Security Analyst (Cyber Security)

Update: Update to the "Other Information" section.

Important messages

We are committed to providing an inclusive and barrier-free work environment, starting with the hiring process. If you need to be accommodated during any phase of the evaluation process, please use the Contact information below to request special accommodation. All information received in relation to accommodation will be kept confidential.

Information on accommodation for persons with disabilities

Are you a Royal Canadian Mounted Police civilian member assigned to Shared Services Canada? We encourage you to apply. Please note that a civilian member selected for appointment through this process may not have to convert to public servant status before deeming. Contact the Shared Services Canada Human Resources Service Desk at for more information. At Shared Services Canada we are working to change the landscape of IT for the Government of Canada. We look forward to working with you in the coming years and will support your career while you support our business. Therefore, we encourage you to be a part of our team for at least 2 to 3 years to ensure business continuity.

Work environment

Shared Services Canada (SSC) is mandated to secure Government of Canada Information Technology infrastructure, assets and data. To accomplish this mission, SSC deploys and manages sophisticated advanced Cyber and IT security technologies, solutions and services. SSC is currently recruiting dynamic and cutting-edge professionals to protect Canada's cyberspace including data protection, infrastructure and application security, and identity management. We are seeking individuals who are looking for a progressive career opportunity in the continuously evolving and challenging cybersecurity environment and who are driven to develop and grow their skills and expertise working with top professionals and teams. As technology becomes increasingly more sophisticated, the demand for an experienced and qualified workforce to protect the Government of Canada's networks and information systems has never been higher. Set your career sights on being an industry specialist in a rapidly growing field.

Intent of the process

A pool of qualified candidates will be established and will be used to staff similar positions within Shared Services Canada in various locations across Canada. Other government departments may use this staffing process to appoint a candidate to its organization in a similar position.

Positions to be filled: 35

Information you must provide

Your résumé.

Contact information for 2 references.

In order to be considered, your application must clearly explain how you meet the following (essential qualifications)

EDUCATION:
EDU: Successful completion of two years of an acceptable post-secondary educational program in computer science, information technology, information management or another specialty relevant to the position to be staffed, OR an acceptable combination of education, training and/or experience.

Degree equivalency

EXPERIENCE:
EX1. Experience working as an analyst or occupying a similar position in one or more of the following areas of IT:
a. Network architecture
b. Server administration
c. Database administration
d. Programming/Scripting
e. Network monitoring
f. Administration of email systems
g. Identity
h. Credential
i. Access management
j. Directory services
k. IT security operations
l. Classified systems

EX2. Experience in conducting technical research and analysis in any of the areas of IT as identified in Essential Experience 1.

EX3. Experience occupying a supporting, operational or lead role in an IT environment, involving a variety of platforms, operating systems, environments, database technologies and/or messaging technologies.

If you possess any of the following, your application must also clearly explain how you meet it (other qualifications)

EXPERIENCE:
AEX1. Experience using various programming or scripting languages such as; C, C++, Python and Perl, or PowerShell

AEX2. Experience applying CSE Risk management best practices ITSG-33, ITSG-22 and ITSG-38 in support of LAN’s/WAN’s management, operation or support.

AEX3. Experience in conducting or contributing to security investigations using various security or forensic tools, techniques or procedures.

AEX4. Experience with Malware/Anti-virus tools and processes performing installation, configuration, and/or support.

AEX5. Experience working with Type-1 cryptography devices

AEX6. Experience applying the IT Security Directives for the Control of COMSEC Material in the Government of Canada (ITSD-03, 01, 06, ITSG-11).

AEX7. Experience developing and/or assessing information systems security or technical security architecture models, elements, or practices.

AEX8. Experience assessing or developing Privacy Impact Assessments or Privacy requirements.

AEX9. Experience in developing security key performance indicators and reporting dashboards.

AEX10. Experience in coordinating the planning, execution and reporting phases of external and internal audits.

AEX11. Experience in contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and/or activities surrounding the Security Assessment and Authorization (SA&A) or Certification and Accreditation (C&A) of IT infrastructure.

AEX12. Experience in performing Cyber Intelligence, data analytics and/or strategic tradecraft analysis in the context of a Cyber Security program service.

AEX13. Experience with System Development Life Cycle (SDLC) approach required to evolve an IT system from conception to disposition.

AEX14. Experience with administering server operating systems such as Microsoft Server 2008, 2012, or 2016 or Linux operating systems CentOS or Redhat or other operating systems.

The following will be applied / assessed at a later date (essential for the job)

Various language requirements
Bilingual Imperative BBB/BBB
Bilingual Imperative CBC/CBC
English Essential
French Essential
English or French essential

Information on language requirements

KNOWLEDGE:
K1. Knowledge of cyber security technologies (e.g. Firewall, VPN, IDS/IPS) and threats as they pertain to an enterprise/government environment.
K2. Knowledge of the principles and practices of IT incident handling and investigation.

COMPETENCIES:
C1. Initiative
C2. Planning and organizing
C3. Teamwork
C4. Client Focus
C5. Oral interaction
C6. Writing skills. – (To be evaluated in your screening question responses. Clarity, coherence, conciseness as well as appropriate attention to detail (spelling, grammar and relevance to the factor being substantiated) may be used to evaluate your ability to communicate effectively in writing)

The following may be applied / assessed at a later date (may be needed for the job)

OCCUPATIONAL CERTIFICATIONS:
OC1. (ITIL) Information Technology Infrastructure Library Certification (v2/v3)
OC2. CISA: Certified Information Systems Auditor
OC3. (CISSP) Certified Information Systems Security Professional
OC4. (GIAC) Global Information Assurance Certification in one of the specializations under the Security Administration category as issued by SANS
OC5. (CSE) Successful completion of any Communications Security Establishment IT Security Learning Centre Programs of Study
OC6. (OSCP / OSCE) Offensive Security Certified Professional and/or Offensive Security Certified Expert
OC7. (COMSEC) Completion of courses within the Custodian Certification Program (CCCP) under Communications Security Establishment (CSE)

OPERATIONAL REQUIREMENTS:
The operational requirements may vary by the position being staffed
- Ability and willingness to work overtime as required.
- Ability and willingness to travel
- Ability and willingness to work 24/7 On-call
- Ability and willingness to do shift work
- Ability and willingness to work flexible hours

Conditions of employment

Reliability Status security clearance - Certain positions may have a requirement for a Secret or Top Secret Clearance.

Other information

The Public Service of Canada is committed to building a skilled and diverse workforce that reflects the Canadians we serve. We promote employment equity and encourage you to indicate if you belong to one of the targeted groups when you apply.

Information on employment equity

ORGANIZATIONAL NEEDS:

Selection may be limited to members of the following Employment Equity groups: Aboriginal persons, persons with disabilities, visible minorities, women

Preference

Preference will be given to veterans and to Canadian citizens, in that order.

Information on the preference to veterans

We thank all those who apply. Only those selected for further consideration will be contacted.