Job Title

JSOC - Cybersecurity Specialist - Incident Response 5700 Yonge St, North York, ON M2N 5M9, Canada Job Description Posted Tuesday, March 31, 2026 at 3:00 AM Questrade Financial Group (QFG), through its companiesQuestrade, Inc., Questrade Wealth Management Inc., Community Trust Company, Zolo, and Flexiti Financial Inc.provides securities and foreign currency investment, professionally managed investment portfolios, mortgages, real estate services, financial services and more. Questrade uses cuttingedge technologies to develop innovative products that give customers better, more affordable ways to take control of their money. We are everything a traditional financial institution is not. At QFG, you will be constantly moving forward, bringing the future of fintech into existence. You will be a part of a collaborative team that cares deeply about our mission and each other. Your team members will help you conquer challenges, push boundaries and discover what you are truly capable of. At QFG, we have a culture of innovation where technology serves peopleboth our team and our customers. We see AI as a collaborative and transformative enabler, and we are seeking forwardthinking individuals who can effectively integrate it into their daily work. The ideal candidate will be a catalyst for change, helping us use AI to create a more efficient and rewarding employee experience while also developing cuttingedge solutions that delight and serve our customers. Join us in shaping a future where AI empowers our team to do their best work and helps us deliver unparalleled customer experiences. This is a place where you can explore, discover and learn with continuous growth. As a diverse and inclusive place to work, with a hybrid working environment you can unleash your creativity and curiosity with no limits. If you share the same sense of infinite possibility, come shape your future at QFG. Whats in it for you as an employee of QFG? Health & wellbeing resources and programs Paid vacation, personal, and sick days for worklife balance Competitive compensation and benefits packages Worklife balance in a hybrid environment with at least 3 days in office Career growth and development opportunities Opportunities to contribute to community causes Work with diverse team members in an inclusive and collaborative environment Were looking for our next SOC Specialist. Could It Be You? Your contribution delivering sustainable and measurable results in the following areas will be very important: Responsibilities Identifying and responding to cyber threatssafeguarding our companys infrastructure and data. You'll be primarily involved in supporting the alert development cycle, triaging and investigating alerts, managing the full incident response lifecycle (investigation, containment, eradication, and recovery), and collecting and tracking metrics for reporting. Working alongside internal customers and vendor support teams to ensure we are utilizing security tools in accordance with corporate policies and growing business needs. Collaborating with Cybersecurity and IT teams to align priorities and execute plans for new initiatives, contributing to process improvements and building documentation for new tools. Collaborating with team members on investigations and sharing technical knowledge. Monitoring, analyzing and reporting possible cybersecurity attacks. Investigating and performing analysis of threat indicators. Gathering indicators of compromise and relevant data for threat hunting activities. Leveraging security tools (Elastic, CrowdStrike and more) for analysis to identify malicious activities. Analyzing identified malicious activity to determine tactics, techniques and procedures. Conducting research, analysis and correlating gathered data from various resources to determine incident impact. Executing containment and eradication actions following established playbooks. Participating in oncall and handson scheduled shift rotations, including outside of business hours. Supporting coordination of Security Incident Response and investigation with other internal teams and thirdparty providers. Documenting incident timelines, evidence, and actions taken for postincident review. Performing postincident reviews and producing lessonslearned reports. Contributing to maintaining and improving incident response playbooks and runbooks. Participating in tabletop exercises and IR simulations. Providing proactive security investigation and searches on corporate environments to detect malicious activities. Maintaining uptodate understanding of security threats, countermeasures, security tools, cloud security and SaaS technologies. Maintaining technical proficiency through training, keeping up with industry best practices, and security frameworks. Communicating investigation findings to technical stakeholders and contributing to reporting. Contributing to tracking SOC operational metrics (MTTD, MTTR, alert fidelity). So are you our next SOC Specialist, Incident Response? You are if you have 3+ years of relevant experience in performing Cybersecurity Incident Response and Threat Hunting activities in a complex incident management or Security Operations Center environment. Experience in the creation and finetuning of detection rules. Familiarity with integrating security tools via APIs for automation, and familiarity with Security Orchestration, Automation, and Response (SOAR) concepts. Experience with investigations and incident response using EDR tools such as CrowdStrike Falcon and SIEM tools such as Elastic Security (KQL, ESQL, Timeline analysis). Experience with forensic triage (disk, memory, network) and multiple operating systems (Mac, Linux, Windows). Experience with contributing to SOC processes, playbooks, SIEM correlation rules, and incident reports. Experience in incident management and communication under pressure. Knowledge of NIST Cybersecurity Framework, MITRE ATT&CK. Knowledge of security products and device monitoring tools including firewalls, IDS/IPS, phishing and email security, content filtering, DDoS, WAF, and more. Brownie points if you have GSEC, Security+, CySA+, CEH, CHFI or similar relevant certifications. Compensation information Base salary range: $80,604 $100,756. The final compensation package will be commensurated with the successful candidates experience, skills, and geographic location (Canada). It includes a comprehensive benefits plan and a competitive incentive (bonus) program for fulltime permanent roles. Sounds like you? Click below to apply! #LI-Hybrid #LI-MM1 At Questrade Financial Group of Companies, with multiple office locations around the world, we are committed to fostering a diverse, inclusive and accessible work environment. This is an environment where individuals are treated with dignity and respect. Here the unique skills and experience you bring will be valued. You will be supported and motivated, so that you can harness your unlimited potential. Our team reflects the diversity of the communities we serve and operate in. Having a collaborative and diverse team helps us push boundaries to bring the future of fintech into existencenot only for the benefit of our customers, but for those who build their career with us. Questrade Financial Group of companies Applicant Tracking System utilizes artificial intelligence (AI) for application screening. The AI system operates on predetermined criteria, with final decisions subject to human review. Candidates selected for an interview will be contacted directly. If you require accommodation during the recruitment/selection process, please let us know and we will work with you to meet your needs. #J-18808-Ljbffr