The Cyber Security Division safeguards the organization’s digital assets and information resources. Our teams design, implement, and operate enterprise-class security controls that protect systems and data from internal and external threats work in areas including (but not limited to):
• Incident Response and Coordination
• Data Loss Prevention and information-protection controls
• Identity and Access Management (IAM)
• Application, Endpoint and Cloud Security
• Vulnerability and Patch Management
• Supply Chain Integrity and Third-Party Risk
Cyber security analysts, senior analysts, and specialists’ duties are wide-ranging but could include:
• Implementing, maintaining, and improving cyber-security controls, processes, and tools.
• Supporting incident analysis, risk assessment, and mitigation activities related to enterprise systems and cloud environments.
• Monitoring and triaging security alerts and contributing to the investigation of cyber-security events.
• Collaborating with technical and business teams to strengthen overall cyber resilience.
• Developing or maintaining documentation, dashboards, and reports to inform decision-making and program improvement.
Process Intent and Domain/Areas
This process will be used to staff multiple positions across various cybersecurity domains. As part of the application, candidates will select the domain(s) in which they have relevant experience and indicate the approximate number of years of experience for each.
Years of experience will be used to determine the group and level for which candidates may be considered.
Experience Requirements by Group and Level:
• RE04: 2–4 years of experience (but less than 5)
• RE05: 5–6 years of experience (but less than 7)
• RE06: 7 or more years of experience in an enterprise environment
Experience Domains/Area:
• Incident Response & Digital Forensics
• Vulnerability Management & Penetration Testing
• Endpoint & Network Security Monitoring
• Cloud & Platform Security
• Application Security
• Data Loss Prevention & Insider Risk
• Threat Intelligence & Threat Hunting
• Identity & Access Management (IAM)
• Supply Chain & Third-Party Cyber Risk
• Governance, Risk, Compliance & Security Assessment (GRC + SA&A)
• Cyber Security Engineering
If you are interested in applying for this position, please click on the link below to review the full job posting qualifications and additional notes: OSFI Careers - Inventory: Cyber Security Analyst, Senior Analyst, and Specialist
