IT Security Analyst

Toronto, Ontario, Canada
Competitive
Nov 18, 2021
Nov 30, 2021
42925-en_US
Computer etc.
Permanent
Full Time
English
The Kinross Corporate Head Office is located in downtown Toronto and supports Kinross' operations and projects worldwide. Corporate functions include Finance, Procurement, Health & Safety, Human Resources, IT, Investor Relations, Exploration, Geology and Mine Planning, among others.

Job Description

The IT Security Analyst will be a member of the Corporate IT Security team and will provide security operations support for all areas of IT Security; including investigations, training, administration and management of security tools and technologies, and participating in security projects as a technical lead. The analyst is required to apply analytical insights to the IT security processes and projects as required.

Job Responsibilities

  • Provide IT security advice and support to the global IT staff
  • Support and/or lead IT Security projects
  • Enhance existing security documentation to provide IT professionals and the business with clear direction on security practices and procedures
  • Research information to support decision making and improve processes, technologies, or methodologies to improve the IT Security program
  • Review IT Security environment and recommend continuous improvements
  • Support the day-to-day IT Security operation. These include:
    • Incident Response
    • Patch Management
    • Vulnerability Management
    • Access Management
    • Malware Protection
    • Mobile Devices Security
    • End-point Security including: Anti-Virus, Anti-Malware, Disk Encryption, and EDR tools
  • Establish and manage operating system hardening guidelines
  • Perform a security assessment on 3rd party applications as needed
  • Deployment of Security agents on endpoint using SCCM and manage regular updates
  • Highlight IT Security risks to IT management; and produce a risk analysis report using FAIR methodology
  • Assist server, networking, application, and client service teams to deploy systems in a secure manner
  • Collaborate with global physical security team responsible for securing Kinross locations
  • Assist in incident response and forensic analysis to support investigations
  • Perform assessments against infrastructure and application designs to ensure compliance with security standards
  • Host Online Webinar to deliver training to the IT community on different security tools and technology, including building training material, KB articles, and troubleshooting guides


Education and Experience

  • Minimum 5 years of experience with security operations
  • Incident response, vulnerability management, and application security
  • A university degree in computer science, business, or engineering, is valued
  • Prior experience in a mid to large tier organisation preferably within global context
  • Previous experience in the mining industry is preferred
  • Interaction with users in professional manner
  • Strong communication skills, written and verbal
  • Strong presentation skills, virtual and in-person


Skills

  • Fluent in using Splunk: execute advanced searches and build dashboards
  • Experience with the following technologies:
    • Sophos Anti-Virus
    • Cisco Umbrella Open-DNS
    • Cisco AMP
    • Microsoft SCCM Application Deployment
    • FireEye HX agent
    • Rapid7 Vulnerability Scanning
  • The following are highly valued:
    • A CISSP, SANS GIAC or equivalent designation
    • Additional languages (Spanish, Portuguese, Russian, or French)
    • Programming skills: Python, PowerShell, .Net, etc.
    • Experience with PenTest
    • Advanced skills in Microsoft Excel


Kinross is a Canadian-based gold mining company with mines and projects in Canada, the United States, Brazil, Chile, Russia, Ghana and Mauritania, employing approximately 9,300 people worldwide. Our core purpose is to lead the world in generating value through responsible mining.