Security Analyst at Aviso Wealth – Toronto, Ontario, Canada

The Opportunity:

We’re looking for an experienced Security Analyst to join our growing cybersecurity team.

Reporting to the Director of Cyber Security, the Security Analyst is responsible for identifying, mitigating, and resolving security threats across Aviso’s IT and Cloud infrastructure while continuously improving Aviso’s security posture.

Who you are:

•  Service – You consider both internal and external stakeholders and demonstrate intent of understanding and putting the clients’ needs first. You advocate service excellence and work to deliver solutions that meet the needs. You proactively develop strategic partnerships that allow Aviso Wealth to become a trusted advisor and partner
•  Execution – You are committed to achieving your goals and to succeed. This includes focusing on “getting things done”, as well as recognizing and taking advantage of opportunities as they arise. You are consistently looking for ways to improve your personal best and see value in continuous improvement. You take accountability for your actions and learn from mistakes
•  Collaboration – You work collaboratively with others with the common goal of driving positive results. Making meaningful contributions to your team to achieve organizational goals is a priority. You proactively encourage collaboration, build trust and inclusion, and work to establish effective relationships both inside and outside of the organization

What your day looks like:

• Conduct daily security investigations, monitor network activities, and analyze logs to detect potential threats or breaches
• Proactively identify and respond to security threats across the IT and Cloud environments
• Implement and enhance security controls to protect Aviso’s network against the evolving threat landscape
• Deploy, maintain, and enhance new security solutions and technologies, including SIEM, SOAR, and XDR solutions
• Participate in security projects and collaborate with stakeholders to ensure the solutions align with security standards and business objectives
• Propose changes and improvements to existing policies and procedures to ensure operating efficiency and regulatory compliance

Your experience and skills:

• Bachelor’s degree in Cybersecurity or a related field is required; a Master’s degree is preferred
• Minimum of 10 years of experience in Security Operations (SOC) teams or equivalent roles
• Proven experience in Incident Response, Threat Management, Cloud Security, and Attack Surface Management
• Practical experience in deploying and managing SIEM, XDR/EDR, SOAR, and other advanced security solutions
• Proven experience in SIEM technologies such as Sumo Logic, Splunk, Microsoft Sentinel, or similar products
• Practical experience implementing security controls and enhancing capabilities based on leading security frameworks, such as MITRE ATT&CK, NIST CSF, OWASP, or ISO:27001
• Experience building new SIEM threat use cases and alerts mapped to the MITRE ATT&CK framework
• Experience developing tactical playbooks covering various attack vectors
• Experience conducting security investigations within Microsoft 365 (M365), Defender, or similar security platforms, including analyzing alerts, logs, and events to identify and mitigate potential threats
• Experience in managing endpoint protection (EDR) solutions, developing new policies, and ensuring optimal agent coverage
• Practical experience in building automation solutions to support Security Operations (SOC) functions
• Certifications in Cloud Security on platforms such as Microsoft Azure, Amazon AWS, or Google GCP
• Proven experience in Cloud and Cloud Security technologies such as Microsoft Azure, Amazon AWS, or Google GCP
• Experience with behavior analytics and AI tools
• Experience leading attack simulation (purple teaming) engagements to improve threat detection capabilities
• Ability to work in a fast-paced environment and stay updated on emerging threats and vulnerabilities
• Natural curiosity, a willingness to learn, adaptability in an evolving environment, and a strong problem-solving mindset
• Fluent communication skills in English are required and bilingual skills in French are an asset