JSOC – Senior Cybersecurity Specialist – Incident Response
Job Description
Company: Community Trust Company
Location: Glace Bay, CA
JSOC – Senior Cybersecurity Specialist – Incident Response
British Columbia, Canada
Job Description
Shift: 3:00PM to 11:00PM EST
Responsibilities:
• Mentor and provide technical guidance to junior SOC analysts.
• Monitor, analyze and report potential cybersecurity attacks.
• Investigate and analyze threat indicators.
• Gather Indicators of Compromise for threat hunting activities.
• Leverage security tools (Elastic, Crowd Strike and more) for analysis to identify malicious activities.
• Analyze identified malicious activity to determine Tactics, Techniques and Procedures.
• Conduct research, analysis and correlate gathered data from various resources to determine incident impact.
• Execute containment and eradication actions following established playbooks.
• Participate in on‑call and scheduled shift rotations, including outside of business hours.
• Coordinate Security Incident Response and investigation with internal teams and third‑party providers.
• Document incident timelines, evidence, and actions taken for post‑incident review.
• Perform post‑incident reviews and produce lessons‑learned reports.
• Maintain and improve incident response playbooks and runbooks.
• Participate in tabletop exercises and IR simulations.
• Provide proactive security investigations and searches on corporate environments to detect malicious activities.
• Maintain an up‑to‑date understanding of security threats, countermeasures, security tools, cloud security and SaaS technologies.
• Maintain technical proficiency through training, keeping up with industry best practices, and security frameworks.
• Communicate investigation findings and risk posture to technical and non‑technical stakeholders.
• Own and report on SOC operational metrics (MTTD, MTTR, alert fidelity).
Qualifications:
• 5+ years of experience in Cybersecurity Incident Response and Threat Hunting in a complex incident management/SOC environment.
• Experience in the creation and fine‑tuning of detection rules.
• Practical experience integrating security tools via APIs for automation, and familiarity with SOAR concepts.
• Experience with EDR tools such as Crowd Strike Falcon and SIEM tools such as Elastic Security.
• Experience with forensic triage (disk, memory, network) across Mac, Linux, Windows.
• Experience building SOC processes, playbooks, SIEM correlation rules, and incident reports.
• Proven incident management and communication under pressure.
• Knowledge of NIST Cybersecurity Framework, MITRE ATT&CK.
• Knowledge of security monitoring tools (Firewalls, IDS/IPS, Phishing, email security, content filtering, DDoS, WAF).
• Certifications:
GCIH, GCED, CCFR, HTB CDSA, GCFA, CHFI or similar are desirable.
Compensation and Benefits
Base salary range: $95,920 – $119,899 (Canada). Includes a comprehensive benefits plan and competitive incentive bonus program for full‑time permanent roles.
Benefits include health & wellbeing programs, paid vacation, personal & sick days, career growth opportunities, work‑life balance and a supportive inclusive environment.
We are committed to fostering a diverse, inclusive and accessible work environment. Candidates requiring accommodation during the recruitment process should inform us to make necessary arrangements.
#J-18808-Ljbffr
Source: Learn4Good
