Cyber Security Analyst

The Atlas Corp. and Seaspan teams are goal-driven and share a high-performance culture, focusing on building services offerings to become a leading asset manager. Seaspan provides many of the world's major shipping lines with alternatives to vessel ownership by offering long-term leases on large, modern containerships and pure car, truck carriers (PCTCs) combined with industry leading ship management serves. Seaspan's fleet has evolved over time to meet the varying needs of our customer base. We own vessels in a wide range of sizes, from 2,500 TEU to 24,000 TEU vessels. As a wholly owned subsidiary of Atlas Corp, Seaspan delivers on the company's core strategy as a leading asset management and core infrastructure company.

Position Description:

Reporting to the Cyber Security Manager, the Cyber Security Analyst will be instrumental in the operationalization and optimization of security toolsets for IT infrastructure. This role is critical in maintaining robust security protocols and responding to potential cyber threats.

Key Functions:

• Security Platforms: Maintain and operate comprehensive security systems for continuous monitoring, analysis, forensics, reporting, and investigation.
• Auditing: Develop and implement detailed audit plans for identity verification, access control, and network security.
• Incident Support: Develop and test incident response plans, use cases, integration, and reporting. Investigate events and alerts, providing expert support and remediation assistance.
• Education and Training: Assist in the planning and execution of cybersecurity awareness and training exercises for various audiences, including senior management and operational personnel.

Job Responsibilities:

• Provide expert guidance on the architecture and implementation of cybersecurity infrastructure for new projects.
• Engage in cybersecurity investigations within Seaspan and across Atlas subsidiary companies.
• Research risks and threats, perform cybersecurity risk assessments with cross-functional teams.
• Contribute to Change Advisory Board reviews with a focus on cybersecurity implications.
• Ensure secure authentication to corporate resources through proper configuration of toolsets.
• Conduct audits on IT and OT systems to ensure adherence to internal cybersecurity policies and compliance with SOX and other industry standards.
• Facilitate incident response preparedness exercises to enhance organizational response capabilities.
• Oversee the vulnerability management program, collaborating with IT infrastructure teams for strategic remediation planning.
• Perform access reviews of privileged accounts to ensure secure and appropriate use.
• Diagnose and resolve security issues escalated via the ticketing system.
• Assist in the cybersecurity evaluation of new vendors.
• Monitor and analyze networks and computing devices for unusual activity, reviewing security logs for potential threats.

Requirements:

• 3+ years of experience in the IT security domain, ideally as an analyst.
• Demonstrated experience in Cyber Security, with a focus on securing Operational and Information technologies.
• In-depth knowledge of cybersecurity trends, principles, standards, practices, and tools.
• Familiarity with corporate, mission-critical systems environments, computer technology, and infrastructure.
• Hands-on experience with distributed firewall and endpoint detection and response technologies.
• Degree or diploma in a related field, preferably with a focus on information security, or an equivalent combination of education, training, and experience.
• Familiarity with a variety of data, network, and internet security technologies and products, including firewalls, routers, network intrusion prevention systems, vulnerability and penetration testing tools, encryption key management, and Security Information and Event Management systems.

Additional/Desired Qualifications:

• Practical experience with information security controls.
• Technical expertise in networking, server infrastructure, operating systems, data center and cloud operations, telecommunications, virtualization, storage technologies, remote user management, and database security.
• Experience in securing and monitoring cloud environments, such as Amazon Web Services and Microsoft Azure.

Job Demands and Physical Requirements:

• Availability via a mobile device outside of office hours.
• Occasional travel may be required and may be on short notice.