Cyber Security Analyst

Company Overview:
At iSpire, we are committed to protecting our clients’ IT environments and ensuring that their data remains secure. The Cybersecurity Lead plays a crucial role in developing and implementing robust security policies, mitigating risks, and ensuring compliance with industry standards. As the leader of the cybersecurity team, you will oversee the protection of client networks, systems, and data from cyber threats.

Position Summary:
As the Cybersecurity Lead, you will be responsible for managing and overseeing all aspects of cybersecurity within the company. You will design and implement security policies, procedures, and technologies to protect both internal and client environments. You will also lead security audits, vulnerability assessments, and incident response efforts, ensuring that iSpire’s security posture remains strong and resilient against evolving cyber threats.

Key Responsibilities:

Cybersecurity Strategy & Implementation:

• Develop and implement the company’s cybersecurity strategy, aligning it with business objectives and industry best practices.
• Lead the design and deployment of security technologies to protect networks, systems, and data, including firewalls, intrusion detection systems (IDS), and encryption.
• Oversee the execution of security policies and ensure that all systems, applications, and processes comply with security standards.
• Continuously assess security risks and proactively mitigate potential threats through the implementation of new security measures.

Security Audits & Compliance:

• Conduct regular security audits and vulnerability assessments to identify weaknesses and ensure compliance with industry standards, such as ISO, NIST, or GDPR.
• Manage and lead efforts to maintain compliance with regulatory requirements, ensuring that both internal and client systems adhere to security mandates.
• Ensure documentation of all security policies and procedures, updating them as needed to reflect evolving threats and best practices.

Incident Response & Risk Management:

• Lead the cybersecurity team in detecting, responding to, and mitigating security incidents, ensuring rapid resolution to minimize damage and exposure.
• Develop and maintain an incident response plan, ensuring that the organization is prepared to respond to potential cyber threats effectively.
• Oversee post-incident investigations and ensure lessons learned are integrated into updated security processes and measures.

Security Awareness & Training:

• Lead internal and client-facing security awareness programs to educate staff on security best practices and how to recognize potential threats.
• Ensure that all employees are trained on cybersecurity protocols, including password management, phishing awareness, and data protection.
• Collaborate with the HR and IT teams to ensure that new employees undergo comprehensive cybersecurity training during onboarding.

Collaboration & Leadership:

• Collaborate closely with the CTO, IT, and networking teams to ensure cybersecurity initiatives are integrated with IT infrastructure and operational plans.
• Provide leadership and guidance to the cybersecurity team, ensuring that they are equipped to handle emerging threats and support the company’s security posture.
• Act as a security advisor to senior leadership, providing updates on the company’s security status and offering recommendations for improvements.

Security Monitoring & Incident Management:

• Oversee the monitoring of client and internal networks for potential security breaches, unusual activity, and vulnerabilities.
• Work closely with the Network Operations Center (NOC) and help desk teams to identify and mitigate security risks as they arise.
• Ensure that security incidents are documented, analyzed, and reported, making improvements to security measures based on the findings.

Job Requirements:

• Proven experience in a senior cybersecurity role, ideally as a Cybersecurity Lead or Security Manager, with experience in IT infrastructure and security.
• Strong knowledge of cybersecurity frameworks, compliance standards, and risk management practices (e.g., ISO 27001, NIST, GDPR).
• Expertise in designing, implementing, and managing security solutions, including firewalls, IDS/IPS, encryption, and authentication systems.
• Experience in incident response, security monitoring, vulnerability assessments, and penetration testing.
• Ability to lead and mentor a cybersecurity team, fostering a culture of security awareness and proactive risk management.
• Excellent communication and collaboration skills, capable of engaging with both technical teams and senior leadership.
• Strong problem-solving and decision-making skills, with the ability to handle high-pressure situations during security incidents.
• Other duties as assigned by management.

Team Structure:

• CTO / CEO:

The Cybersecurity Lead reports to the CTO or CEO, providing updates on security strategies, risks, and incidents.

• Cybersecurity Team:

The Cybersecurity Lead manages the cybersecurity team, ensuring they have the resources and training to support the company’s security objectives.

• IT & Networking Teams:

The Cybersecurity Lead works closely with IT and networking teams to integrate security measures with existing infrastructure and operational plans.

Job Types: Full-time, Permanent

Pay: $40,000.00-$70,000.00 per year

Additional pay:

• Bonus pay

Benefits:

• Casual dress
• Dental care
• Employee assistance program
• Extended health care
• Paid time off
• RRSP match
• Vision care
• Wellness program

Schedule:

• Monday to Friday
• On call
• Weekends as needed

Education:

• Secondary School (required)

Location:

• Saint John, NB E2L 4V1 (required)

Work Location: In person

Application deadline: 2025-02-21