Information Systems Security Analyst

Priority may be given to the following designated employment equity groups: women, Indigenous peoples* (First Nations, Inuit and Métis), persons with disabilities and racialized persons*.

 

* The Employment Equity Act, which is under review, uses the terminology Aboriginal peoples and visible minorities.

 

Candidates are asked to self-declare when applying to this hiring process.

 

City: Ottawa 

Organizational Unit: Security Branch 

Classification: CS-3 

Tenure: Continuing  

Language Requirements: English  

 

Work Arrangements: Due to the nature of the work and operational requirements, this position is eligible for a hybrid work arrangement (combination of working onsite and telework). Employees in this position who telework will be required to travel to the identified work site at least three times per week at their own expense.

 

We recognize that Indigenous candidates may have important connections to their communities. If you are an Indigenous candidate, you may be eligible for an exception to this work arrangement. To learn more, please contact the hiring team, using the contact information below.

 

Note: Assignments and secondments may be considered according to NRC's policies.

Discover the possible

Anything is possible at the National Research Council (NRC). As Canada’s leading research and technology organization, our world-renowned research pushes the boundaries of science and engineering to make the impossible, possible. Every day we explore new ideas through innovative research and help companies discover possibilities that impact Canada’s future and the world.

 

At the NRC, you’ll also discover new possibilities. Our supportive workplace fosters a culture of creativity, welcoming fresh perspectives and innovation at all levels. We value teamwork. You’ll collaborate across multiple fields and with the brightest minds to find creative solutions. Most importantly, you’ll discover what’s possible within you as you grow, make valuable contributions and progress in your professional journey. From ground-breaking discoveries to a life-changing career, discover your possible at the NRC.

The Role

We are looking for an Information Systems Security Analyst to support our Security Branch. The Information Systems Security Analyst would be someone who shares our core values of Integrity, Excellence, Respect and Creativity.

 

The Information Systems Security Analyst is responsible for providing information protection and IT security services in support of NRC’s strategic objectives.

 

Provision of IT security operations such as, but no limited to, evaluating and advising on the security impact of any changes to NRC’s IT and network infrastructure, responding to and, where appropriate, resolving or escalating reported security incidents, acting as a “clearinghouse” for threat and vulnerability information within NRC, by monitoring sources of threat and vulnerability data and sharing that data with IT staff across NRC.

 

The Information Systems Security Analyst acts as the IT security subject matter expert on IT projects in collaboration with corporate IT/IM service providers to ensure that security issues are addressed throughout the project lifecycle.

 

Performs and provides technical support to the Risk Management team by correcting system deficiencies and maintaining a good understanding of the overall security posture of the organization.

 

Provide Technical Information Systems support to Shared Services Canada functions such as email, directory services, desktop mitigation tools/services, antivirus applications, and vulnerability analysis.
The Information Systems Security Analyst will support Security Branch’s administration investigation function including seizure and storage of evidence and digital forensics.

 

The work requires continuous study of network and IT security processes, systems and software, to remain aware of new features and requirements.  It also requires regular and ongoing study of trends and developments in the IT field in general, and the IT security field in particular. 

Screening Criteria

Applicants must demonstrate within the content of their application that they meet the following screening criteria in order to be given further consideration as candidates:

Education

Post-secondary education and completion of a 2 or 3 year certificate/diploma program in computer systems applications, information systems and associated information protection and security applications; or equivalent, plus CISSP.

 

For information on certificates and diplomas issued abroad, please see Degree equivalency

Experience

  • Experience in collating incident and other security data to produce Briefing Notes and Forensic Reports.
  • Experience in project management and project leadership.
  • Experience investigating and analyzing serious security incidents.
  • Experience in providing advice and assistance to individuals at many levels of technical knowledge and administrative responsibility.
  • Experience evaluating and advising on security impacts.
  • Experience reviewing and conducting vulnerability assessments on accounts, systems and interface devices.
  • Experience in presenting to various large audiences, with different levels of knowledge (both technical and non-technical).

Condition of Employment

Secret (II)

Assessment Criteria

Candidates will be assessed on the basis of the following criteria:

Technical Competencies

  • Knowledge of IM/IT systems hardware, software and operating systems, including routers, switches, firewalls, intrusion detection and associated network protocols and concepts.  
  • Knowledge of relevant federal legislation, policies, standards and guidance to interpret and ensure compliance.
  • Ability to monitor sources of threat and vulnerability data.
  • Ability to investigate and analyze serious security incidents.
  • Ability to give briefings to employees at various levels.
  • Knowledge in advanced diagnostics and problem solving.
  • Knowledge of the fundamentals of project management.

Behavioural Competencies

  • Technology support - Client focus (Level 3)
  • Technology support - Communication (Level 3)
  • Technology support - Conceptual and analytical ability (Level 3)
  • Technology support - Initiative (Level 3)
  • Technology support - Teamwork (Level 3)
  • Management services - Organizational and environmental awareness (Level 3)

Competency Profile(s)

For this position, the NRC will evaluate candidates using the following competency profiles: Management Services and Technology Support

 

View all competency profiles

Compensation

Salary under review 

 

From $89,548 to $112,660 per annum. 

 

An incumbent occupying a position within the CS Group is currently entitled to receive a terminable allowance of $212 per month.

 

NRC employees enjoy a wide-range of competitive benefits including a robust pension plan, comprehensive health and dental coverage, disability and life insurance, office closure at the end of December, and additional supports to enhance your well-being throughout your career and beyond.

Notes

  • Relocation assistance will be determined in accordance with the NRC's directives.
  • This position is being advertised internally and externally simultaneously, however first consideration will be given to internal NRC applicants.
  • A pre-qualified list may be established for similar positions for a one year period.
  • Preference will be given to Canadian Citizens and Permanent Residents of Canada. Please include citizenship information in your application.
  • The incumbent must adhere to safe workplace practices at all times.
  • We thank all those who apply, however only those selected for further consideration will be contacted.

 

 

Please direct your questions, with the requisition number (22983) to:

E-mail: NRC.NRCHiring-EmbaucheCNRC.CNRC@nrc-cnrc.gc.ca

Telephone: 343-990-8002 

Closing Date: 26 November 2024 - 23:59 Eastern Time

 

 

For more information on career tools and other resources, check out Career tools and resources