Location
Brookfield Place - 181 Bay Street
Brookfield Culture
Brookfield has a unique and dynamic culture. We seek team members who have a long-term focus and whose values align with our Attributes of a Brookfield Leader: Entrepreneurial, Collaborative and Disciplined. Brookfield is committed to the development of our people through challenging work assignments and exposure to diverse businesses.
Job Description
Technology Services (TS) is responsible for delivering all enterprise infrastructure, applications and related end user technology services across all Brookfield business groups, comprised of approximately 5,000 users.
Senior Security Analyst
Toronto, Ontario
Position Summary
We are looking for a Senior Security Analyst to join Brookfield’s global Information Security Team. Reporting directly into the Director, Information Security, the Senior Security Analyst will be a trusted advisor to both the IT organization and the business as it relates to cybersecurity matters.
The Senior Security Analyst will be responsible to work within the vendor ecosystem to ensure security controls are applied in the environment and the appropriate processes are followed, updated and created as required. You will work with cross-functional teams and managed security service provider’s (MSSP) to ensure threats are addressed and vulnerability findings are remediated in a timely manner.
Responsibilities
- Threat Monitoring and Analysis:
- Continuously monitor, research, and analyze emerging security threats and trends to assess the effectiveness of existing protective measures.
- Utilize advanced threat intelligence to proactively identify potential risks and enhance security posture across all environments, including M365 and Azure.
- Risk Assessment and Recommendations:
- Conduct comprehensive analyses of technical and business risks, particularly within M365 and Azure environments, to develop actionable recommendations for security controls and compensating measures.
- Evaluate the effectiveness of security solutions in M365 and Azure, suggesting improvements to address identified vulnerabilities.
- Managed Security Service Provider Oversight:
- Provide expert oversight and coordination of managed security service providers (MSSPs) to ensure they effectively protect M365 and Azure environments, meeting service level agreements (SLAs) and security objectives.
- Regularly review MSSP performance related to M365 and Azure and integrate their services with organizational security strategies.
- Cross-Functional Security Advisory:
- Serve as a key security advisor, offering expert guidance on security best practices and risk mitigation for M365 and Azure services to cross-functional teams and global business units.
- Facilitate the integration of security considerations into M365 and Azure deployments and configurations.
- Cybersecurity Policy and Compliance:
- Lead the development, periodic review, and enforcement of cybersecurity policies, procedures, and standards specific to M365 and Azure environments to ensure compliance with regulatory requirements and industry best practices.
- Drive continuous improvement initiatives to adapt policies to evolving threats and the dynamic nature of cloud environments.
- Change Management and Investigations:
- Actively participate in security-related change management processes, ensuring secure implementation of changes and new technologies within M365 and Azure.
- Conduct thorough investigations of security incidents within M365 and Azure, identifying root causes and implementing corrective actions.
- Third-Party Risk Assessment:
- Perform detailed information security risk assessments of third-party vendors and partners interacting with M365 and Azure environments, evaluating potential security risks and ensuring compliance with organizational standards.
- Develop and implement strategies to address third-party risks related to M365 and Azure.
- M365 Security Management:
- Oversee the configuration and management of security settings in Microsoft 365, including Exchange Online, SharePoint Online, OneDrive for Business, and Teams.
- Implement and manage data protection measures such as Data Loss Prevention (DLP), Information Rights Management (IRM), and encryption within M365.
- Azure Security Management:
- Configure and maintain security controls for Azure resources, including virtual machines, networks, and databases, using Azure Security Center and Azure Sentinel.
- Implement and manage Azure security features such as Azure Active Directory (AAD), role-based access control (RBAC), and security policies.
- Incident Response in M365 and Azure:
- Lead incident response efforts for security incidents involving M365 and Azure, utilizing built-in tools and services to investigate and remediate issues.
- Collaborate with Microsoft support and engineering teams as needed to address complex security incidents in M365 and Azure environments.
Qualifications & Requirements
Educational Background:
- Bachelor’s degree or college diploma in Information Security, Information Technology, or a related field and relevant certifications (e.g., CISSP, CISM, CISA) are highly desirable.
Experience:
- Minimum of 5 years of experience in an information security role, managing complex security projects and incidents.
- Minimum of 5 years of technical background in networking or infrastructure.
- Demonstrated experience with security assessments, vulnerability management, and incident response.
Technical Skills:
- Advanced understanding of cloud security principles and experience with major cloud platforms (e.g., AWS, Azure, Google Cloud).
- Proficiency with security tools and technologies, including but not limited to SIEM, EDR, and DLP systems.
- Scripting skills with experience in PowerShell and Python for automation and analysis preferred.
- Experience with SASE (Secure Access Service Edge), ZTNA (Zero Trust Network Access).
- Familiarity with Palo Alto Networks products and their integration within security infrastructures.
- Familiarity with Zscaler products and their implementation and management.
- Familiarity with Microsoft Security products.
Analytical Skills:
- Proven ability to identify, analyze, and resolve complex security issues and drive solutions through to successful implementation.
- Experience conducting risk assessments and developing security policies and procedures.
Communication Skills:
- Excellent written and verbal communication skills, with experience in creating detailed reports, delivering presentations, and effectively communicating with both technical and non-technical stakeholders.
- Ability to lead and mentor junior team members and provide clear guidance on security practices.
Work Environment:
- Demonstrated ability to thrive in a dynamic, fast-paced environment with shifting priorities and tight deadlines.
- Experience working in a collaborative, team-oriented environment with a diverse team of professionals.
Learning and Adaptability:
- Strong willingness and aptitude for learning new technologies and adapting to evolving security threats and industry best practices.
- Commitment to ongoing professional development and staying current with the latest trends and advancements in information security.
Additional Attributes:
- Experience with compliance frameworks and standards (e.g., GDPR, HIPAA, PCI-DSS) is a plus.
- Ability to work under pressure and manage multiple tasks effectively.
- Strong problem-solving skills and a proactive approach to identifying and mitigating security risks.
Brookfield welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
Brookfield is committed to maintaining a Positive Work Environment that is safe and respectful; our shared success depends on it. Accordingly, we do not tolerate workplace discrimination, violence or harassment.
Brookfield is committed to creating an accessible and inclusive organization. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities Act. Should you require a Human Rights Code-protected accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs.