Senior Cyber Security Analyst
If you are an experienced Cyber Security Analyst professional looking to enjoy a work-life balance, then please read on.
Precision Drilling has a hybrid opening for a Cyber Security Analyst eager for fresh challenges and development toward potential future career growth as our business continues to innovate and grow.
Working for Precision Drilling means being immersed in a supportive culture that recognizes you as a strategic player in Precision Drilling's future. We are a large company with a family feel, where you will collaborate with leadership and your colleagues across the organization.
Combined with a competitive remuneration package, you will enjoy the advantages of:
A comprehensive benefits package includes:
Medical, dental, prescription drug, life insurance, Pension match, long-term disability coverage, a free fitness membership steps away from our offices, and product discount programs.
A casual work environment where you can expect to enjoy a work-life balance that promotes personal health, well-being, and family life!
Personal development to grow your career with us based on your strengths and interests.
Precision has a competitive vacation and PTO offering including afternoons off before a long weekend.
Summary
The Senior Cyber Security Analyst will have primary responsibility for implementing, managing, and supporting security solutions and procedures within Precision. The successful candidate must have a strong working knowledge of threat & vulnerability management, security event monitoring, risk analysis, and incident response. The selected individual will also support other IT teams by providing subject matter expertise and ensuring security best practices are implemented across the IT environment.
Responsibilities
- Manage the existing security technology stack, including EDR/XDR, EPM, PAM, Email Security, Firewall, Web Filtering, Traffic Inspection, IDS/IPS, vulnerability scanners, and logging agents
- Oversee and collaborate with the Managed Detection & Response (MDR) provider to ensure effective 24/7 monitoring of the IT environment and serve as an escalation point for all ticketed security incidents
- Responsible for initial incident response and investigations and supporting resolution of issues or outages affecting the IT environment
- Perform threat and vulnerability management, working with IT infrastructure teams and other business units to ensure that vulnerabilities are addressed promptly and that related processes for patch management and configuration monitoring are effective
- Manage identity security features of the identity provider(s), including Multi-Factor Authentication, Conditional Access, OAuth, and SAML integrations
- Assess for cybersecurity controls maturity and effectiveness, performing internal security assessments of IT systems as required
- Actively participate in information technology audits, collaborating with internal and external audit teams and responding to recommendations
- Contribute to the organizational cybersecurity awareness program, presenting to stakeholders, end users, and occasionally management audiences
- Provide input and guidance into processes for cybersecurity risk management and governance
- Collaborate with IT & vendor management to ensure that new software and services meet the organization's security requirements
- Review changes being made to systems for potential security impacts
- Provide security subject matter expertise to other business units and project groups, ensuring that best practices for security are followed at every stage of project execution
- Paid On-Call required
- Engages regularly with Senior-level business leaders to ensure top-of- Mind IT security
- Participates in quarterly presentations to Senior Leadership, Executives, and/or the Board of Directors
- Supervises vendor performance and contractor resources and ensures they perform competently, and that Precision Drilling receives services aligned with contractual terms and conditions
- Builds and maintains strategic relationships with various departments, external businesses, and partner agencies
- Preparation and/or review of technical solution costs (i.e., high-level project budgets, SOWs, RFQs)
Knowledge & Skills
- Attention to detail in all areas of work
- Excellent time management skills and the ability to prioritize tasks and make decisions with minimal supervision
- Strong organizational, analytical, and execution skills
- Communicates unambiguously and listens effectively
- Ability to present technical material to various stakeholders clearly and concisely
- Strong desire to learn, improve, and assist others
- Ability to explore and research new ideas and contribute innovatively to existing processes or solutions
- Documenting and updating technical procedures, standards, and policies
Education
- 5+ years of cybersecurity experience at the enterprise level
- Must have one of the following certifications: CISSP, CCSP, CISA, or CISM
Experience
- Must have strong networking and systems administration fundamentals
- Strong experience working with and/or implementing technologies including but not limited to Microsoft 365, Microsoft Azure, Entra ID, Active Directory, EDR/XDR, EPM, PAM, Email Security, Firewall/NGFW, Web Filtering, Vulnerability Scanners, and logging infrastructure
- Understanding of key cloud computing, virtualization, and containerization technologies
- Experience with security governance frameworks such as NIST, CIS Controls Framework, or ISO 27000 series
- Exposure to the Oil & Gas industry and OT/IACS environments is preferred
- Experience with application security of enterprise SAP products such as S/4HANA and SAP Business Technology Platform (BTP) is also beneficial
Years of experience
- 6 - 10 years
Salary range
- $100,001 - $120,000