Senior Security Analyst, Information Security Tools and Engineering

**Description**

**Senior Security Analyst, Information Security Tools and Engineering**

**GENERAL SUMMARY**:
The Senior Security Analyst, Information Security Tools and Engineering is primarily responsible for the technical selection, integration, management and maintenance of solutions in our operational portfolio of Information and Perimeter Security services. He/she will work with internal and external Security, Network and other Business Technology staff to manage the portfolio of security software, services and implementations in our environment. The Analyst will work closely with the Director, Security and Network Engineering for the ongoing operations of tools which they support.

This senior-level resource will interface with the Chief Information Security Officer (CISO) to engage vendors, select, design and implement core cyber security technologies necessary to improve the security operations function.

**DUTIES AND RESPONSIBILITIES**

2. Drive continuous improvement of the tools portfolio and their processes used in our environment and infrastructure.

3. Ensure security tools and their processes are properly maintained in the environment and can be properly supported by the Security Operations team.

4. Revise and develop playbooks for Security tools so to be properly supported by the Operations team.

5. Work closely with partners and vendors, effectively manage time and highlight problem areas.

6. Support Security Operations Center and internal Operations escalation team ensuring environments are functional for reporting, alerting, logging and integration activities.

7. Perform other duties and responsibilities as assigned by the BT Security Operations leadership and/or CISO.

**Qualifications**

**QUALIFICATIONS**:
**Required**

1. Bachelor’s degree in Information Technology (IT), Security Analysis, Security Forensics or other related fields, or equivalent work experience;
2. Five or more years of experience in supporting and enabling industry leading security tools.

3. In-depth knowledge of data security solutions and concepts, such as cyberattacks and techniques, threat vectors, risk management and incident management.

4. Knowledge of various operating system vendors, such as Windows, Linux and Mac, among others.

5. Experience of Endpoint Security solutions such as Crowdstrike and Microsoft Defender.

6. Experience of SIEM tools including Microsoft Sentinel.

**Preferred**

1. Holder of a Certified Information Systems Security Professional (CISSP), SysAdmin, Audit, Network and Security (SANS), or Offensive Security Certified Professional (OSCP) certification.

**Personal**

1. Proficient in preparing reports, dashboards and documentation.

2. Ability to coach, mentor a successful partner team.

3. Experience in presenting complex technical concepts to both technical and non-technical personnel as well as writing and defining security work instructions and procedures.

4. Ability to handle high pressure situations with key stakeholders while maintaining a professional demeanour to achieve success.

5. Able to be available extended hours outside of the normal working hours when required to meet escalated priorities, deadlines, deliverables, etc. as needed.

6. Excellent analytical, problem-solving and interpersonal skills.

7. Excellent oral and written English communication skills.

8. Self-motivated, enthusiastic and passionate about Information Security.

9. Strong ability to multi-task and prioritize.

10. Strong time management and organizational skills, and with the ability to handle frequent deadlines and unplanned requests for quick action or response.