Information Security Analyst

Job Description

**IKO Industries Ltd.** is a market leader in the manufacturing of roofing and building materials. IKO is a Canadian owned and operated business with production facilities worldwide and has many years of unparalleled success in the roofing materials industry. Quality, integrity, and trustworthiness are the values that underlie this success, and we have built this company by hiring people who hold these values. People like you!**Job Description**Reporting to the Team Lead, Information Security, we are looking for an experienced, hands‐on **Information Security Analyst** to join our growing team. This role is responsible for protecting the organization’s systems **and its most critical asset—data**.You will work across **security operations, incident response, data protection, and project security**, partnering closely with IT and business leaders to reduce risk while enabling the business to move fast and safely.This role is **fully onsite** at our Mississauga, ON office.**Compensation: 90k-105k**## **Benefits*** Health Insurance (includes Virtual Health, and HCSA)* Dental Insurance* Vision Insurance* Life Insurance* Long-term Disability* Short-term Disability* RRSP Match* Paid Vacation* Floating Days* Employee Assistance Program* Employee Engagement Events* Awards and Recognition* Tuition reimbursement* Service Awards* Employee Perks & Discounts## Key Responsibilities### Security Operations & Threat Detection* Monitor and investigate security events across networks, endpoints, servers, cloud platforms, and email* Identify unauthorized access attempts, suspicious activity, and potential data exfiltration* Review security logs and alerts to detect inappropriate access to sensitive, financial, or executive data* Support and lead security incident triage, investigation, containment, and remediation### Data Protection, Governance & DLP* Support the design and operation of **Data Governance** and **Data Classification** frameworks* Monitor and investigate potential **data loss or data misuse**, including: + Large data transfers + Emailing sensitive data externally or to personal accounts + Unauthorized access to confidential or regulated data* Support the implementation and tuning of **Data Loss Prevention (DLP)** controls across email, endpoints, cloud, and collaboration tools* Partner with business teams to balance data protection with productivity### Project & Architecture Security* Participate in IT and business‐led projects to ensure security and data protection requirements are defined and embedded* Identify and document security and data risks introduced by new systems, integrations, or processes* Recommend practical, risk‐based remediation options and compensating controls* Provide security architecture guidance aligned to business needs### Governance, Risk & Compliance* Contribute to security policies, standards, procedures, and guidelines* Perform threat and risk assessments for key and critical systems* Support audits and compliance activities (e.g., PCI, ISO 27001, internal audits)* Track remediation actions and validate risk reduction outcomes### Incident Response & Resilience* Support development and execution of incident response plans* Participate in disaster recovery and business continuity testing* Conduct post‐incident analysis and recommend control improvements### Education & Continuous Improvement* Deliver security and data protection awareness sessions* Develop and maintain security documentation and user guidance* Identify opportunities to improve detection, response, and prevention capabilities* Stay current with emerging threats, attack techniques, and defensive controls ### Required Experience* **5–8 years** of experience in Cyber Security, Security Operations, or Incident Response roles* Hands‐on experience with **SIEM / logging platforms** (e.g., QRadar, Splunk, ArcSight, Elastic)* CISSP, CISM, or similar certifications* Experience analyzing vulnerability data and managing findings using a **risk‐based approach*** Strong background in **security incident investigation and response*** Experience working with endpoint, network, and email security technologies* Experience collaborating directly with IT, cloud, and business teams### Data Protection Experience (Must Have)* Experience working with **Data Classification, Data Governance, and/or DLP controls*** Understanding of how sensitive data flows across systems, email, cloud, and endpoints* Experience investigating data‐related security incidents or policy violations### Nice to Have* Experience with EDR, NDR, IPS, and advanced threat protection tools* Knowledge of cloud security and SaaS platform* Experience supporting regulatory or audit requirements## Core Skills & Attributes* Strong analytical and investigative mindset* Ability to explain **security and data risk in plain business language*** Comfortable working across multiple priorities and fast‐moving situations* Strong documentation and communication skills* Customer‐focused and collaborative approach## Education & Other Requirements* Bachelor’s degree in Information Technology, Computer Science, or related field preferred* Ability to travel across North America and Europe as required#LI-LS1*We may use artificial intelligence (AI) tools on a limited basis to assist in initial assessment, identification, and review of candidates. AI is used only to support our recruiting and hiring team, and decisions are always made by the recruiting and hiring team. Absolutely no applicant data is sent or provided externally through these AI tools.***Benefits of Employment:** IKO recognizes that its success is due to the strength of its employees. A primary goal of IKO is to promote individual employee's sense of accomplishment and contribution so that employees enjoy their association with IKO. The Company invests in its employees so that they are the most knowledgeable in the industry, and undertakes great efforts to nurture loyalty to, and teamwork at, IKO. We are pleased to offer competitive compensation, health care, a progressive and challenging workplace and a commitment to teamwork and integrity.**Diversity and Equal Opportunity Employment:** IKO Industries Ltd. is an equal opportunity employer. We are committed to diversity and inclusion and are pleased to consider all qualified applicants for employment without consideration to race, religion, creed, color, national origin, age, gender, sexual orientation, marital status, veteran status or disability. IKO Industries Ltd. encourages and welcomes applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.
#J-18808-Ljbffr