Who We Are
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
The Role
Position: Senior Cybersecurity Analyst
Bi-Weekly Salary: $4,002.60 - $4,818.94
Division: Enterprise Services
Manager: Imran Khan
Location: Regina, SK
The Senior Cybersecurity Analyst is part of ISM’s growing Security practice that is tasked with continually improving measures to prevent and limit the impact of a potential cyber incident for both ourselves and our customers. The Senior Cybersecurity Analyst will lead and coordinate the investigation, containment and eradication of security events and threat detections as well as identifying and remediating vulnerabilities and developing or maintaining processes that will help prevent security incidents from occurring for both our internal and customers’ environments.
This position is responsible for ensuring the continual improvement of our security posture as well as assisting with ISM’s SecOps. The successful candidate will share their expert knowledge and guidance with customers and team members alike and will have responsibility for coaching and mentoring less experienced team members. The successful candidate will have an extensive knowledge of current trends in cybersecurity, security tools and techniques and will assist with the development of Cybersecurity Services.
The position will participate in both meetings and presentations to customers to maintain existing business and build strong relationships with customers. The successful candidate knows what it takes to deliver an exemplary service to customers, ensuring high customer satisfaction and a strong security posture. The successful candidate will also have responsibility for coaching, mentoring and coordinating the activity of other team members.
Note: this position is being posted in anticipation of potential customer opportunities in the future.
Responsibilities:
Monitoring and analyzing security alerts of potential malicious activity of moderate to high complexity detected by security systems (SIEM, IDS/IPS etc), determine severity, impact and assisting with remediation efforts, where required
Assisting with the remediation of vulnerabilities and identifying additional measures to protect IT environments
Providing coaching and mentoring to less senior Security team and general security expertise to customers and other employees
Conducting Threat and Risk Assessments
Participating in security incident investigations
Developing and contributing to Security Education programming and communication
Reviewing and approving changes that may have an impact on the confidentiality, integrity or availability of systems/applications
Monitoring and managing Microsoft Purview security features, including Data Loss Prevention (DLP), Information Protection, and Insider Risk Management, to safeguard sensitive data across organizational systems.
Implementing and maintaining data classification, sensitivity labeling, and encryption policies to protect critical information within and beyond the organization.
Analyzing audit logs, investigating insider risks, and supporting eDiscovery processes to ensure compliance with regulatory standards and organizational policies.
Collaborating with cross-functional teams to identify and mitigate security risks, enhance endpoint protection, and enforce Zero Trust principles in data governance.
Participating in the selection, implementation, maintenance and configuration of security technology and tooling while assessing against gaps, standards and policies
Providing expert level guidance in the area of Cybersecurity including industry trends, strategies, technical controls, tooling, vulnerabilities and threats to ensure internal and customer assets are effectively and appropriately secured against current and future threats
Participating in the development of information risk and cybersecurity policies/standards
Implementing security frameworks to measure, monitor and manage security posture including the mapping of controls
Leading the management of Endpoint security (e.g. AV, HIPS, Firewall, encryption, DLP, etc)
Leading security analysis, design and planning phases of IT related projects
Other activities and deliverables as assigned
Who You Are
Qualifications:
University Degree, or diploma from a two-year program in Computer Science/Engineering, or an equivalent combination of education, experience and training, plus 5-7 years experience in IT.
5+ years of professional-level experience with Cybersecurity processes and related tools.
Demonstrated expert knowledge of Security and IT environments, tooling, methodologies, standards, and best practices: (e.g. ITIL, ISO 27001/270002, NIST, ITSG-33 etc.)
Demonstrated extensive experience in the following:
analyzing and correlating data to identify potential attacks, patterns of attacks, security violations, incidents, and malicious activity.
evaluating security trends, evolving threats, risks, and vulnerabilities and implementing corrective action.
Developing and coordinating end user security awareness programs.
Maintaining security documentation and documenting incident handling processes as run books.
Demonstrated knowledge of risk management practices and security program development.
Excellent organizational skills with a demonstrated ability to set and achieve more than one concurrent objective reliably.
Excellent analytical and problem-solving skills.
Demonstrated ability and experience implementing new techniques, products and systems.
Ability to work productively and demonstrate leadership in a team environment.
Strong interpersonal skills (communication, team etc.) including a mature and professional attitude demonstrated to clients and employees.
Skills and abilities acceptable to the client.
Two or more complex security certifications (e.g. CISSP, CISM)
Key Skills & Abilities:
Demonstrated knowledge and experience using Microsoft Purview
Demonstrated ability to monitor and manage Microsoft Purview security features, including Data Loss Prevention (DLP), Information Protection, and Insider Risk Management, to safeguard sensitive data across organizational systems.
Demonstrated ability to implement and maintain data classification, sensitivity labeling, and encryption policies to protect critical information within and beyond the organization.
Demonstrated ability to analyze audit logs, investigate insider risks, and support eDiscovery processes to ensure compliance with regulatory standards and organizational policies.
Demonstrated ability to collaborate with cross-functional teams to identify and mitigate security risks, enhance endpoint protection, and enforce Zero Trust principles in data governance.
Preferred certifications include Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900) or Microsoft Certified: Information Protection Administrator Associate (SC-400).
*Note: This role may involve working with technology that is covered by US and/or Canadian Embargo Export Regulations; therefore all applicants will be subject to additional security screening requirements.
Being You
Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.
What You Can Expect
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
Get Referred!
If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.