Security Analyst - ( 240001GY )

Description

Grounded in safety, quality, and ethics, our experts lead their fields and guide our work with rigor, a creative spirit, and vision for growth. We draw from more than 20 technical specialties around the globe and are committed to fostering an inclusive community of diverse talents, backgrounds, and expertise. We’re a place to apply your passion and collaborate with top environmental talents on work that’s critical to our clients and the communities they support. Join a team that has the environment down to a science.

Your Opportunity

Stantec is looking for an independent self-starter to support their Government Services business unit. The Security Analyst will assist with cybersecurity, compliance, audits, forensics, and monitoring. The analyst will be involved with larger IT projects having security and compliance related impacts. The analyst will work closely with Stantec's third-party Security Operations Center to monitor intrusions and vulnerabilities while coordinating with other members of the IT team on investigation, containment, and remediation of incidents. The ideal candidate brings experience in identifying network and endpoint intrusions with industry leading security technologies. The analyst will also review and provide guidance to the IT team around security best practices, compliance with Stantec's regulatory and contractual frameworks, and act as an advocate for company policies.

Your Key Responsibilities

• Perform operational reviews of IT security systems and monitoring of key consoles for alerts and follows up on alerts

• Initiates and participates in the investigation of alleged security breaches by helping to determine root cause, impact, remediation, and, if necessary, assisting with disciplinary actions and legal or criminal matters associated with such incidents

• Monitors public and private channels for adversary trends or vulnerabilities and makes recommendations or adjustments to IT security systems to ensure operational effectiveness

• Assists the Server Administrator Group and IT Infrastructure Operations Manager as requested on technology related issues

• Configures, maintains, and troubleshoots the security of the local and wide-area network as assigned

• Responsible for the documentation on security-related incidents

• Assists in the configuration of the security environment: email, identification, MFA, etc. as assigned

• Manages responses to phishing, spam, and other basic security issues

• Ensures implementation, monitors, and maintains security of passwords and accounts

• Monitors security and network logs and alerts

• Assists in the development and implementation of the security program and projects

• Defines and/or documents security-related procedures and playbooks

• Updates procedures and playbooks as policies and/or technologies change

• Works closely with the Server Administrator Group to ensure configuration and maintenance of firewalls, intrusion detection/prevention devices, and other network services

• Manages the security of Microsoft Azure and Microsoft 365 accounts, access, emails, groups, etc.

• Tracks, reviews, and prepares for changes to Microsoft 365 as released

• Responds to after-hours emergencies such as service outages or interruptions

• Stays current on network, server, and cloud-based security services

Qualifications

Your Capabilities and Credentials

• Working knowledge of networks and network configurations, servers, and cloud services

• Strong interpersonal skills

• Strong communication and documentation skills

• Must have valid driver's license with good driving record

• Position requires drug screen

Education and Employment

• Bachelor’s degree, technical diploma in related field

• Minimum 2 years' of experience

• One year of experience working with Microsoft 365 administration

• Microsoft or other security certification preferred

• NIST, SOC, ISO, or other compliance framework experience beneficial

This description is not a comprehensive listing of activities, duties or responsibilities that may be required of the employee and other duties, responsibilities and activities may be assigned or may be changed at any time with or without notice.

Stantec is a place where the best and brightest come to build on each other's talents, do exciting work, and make an impact on the world around us. Join us and redefine your personal best.

Benefits Summary: Regular full-time and part-time employees have access to medical, dental, and vision plans, a wellness program, health saving accounts, flexible spending accounts, 401(k) plan, employee stock purchase program, life and accidental death & dismemberment (AD&D) insurance, short-term/long-term disability plans, emergency travel benefits, tuition reimbursement, professional membership fee coverage and paid family leave. Regular full-time and part-time employees will receive ten paid holidays in each calendar year. In addition, employees will be eligible to accrue vacation between 10 and 20 days per year and eligible for paid sick leave (and if more generous, in accordance with state and local law).

Temporary/casual employees have access to 401(k) plans, employee stock purchase program, and paid leave, in accordance with state and local law.

The benefits information listed above may not apply to union positions because benefits for such positions are governed by applicable collective bargaining agreements.

Primary Location : United States-Virginia-Charlottesville

Other Locations : United States-Florida-Jacksonville, United States-Maryland-Annapolis, United States-Utah-Layton, United States-Texas-San Antonio, United States-Idaho-Boise

Organization : BC-2374 EnvSvcs-US Government Services

Employee Status : Regular

Job Level : Individual Contributor

Travel : No

Schedule : Full-time

Job Posting : Aug 16, 2024, 3:36:47 PM

Req ID: 240001GY

#additional

Stantec provides equal employment opportunities to all qualified employees and applicants for future and current employment and prohibit discrimination on the grounds of race, color, religion, sex, national origin, age, marital status, genetic information, disability, protected veteran status, sexual orientation, gender identity or gender expression. We prohibit discrimination in decisions concerning recruitment, hiring, referral, promotion, compensation, fringe benefits, job training, terminations or any other condition of employment. Stantec is in compliance with local, state and federal laws and regulations and ensures equitable opportunities in all aspects of employment. EEO including Disability/Protected Veterans