Senior Analyst, Cybersecurity Operations

Overview

Protect Mercer’s systems via monitoring, incident response, vulnerability management, cloud security.

Key Responsibilities

• vulnerability management
• cloud security
• security tools
• incident response
• log analysis
• forensic analysis

Tasks

-Leads the vulnerability management process; remains current with new cyber vulnerabilities, performs vulnerability assessments, analyses findings, provides detailed reporting, establishes priorities, and implements and coordinates remediation activities. -Supports the development, documentation, testing, implementation, and enforcement of cybersecurity policies, standards, processes, methodologies, and controls. -Coordinates cyber-related activities across North American operations, serves as the cyber security expert for the region. -Ensures the security of Mercer’s data and systems on-premises and in the cloud. implements and supports a cloud-aware security architecture and implements appropriate security tools. -Supports the delivery of security awareness programs: develops training and exercises. Builds, plans and runs awareness campaigns, reports on results, and provides recommendations. -Conducts cyber investigations, performs and coordinates mitigation activities, performs high-level forensic analysis, and engages with external cyber security vendors for detailed forensic review checks. -Assesses cyber security exposures of Mercer’s information technology systems. Conducts cyber investigations and prepares detailed reports. -Monitors information security related events, detects and responds to alerts and incidents. -Remains current with cyber security and threat’s landscape, analyses industry trends, and identifies potential impact to Mercer’s technology systems and operations. -Analyses security-related logs to identify threats, anomalies and incidents. -Assists in the development of cyber-related reports and KPIs. Collects and analyses data generated by systems and produces required reports and KPIs for designated audiences. -Supports the cyber security program, operates security tools, and creates, executes and manages security processes. -Leads cyber incident response, works with external IR partners.

Requirements

• cissp
• soc
• siem
• google workspace
• project management
• bachelor's

What You Bring

Reporting to the Director, Cyber Security, the Senior Analyst, Cybersecurity Operations will be responsible for supporting Mercer’s company-wide cyber security program, operations and projects with a focus on Canada and the US. They will lead cyber incident response and investigations and act as a security champion for IT and other teams. The Senior Analyst, Cybersecurity Operations will utilise hands-on technical and cyber skills with communication and coordination skills to protect Mercer from cyber threats while meeting the business needs of the company. -Strong knowledge of modern cloud-based collaboration and productivity tools. Knowledge of Google Workspace is an asset. -Required to travel to Mercer’s locations in Canada and internationally. -Information security certifications are preferred (CISSP, CISA, GIAC). -Excellent interpersonal skills and the ability to work independently and as part of a team. -Knowledge of cyber security industry standards, such as NIST, ISO, CIS, etc. -Strong verbal and written communication skills. -Minimum of 3 years of cyber security experience. -Proven experience in security operations. Security Operations Centre (SOC) experience is an asset. -Experience with delivering end-user’s security awareness training and tests. -Ability to apply project management methodology and deliver assigned tasks within scope and schedule. -Bachelor’s degree in Computer Science or other equivalent Information Technology and Cyber Security related studies. An equivalent combination of training and/or experience may be considered. -Demonstrated knowledge of Cyber Security and IT technologies, such as anti-malware and endpoint protection, firewall, email security, IPS, SEIM, AD, Windows security, network security, disaster recovery, incident response. -Strong organisational and time management skills with the ability to prioritise and manage several time-sensitive issues at a time. -Demonstrated ability to influence outcome without direct authority. Ability to explain cyber security risks and concepts to technical and non-technical audiences. -Knowledge of public cloud platforms, relevant security tools and cloud security architecture.

People Also Searched For

Benefits

The competition will remain open until we find the right candidate to join our team. Please note that relocation assistance will not be available. -The salary for this position is $110,000 - $140,000 CAD. Salary will be commensurate with education and experience. -Our group benefits package, which has no waiting period, includes extended health and dental benefits, in addition to a Health Care Spending Account and a fitness allowance. -RRSP - We provide a competitive RRSP contribution plan, with base contributions made by Mercer which can be supplemented with personal contributions matched by the company up to a certain %.

About Mercer International Inc.

-Produces high-quality wood products, bioenergy, and market-leading paper pulp. -Operates across North America and Europe, with a focus on sustainable forestry practices and innovation. -Typical projects include producing wood pulp for paper mills, creating bioenergy solutions, and advancing eco-friendly wood product technologies. -Has enhanced product offerings to include green energy solutions such as renewable bioenergy. -Consistently invests in research and development to remain at the forefront of environmental sustainability in the forest products sector. -Facilities are strategically located to serve diverse global markets, with a growing emphasis on renewable energy and carbon reduction.

Sector Specialisms