Senior Security Analyst

Contract Term: 12 months with possible extension

Location:

• This role is a hybrid or onsite position and must be filled by individuals residing within the National Capital Region (NCR).

Hourly Pay

• $70.00-$95.00 per hour

(This represents the expected hourly compensation for this role.)

Vacancy Status

• This posting is for an existing contract vacancy.

Tasks / Deliverables
Summary of Role
The Security Analyst will support a Defence client in the assessment, validation, and monitoring of security posture for Military Command and Control (C2) and Land C4ISR systems. The resource will conduct Security Assessment and Authorization (SA&A) activities, vulnerability and threat analysis, penetration testing, SIEM monitoring, and security compliance reviews. The role includes analyzing security data, producing technical documentation, and supporting accreditation and operational security decision-making.

Key Responsibilities

• Conduct Security Assessment and Authorization (SA&A) activities for systems and environments.
• Develop normal use-cases and misuse/abuse use-cases for system security evaluation.
• Perform system scans and collect raw security data for analysis.
• Identify and analyze technical threats and vulnerabilities on target systems.
• Analyze security data and produce clear, actionable reports.
• Conduct penetration testing activities and support remediation efforts.
• Perform documentation reviews and system evaluations for security compliance.
• Monitor, evaluate, and respond to events and alerts from SIEM systems.
• Support security assessments, audits, and accreditation activities.
• Prepare technical concept documents, system specifications, and technical reports.
• Provide advice, guidance, and recommendations to technical and management stakeholders.

Requirements

• Security Clearance: Must be eligible for Secret level Federal Security Clearance (generally requires 10 years of residence in Canada)
• Applicants must be legally eligible to work in Canada
• Education:
  • Bachelor’s degree in software, computer, systems, electrical, or a suitable engineering or technical field (preferred), OR
  • College diploma in Computer Technology, Bachelor of Science, or a suitable technical field from a recognized post-secondary institution
• Certifications: CISSP (Certified Information Systems Security Professional)
• Minimum 60 months demonstrated experience in the last 96 months in at least 3 of the following areas:

• Conducting Security Assessment & Authorization (SA&A)
• Developing use-cases and misuse/abuse-cases for security evaluation
• Conducting system scans and collecting security data
• Identifying and analyzing threats and vulnerabilities
• Analyzing security data and reporting findings
• Conducting penetration testing
• Conducting documentation reviews and security compliance assessments
• Monitoring and evaluating SIEM events and alerts

• Minimum 60 months of experience as a Security Specialist on Military Command and Control systems (mandatory)
• Minimum 24 months of experience preparing technical concept documents, system specifications, and technical proposals in IT / IM / engineering domains
• Communications & Leadership: Demonstrated experience in:

•  Communicating IT security frameworks and strategies to technical and management audiences
•  Communicating system engineering direction for projects or systems
• Providing advice and recommendations to support senior management decision-making
• Leading or contributing to multidisciplinary technical teams
• Supporting strategic, operational, or tactical planning activities

Language Requirements

• Proficiency in English (spoken and written) is required for this role.

Use of Artificial Intelligence

• Artificial intelligence may be used in the screening or assessment of applicants for this role.

Additional Information

• Accommodations are available throughout the recruitment process upon request.

Application Process

• Qualified candidates are encouraged to apply.
• Only applicants selected for an interview will be contacted.