IT Security Analyst

IT Security Analyst

Role: Cybersecurity Incident Responder

Location
: Hybrid -Scarborough – mostly WFH, coming in for training and ad hoc meetings – 1/month after training period, preference for candidates in GTA

Contract Duration
: ASAP – Oct 30th 2026 with Possibility of extension

Hiring Manager:
Senior Manager, Global Threat Response

Reason:
New requirement

Business group:
Threat Monitoring & Response (TMR) team is responsible for detecting, monitoring, and investigating threats; responsible for the coordination of key programs that impact all divisions within the Cybersecurity Operations (CSOps) organization and all of
Information Security & Controls

Project:
3rd party cyber security incidents - These roles are responsible for managing critical 3rd party risk events. Cybersecurity incident responder is responsible for managing the Bank’s response to cybersecurity & data threats and the mitigation of associated risks. Cybersecurity incident responder works with various business and corporate functions on understanding and coordinating risk reduction.

Candidate Requirements:

• 10+ years of working experience in IT

• 3+ years of prior experience in Cybersecurity - hands-on working experience in management of threats and industry

• 5+ years of incident management experience

• 3+ years’ experience using productivity tools (Power BI) to produce quantitative/qualitative reports, data flow diagrams & visual presentations.

Nice-To-Have Skills:

• Bilingual in Spanish is a strong nice-to-have

• Built custom reporting of mitigation status against threats

• Experience involving red team (Vulnerability Assessments, Web app assessments), consulting (Compliance, policy creation), SOC and Device Management

6 Experience having managed large scale incident calls with C-level executives

• CISSP and/or CISM certification

Education:

• Bachelor's degree in a technical field such as computer science, engineering, business, or equivalent work experience

• Certifications (CISSP, CISM, CCSP, CRISC) are an asset

Best VS. Average Candidate:

The business line already has strong Technical SMEs in place, so candidates whose strengths are primarily technical will not be prioritized for this role.

*The best candidate is someone with extensive experience in people management, incident leadership, and public speaking, someone who can coordinate teams, manage high-pressure situations, and communicate confidently with stakeholders at all levels. This role requires a strong communicator and leader rather than a technical specialist.*