
Akkodis
Akkodis is partnered with a leading investment management firm to recruit a Senior Security Platform Specialist to join their Threat Management security team here in Toronto, who are responsible for operating and maintaining the security incident & event management, threat detection and alerting solutions.
As part of the team, you will be responsible and focused on the design, configuration, deployment, operationalization, and troubleshooting of Microsoft Sentinel SIEM and Microsoft Defender. In addition, you will support the team with threat detection and response activities, automated solutions, and help improve the overall security posture of the business.
Key Responsibilities include:
- Lead the charge in integrating diverse log sources onto our Microsoft Sentinel SIEM platform, ensuring comprehensive visibility into security events.
- Develop and refine custom use cases to enhance our threat detection and response capabilities.
- Collaborate closely with our Managed Security Services Providers (MSSP) to strengthen our overall security posture.
- Proactively analyze external threat intelligence sources to identify emerging risks and trends.
- Assist in the incident response processes to contain, remediate, and recover from security incidents.
- Utilize scripting languages such as PowerShell, Python, and KQL to automate operational tasks and improve system efficiency.
Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent work experience).
- At least 5+ years of IT experience, with a minimum of 3+ years of hands-on experience within security focused on deploying, configuring, and troubleshooting Microsoft Sentinel SIEM and MS Defender.
- Proficiency in KQL and proven experience in developing effective use cases.
- Hands-on experience with Function App and/or Logic App development.
- An understanding of threat detection and response is critical, including the ability to create, manage, and investigate alerts, understanding security threats, anomalies, and breach patterns.
- Experience maintaining, administrating and supporting SIEM platforms (Log integration, use cases, logging and monitoring, security orchestration, incident response and remediation, etc.)
- Relevant professional certifications in Cloud (AWS, GCP, Microsoft Azure e.g. SC-100: Microsoft Cybersecurity Architect) and IT Security (Security+, CISSP, CCSP) are highly desirable.
- Prior experience within the financial services sector (banking, investment management, or similar) would be an asset.
If you are interested in learning more, or if you would like to discuss any other Senior Security opportunities, don’t hesitate to apply today!