Human Resources

Human Resources

Human Resources

site header

Security Operations Specialist

Subscribe to RSS Feed
Printer friendly interface
Competition Number: J0222-0162
Position Title: Security Operations Specialist
Employee Group: Research, Grant & Contract
Job Category: Other Professionals
Department or Area: Canadian Cancer Trials Group
Location: Kingston, Ontario, Canada
Salary: $70,352.00/Year
Grade: 09
Hours per Week: 35
Job Type: Permanent (Continuing)
Shift: 7 Monday - Friday
Number Of Positions: 1
Date Posted: January 6, 2023
Closing Date: February 10, 2023

COVID 19 On-Campus Requirements

The Queen’s University Policy Regarding Mandatory Vaccination Requirements for In-person University Activities requires ALL Community Members, including employees, to be Fully Vaccinated against COVID-19 prior to participating in any In-person University Activities. This is a condition of employment for all employees who are required to attend University Property to perform their employment responsibilities. Individuals who cannot be vaccinated due to substantiated grounds (medical and other protected grounds under the Ontario Human Rights Code) may ask the University to validate the exemption and request an accommodation for these rare circumstances. If approved, they will be subject to additional health and safety measures.

About Queen's University

Queen’s University is the Canadian research intensive university with a transformative student learning experience. Here the employment experience is as diverse as it is interesting. We have opportunities in multiple areas of globally recognized research, faculty administration, engineering & construction, athletics & recreation, power generation, corporate shared services, and many more.

We are committed to employment equity and diversity in the workplace and welcome applications from individuals from equity seeking groups such as women, racialized/visible minorities, Indigenous/Aboriginal peoples, persons with a disability, persons who identify in the LGBTQ+ community and others who reflect the diversity of Canadian society.

Come work with us!

Job Summary

Reporting to the Chief Information Officer (CIO), the Security Operations Specialist (Specialist) plays a key role in the planning, design, and delivery of ongoing cybersecurity operations within Canadian Cancer Trials Group (CCTG). Working within the systems team, the Specialist will work to minimize risks against internal and external threats by assisting in the cybersecurity solution design, implementation, testing, maintenance, active monitoring, reporting, intrusion detection/ prevention, and escalation within the CCTG security architecture to maintain the integrity and/or efficiency of the networks and servers. The Specialist is a subject matter expert in cybersecurity architecture, tools and technologies, and is responsible for project planning and management. The Specialist provides management of intrusion detections and prevention systems for both the network and host-based systems, as well as the security management systems. The Specialist is an excellent problem solver, an excellent communicator and is a demonstrated leader in establishing relationships and communicating with internal and external stakeholders. The Specialist will provide guidance and assistance from various sources to ensure current and future security in architectural design and systems implementation. The Specialist will play a leading role in cybersecurity incident response.

The schedule for this position may require the incumbent to work occasional early mornings, evenings and/or weekends for both scheduled maintenance and upgrades, and in response to urgent security issues.

Job Description

KEY RESPONSIBILITIES:
• Oversees the development and maintenance of security measures to protect computer systems, networks and data. Stays up-to-date on the latest intelligence, including hackers’ methodologies, in order to anticipate security breaches. Responsible for preventing data loss and service interruptions by evaluating technologies and recommending the most effective solution to protect a network.
• Employs constant learning of security concepts and practices to proactively identify threats, vulnerabilities, and exploits and utilizing this information, installs, configures and leverages tools, processes and standards to configure, monitor, and audit systems and applications on a regular basis.
• Gains an understanding of CCTG IT structure, as well as Queen’s University as a whole, to establish effective cybersecurity plans.
• Performs configuration of linux, unix and Windows based servers for cybersecurity related software and platforms.
• Oversees network disaster recovery plans. Investigates security violations by applying their understanding of multiple technologies and security threats to provide assistance, guidance, problem resolution and technical support in the on-going protection of the CCTG systems and infrastructure.
• Develops and maintains technology standards and provides technical security leadership which may include input for the design of solutions, security training material, workshops and communication updates.
• Develops migration strategies for both hardware and software. Creates scripts and implements tools to automate and develop a variety of configuration and updating tasks including signature updates, rule changes, and policy updates on security devices, network appliances, servers and endpoints.
• Performs security assessments to ensure compliance with security policies, standards and procedures, and works with the various areas and takes corrective actions on any identified security exposures found.
• Participates in the CCTG Computer Security Incident Response Team as subject matter expert.
• Creates, maintains and publishes security documentation.
• Assists in management of network security such as firewall changes, data encryption and other network security measures.
• Advise and provide expert knowledge and support to other CCTG IT teams and CCTG non-IT staff.
• Other security-related duties and projects as assigned by the manager.
• Ability to work outside of business hours is required.

REQUIRED QUALIFICATIONS:
• University Degree in computer science or equivalent combination of education and work experience, with a minimum of 5 years’ experience in a Security Specialist role.
• Professional certifications from bodies such as ComTIA A+, Security+, Network+, SANS GSEC, and/or other information security certifications.
• Experience in information security, ideally in multi-platform environments in three or more of the following areas: web applications, operating system security, cloud computing, desktop applications, networking, DLP, anti-malware, IDS/IPS, penetration & vulnerability testing.
• The ability to read and understand vulnerability bulletins and security event data from many sources.
• Ability to understand and utilize HTTP and similar protocols for analysis and troubleshooting.
• Familiarity with information security best practices.
• Demonstrated technical proficiency in the implementation and maintenance of multi-user Windows and Linux computer systems.
• Experience with analyzing security attacks and exploits.
• Demonstrated knowledge and experience in Unix/Linux OS and scripting and automation, Power shell, and firewall management. Knowledge of VMWare technology, databases, Active Directory, PHP and web stacks on Linux is considered an asset.
• Consideration may be given to an equivalent combination of education and experience.

SPECIAL SKILLS:
• Respects diversity and promotes equity and inclusion in the workplace.
• Demonstrated expertise in Windows / Linux server administration, hardware, networks, and common applications software.
• Advanced analytical and problem-solving skills to assist in finding effective solutions.
• Communications and interpersonal skills to interact with a variety of people with various levels of technological sophistication. Demonstrated client-service approach.
• Highly developed interpersonal skills to deal with both technical and non-technical staff at all levels. The ability to work in groups or as part of a team.
• Ability to keep up and adapt to, a constantly changing technological environment.
• Demonstrated editing and writing skills to prepare documentation.
• Ability to follow formal business practices with high attention to detail.
• Ability to support teaching and training initiatives.

DECISION MAKING:
• Formulates, evaluates and implements solutions to problems.
• Assesses the nature of a request and provides assistance to the customer as appropriate.
• Determines when to involve senior staff in resolving complex or sensitive systems problems.
• Prioritizes own workloads.
• Determines how to deal with operational problems that occur outside of working hours to avoid major customer impact.
• Plans new security initiatives within the CCTG. Determines project guidelines and timelines.
• Assesses, determines and recommends acquisition of new software or hardware needs. Determines when to consult with senior staff or supervisor and escalates as required.

Employment Equity and Accessibility Statement

The University invites applications from all qualified individuals. Queen’s is committed to employment equity and diversity in the workplace and welcomes applications from women, visible minorities, Aboriginal Peoples, persons with disabilities, and persons of any sexual orientation or gender identity. In accordance with Canadian Immigration requirements, priority will be given to Canadian citizens and permanent residents.

The University provides support in its recruitment processes to applicants with disabilities, including accommodation that takes into account an applicant's accessibility needs. Candidates requiring accommodation during the recruitment process are asked to contact Human Resources at hradmin@queensu.ca.

Njoyn ATS