Security Analyst - Onsite

About Compugen

Compugen is Canada's largest privately-owned Technology Ally. To innovate industries, transform businesses, connect communities, and drive meaningful change, we must think bigger, reach broader, and act bolder. Through knowledge, curiosity, and collaboration, Compugen helps organizations delivering experience by design. This is what it means to be human-centered and technology-enabled.

Dreaming, designing, and delivering isn't just a mantra for us — it's a way of life. We believe that technology is the conduit, but our people – they are the connection that truly makes the magic happen!

Our Culture

We are a human-centered culture where we prioritize your well-being and are invested in helping you reach your fullest potential. We're not only focused on achieving our goals — we're dedicated to helping you achieve yours.

If you're relentlessly curious, driven to make a difference, and collaborative at the core, then you belong with us.

Position Overview:

Compugen is currently hiring a Security Analyst for a two-year contract beginning in October. This is an onsite role that plays a key part in bridging existing skill gaps. The position is critical to the successful execution of both project deliverables and daily operations within the Cybersecurity and Risk Management Branch.

Key Responsibilities:

• Handling the security queue in the ServiceNow application used to manage security incident tickets and comply with incident response plans and processes to address potential threats;
  • Analyzing the potential impact of new threats and communicate risks to relevant business units;
  • Creating and maintaining operational reporting artifacts (e.g. Risk Management Decision Item (RMDI), incident reporting, human resource (HR) investigations, lost/stolen reporting, etc.);
  • Compiling and analyzing data for management reporting and metrics;
  • Coordinating with CSRMB to create security awareness campaigns. Research proactively regarding needs and trends to anticipate and identify potential security problems/incidents;
  • Responding to computer security incidents according to the security incident response policy and provides guidance to first responders for handling information security incidents;
  • Coordinating efforts among multiple business units during security incident response efforts;
  • Engaging stakeholders to fulfill their requests (e.g. decommission request, assets decommission executions, etc.). Coordinate with other peers in CSRMB to research needs and trends to anticipate security problems or incidents;
  • Assessing security incidents and taking prompt actions in terms of engaging required stakeholders and performing root cause analysis of the incident. Stay updated on information security-related attacks and trends;
  • Proactively coordinating with appropriate stakeholders during a security incident – management, security, operations, and others. Provides timely and relevant updates to appropriate stakeholders and decision-makers;
  • Analyzing cyber security incidents to solve issues and suggest improvement in incident response procedures. Creates detailed reports and documentation of all incidents and procedures to the CSRMB, executive government, and leadership of GOS on a routine basis;
  • Supporting the execution and monitoring of phishing simulation exercises, including user targeting, response tracking, and reporting; and
  • Responding to and resolving Privilege Access Management (PAM) related activities and service requests within defined Service Level Agreements (SLAs) using ServiceNow.

Skills & Qualifications:

• Minimum five (5) years of recent experience in the IT sector, specifically within cybersecurity or networking.
• Proven hands-on experience with network security and protocols, including TCP/IP, VPNs, firewalls, and IDS/IPS.
• Practical experience using security tools and platforms such as SIEM systems (e.g., Microsoft Sentinel), antivirus software, and vulnerability scanners.
• Strong working knowledge of operating systems and platforms, including Windows and Linux.
• Demonstrated expertise in incident response, including threat detection, investigation, and mitigation.
• Experience conducting risk assessments and applying risk management techniques to implement effective security solutions.
• Familiarity with compliance standards and regulatory frameworks such as ISO 27001, NIST, and privacy legislation.
• Proficiency in scripting and automation using tools like Python, PowerShell, or Bash.
• Certifications such as CompTIA Network+/Security+, CISSP, CEH, or GSEC are considered strong assets.
• Experience with penetration testing and ethical hacking is an asset.
• A Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field is considered an asset.

Equity Statement

At Compugen, we are committed to diversity, equity and inclusion. We actively recruit from all groups, including women, Indigenous people, persons with disabilities and members of visible minorities. We recognize the importance of removing barriers to participation and provide accommodation upon request to all applicants throughout the recruitment process. If you require an accommodation, our People & Culture representative will work with you to meet your needs in a confidential and respectful manner. We believe everyone deserves a seat at the table-and we are taking deliberate action to make this a reality.