candidate should be comfortable with privacy considerations, as privacy goes hand in hand with security, though not required to be a subject matter expert.
Duties & Responsibilities:
Security Reviews and Assessments (60%)
Conducts Threat and Risk Assessments (TRAs), Audits and/or Security Reviews on Lorex Products and Services that are based on an industry reputable standard such as ISO 27001/2, SOC2, NIST, and GDPR requirements
Perform security analysis and vulnerability scans of mobile apps (iOS/Android), cloud services, and embedded system firmware
Partner with project teams to provide secure design and deployment guidance
Performs a gap analysis of Lorex security environment against industry best practices and recommend remediation
Recommend and validate secure configurations for infrastructure systems (Windows, Linux, macOS, AD, IDS/IPS, SIEM, etc.)
Define, review, and report on security analystics and metrics
Stay current with evolving information security technologies and best practices
Own the full cycle talent acquisition process from project kick-off to new hire onboarding where applicable
Identify and act on opportunities to streamline talent acquisition processes and tools
Own the full cycle talent acquisition process from project kick-off to new hire onboarding where applicable
Identify and act on opportunities to streamline talent acquisition processes and tools
Security Operations (40%)
Responds to security incidents applying appropriate containment and eradication techniques
Monitor infrastructure, security reports, and vulnerability assessments to identify threats or weaknesses
Support disaster recovery and business continuity planning and testing
Collaborate with software development, DevOps, and engineering teams to integrate security requirements and perform security testing
Serve as an internal security consultant across projects and external stakeholders engagements
Promote and foster a strong security culture within the organization
Qualifications & Experience
Undergraduate degree in Information Security, Computer Engineering, or related field
3-5 years of hands on experience in information security roles with large scale environments
Professional certifications such as Certified Information Systems Security Professional (CISSP) certification, Certified Information Security Auditor (CISA), Certified Ethical Hacker (CEH) or Certificate of Cloud Security Knowledge (CCSK) are assets
Solid technical expertise in vulnerability assessments, penetration testing, application and OS hardening, firewalls, VPNs, PKI, IDS/IPS, encryption, and incident response
Familiarity with industry standards such as ISO27001, NIST, CIS, SOC2 benchmarks
Experience designing and implementing security controls in cloud (AWS, GCP, Digital Ocean etc.)
Experience conducting security analysis and vulnerability scans for mobile apps, cloud services, and embedded system firmware
Knowledge of SIEM, endpoint protection, and monitoring tools
Experience with surveillance, video, real-time communications and similar considered an asset
Ability to work independently and collaboratively, with strong problem-solving and analytical skillss
All prospective employees must pass a background check
Lorex welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
Please note that we use AI tools as part of our recruitment process to enhance efficiency and improve candidate experience.
Similar jobs
The Cyber Security Analyst is a key member of the Cloud Technology & Security team. · You will play a critical role in ensuring compliance with security standards and regulations, · conducting security analysis and vulnerability scans, designing secure solutions, · analyzing thre ...
1 month ago
The Cyber Security Analyst plays a key role in protecting patient and corporate data within the organization's specialty Pharmacy and Patient Support Program (PSP) operations. This position supports the company's information security management framework. · ...
1 month ago
The Senior Information Technology and Security Analyst ensures the security, integrity, and reliability of the organization's IT infrastructure and data. · ...
1 month ago
+Job summary · This is an exciting opportunity to join the CAA Club Group of Companies (CCG) as an Information Security Analyst.About Us: · We are passionate about keeping our Members safe - whether they are on the road, at home, or travelling abroad. · ...
1 month ago
+At CAA Club Group, we are passionate about keeping our Members safe - whether they are on the road, · at home, or travelling abroad. · Conduct regular monitoring and analysis of network traffic, · system logs, and security alerts to identify potential threats · and vulnerabiliti ...
1 week ago
+Xplore Inc. is Canada's fibre, broadband company for rural living. · + · +Monitor network traffic and security alerts to identify and respond to potential threats in real-time. · Support vulnerability assessments and penetration testing to evaluate the effectiveness of existing ...
4 weeks ago
+The Cyber Security Analyst is a key member of the Cloud Technology & Security team, · +ensuring compliance with security standards and regulations. · +Conducts Threat and Risk Assessments (TRAs), Audits and/or Security Reviews on Lorex Products and Services, · +partnering with p ...
1 month ago
The Senior Information Technology and Security Analyst ensures the security, · integrity and reliability of the organization's IT infrastructure · and data.This role is responsible for implementing and maintaining · advanced security controls continuously monitoring systems for v ...
1 month ago
The Cyber Security Analyst plays a key role in protecting patient data within the organization's specialty Pharmacy and Patient Support Program (PSP) operations. · ...
1 month ago
analyste en sécurité de l'information à Esri Canada : · Mettre en œuvre et entretenir le réseau local HPE Aruba, le réseau étendu Palo Alto (SD-WAN), les accès Internet et les services Wi-Fi HPE Aruba de l'entreprise et des régions d'Esri Canada, · ...
1 month ago
The IT Security Analyst will support Identity and Access Management (IAM) operations including user identity lifecycle management access permissions creation modification deactivation accounts RBAC policies implementation secure authentication protocols ensuring users have approp ...
1 month ago
The IT Security Analyst will support the lifecycle of user identities and access permissions by assisting with the creation, modification, and deactivation of accounts. They will apply and follow role-based access control (RBAC) policies and help implement secure authentication p ...
1 month ago
+ Conduct regular monitoring and analysis of network traffic, system logs, and security alerts to identify potential threats and vulnerabilities in real-time. + Develop, implement, and assist with overseeing operational IT security procedures and standards to ensure they are effe ...
1 week ago
We are passionate about keeping our Members safe - whether they are on the road, at home, · or travelling abroad. Meeting the diverse needs of our 2.5M+ Members requires high performing, · forward thinking, and innovative people who work collaboratively to keep propelling our bus ...
1 month ago
As Canada's largest automobile association, we are passionate about keeping our Members safe - whether they are on the road, at home, or travelling abroad. · ...
1 month ago
We are passionate about keeping our Members safe - whether they are on the road, at home, or travelling abroad. As a trusted Member-based organization, we provide products and services that are essential to Members' safety and peace of mind. · Conduct regular monitoring and analy ...
1 week ago
The Financial Crimes Unit brings together Cybersecurity Fraud Physical Security and Resilience Planning capabilities to address the global security environment This position offers a unique experience to learn from experienced leaders in the industry join a team building the 21st ...
3 weeks ago
We are seeking an experienced and highly skilled Information Security Analyst III to join our dynamic team. The ideal candidate will have extensive experience in risk assessments, security testing, participating in audits and assessments, resolving security issues, investigating ...
1 month ago
This position is a hybrid role with 8-month contract position , requiring 2 days in the office and 3 days working from home. · The project involves uplifting the reporting space within GRC groups, · ...
1 week ago
At OpenText AI is at the heart of everything we do—powering innovation transforming work and empowering digital knowledge workers We're hiring talent that AI can't replace to help us shape the future of information management Join us5+ years in cybersecurity operations with hands ...
1 month ago