At Heartland Mutual Insurance, were more than just a company were a community. Proudly rooted in Ontario and Nova Scotia, were driven by a bold vision: to be the Best Mutual. Our team of passionate professionals doesnt just follow the norm we challenge it. We think differently, aim high, and deliver on our promise with a personal touch. Here, youll be part of a culture that values authenticity, embraces change, and empowers you to make a meaningful impact every day. Together, we bring our purpose to life by living our values and putting people first. What youll do... - Coordinate and conduct network and web application vulnerability assessments. - Collaborate with other departments to identify security risks within their operational areas, recommend appropriate security control remediation, and support the development of security process improvements to mitigate risks. - Monitor, review, and respond to security events from Heartland toolsets, partners and industry alerts, tracking them through to resolution. Escalate unresolved issues within the acceptable time frame. - Monitor emerging threats, assess risks, and recommend relevant controls and mitigation strategies. - Collaborate with teams to implement hardening of servers and network devices. - Provide support for securityrelated projects and serve as the security consultant to help guide secure application and infrastructure configurations. - Review IT security controls and processes for new applications and services to ensure the implementation of proper technical security controls. - Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts. - Work with external consultants for independent security audits, penetration testing, incident response, and risk remediation when necessary. - Review emerging security technologies and provide recommendations to enhance infrastructure security. - Manage remediation efforts after security assessment findings outline weaknesses requiring attention. - Act as a key figure in incident response to track occurrence and resolution, with strict documentation and reporting as well as engagement within Security and DevOps teams. - Conduct security threat and risk assessments in line with industry standards, identifying necessary administrative, procedural, and technical control remediation items. - Ensure alignment of Heartland security efforts with relevant frameworks, guidelines and governing bodies. - Ensure operational effectiveness of network security components for enterprise and cloud environments such as firewalls, VPN and network devices. - Contribute to the design and implementation of security standards and best practices. - Assist in the execution of the delivery of the Cybersecurity roadmap, providing updates on progress and tracking changes in Heartlands Cyber risk and security posture. - Promote Cybersecurity awareness throughout the organization, spreading knowledge of threats, best practices, and effective use of training tools. - Participate in the delivery of cybersecurity and resiliency activities including tabletop exercises, DR tests, and penetration tests. - Aid MDR and SIEM service providers to ensure continuous detection and response capabilities, and comprehensive logging to enable investigation and containment. - Operate IAM tools and processes to manage digital identities, control access, streamline onboarding, offboarding, and role changes, and inform access audits. - Provide input and assistance into creating procedures and processes for security events. Assist in security event investigation, containment, reporting, and reviewing for continuous improvement. - Provide guidance and training to other IT staff on cloud security best practices. - Monitor security events and alerts across SIEM platform sumologic, analyzing logs from endpoints, networks, cloud services, and applications to identify suspicious activity and potential threats. - Perform threat hunting using the MITRE ATT&CK framework and threat intelligence to proactively detect advanced attacks, lateral movement, and anomalous behaviors. - Respond to security incidents, including triage, containment, eradication, and recovery, while conducting rootcause analysis and documenting all steps in detail. - Manage and monitor DLP solutions (Microsoft Purview) to prevent sensitive data loss, investigate alerts, and finetune policies for improved detection and reduced false positives. - Operate and maintain PAM tools. Azure PIM, enforcing leastprivilege access, monitoring privileged sessions, and reviewing privileged account usage. - Oversee cloud security in Azure identifying misconfigurations, securing identities and permissions, monitoring access logs. - Perform web application security Hardening. - Evaluate AI for security risks, including adversarial attacks, prompt injections and response. Monitoring the behavior of the copilot and designing security policy to stop data sprawl in co pilot. - Conduct vulnerability management, performing regular scans using Nessus, prioritizing remediation, and coordinating with IT teams to ensure timely patching of systems. - Maintain and optimize security tools, including EDR/XDR, tuning detection rules to reduce noise and improve visibility. - Create detailed security reports, dashboards, and metrics, presenting findings and recommendations to leadership and providing guidance to teams on security best practices. - Contribute to cybersecurity awareness initiatives, including phishing simulations, training, and best practice recommendations, supporting a strong organizational security culture. What you will bring... - Post Secondary education in cybersecurity or a combination of education and relevant experience - Cybersecurity certifications are assets. - 2-4 years in relevant Cybersecurity Technology roles. - Understanding of Network & Security device management. - Understanding of Cloud security, design, deployment, and management. - Ability to troubleshoot security events within network and cloud environments. - Familiarity with IAM tools and practices. - Good knowledge of Windows platforms, Office 365, and MS Defender. - Good knowledge of Cybersecurity frameworks, tools, and best practices. - Effective communication and collaboration abilities. - Experience in Insurance Technology as an asset. The salary range for this role is $86,000- $129,000. The salary for the successful candidate will be determined by various factors including but not limited to an individuals relevant experience, knowledge, skills, along with internal equity, and market considerations. What we offer... In return, well give you countless opportunities to learn and grow. Youll be empowered to be your best self, do your best work, and make a meaningful impact. Here, you can help shape the future of insurance, win as a team, and grow with us. At Heartland our benefits are great and include not only health and dental coverage, but also a generous pension plan. All staff members share in our companys success through our incentive plan. And with our hybrid work model, you get the best of both worlds the ability to collaborate and connect with great colleagues and to enjoy the benefits of working from home. Intrigued? We cant wait to hear from you! Whats in it for You: - A Supportive Team:Were not just a workplace, were a community. We are small but mighty, we believe in the power of connection, purpose, and belonging. - Comprehensive Total Rewards:Enjoy a competitive compensation package made up of base salary and bonus, health and wellness benefits, pension plan, paid time off, and so much more. - Inclusive Culture:Work in an environment that embraces diversity, equity, inclusion and belonging. - Career Growth & Development:Take advantage of continuous learning opportunities and stretch assignments. - Make an Impact:Play a key role in helping customers navigate challenging situations with empathy and expertise. This job posting is for an existing vacancy within Heartland. Accommodation is available on request for candidates taking part in all aspects of the selection process. We do not use artificial intelligence or automated decisionmaking tools in any part of our hiring process. All applications are reviewed by our Talent Acquisition team to ensure fairness and transparency. At Heartland Mutual Insurance, youre empowered to thrive. Whether its your career, your wellbeing, or your future, we've got you covered. #J-18808-Ljbffr
Job Title
Security Analyst