Job Summary:
We are seeking someone who is passionate about making a big impact in our cybersecurity operations. In this position, you will help drive important initiatives like identity and access management, threat detection, vulnerability response, and integrating security tools. You will manage user access across cloud and SaaS platforms, respond to security alerts, track vulnerabilities, and find smart ways to automate workflows. This role offers a unique opportunity to make a meaningful impact, to enhance our security posture, support compliance initiatives, and drive the continued growth of our cybersecurity program.
Duties & Responsibilities:
- Assist in the implementation and management of cybersecurity systems, including security controls, threat detection, and incident response mechanisms.
- Support the administration of various security tools and technologies (e.g., firewalls, intrusion detection/prevention systems, endpoint protection).
- Assist in the development and implementation of security policies, standards, and procedures.
- Proactively identify opportunities to streamline and automate security tasks to reduce risk and improve efficiency
- Manage and support IAM lifecycle activities including Joiner/Mover/Leaver (JML) and access provisioning
- Review and recommend improvements to IAM policies, entitlements and federated access roles
- Review and validate third-party access request forms for completeness and policy alignment
- Track and maintain access documentation for audit purposes and support third-party risk tracking
- Assist with firewall and endpoint protection policy configurations and validations
- Enforce and document RBAC, SSO, and MFA configurations and policies
- Manage SAML and OAuth configurations and support secure integration controls
- Coordinate and review allowlisting requests, ensuring alignment with security policies and access control compliance requirements
- Maintain records of allowlisting exceptions and approvals for traceability
- Analyze endpoint behaviour, telemetry data and system indicators for early threat detection
- Monitor, investigate and triage security alerts and anomalies, escalate as required
- Track vulnerabilities, support remediation efforts and document corrective actions
- Assist in the planning and execution of security audits and compliance activities
- Participate in security assessments, vulnerability management, and penetration testing activities
- Identify, implement and continuously improve automated workflows for access reviews, alert handling and evidence gathering and compliance reporting
- Support the automation of security operations processes by developing and maintaining scripts and orchestration logic to reduce repetitive manual tasks and improve consistency
- Provide technical support and guidance to end-users on cybersecurity-related issues
- Collaborate with internal teams to enhance security controls and process standardization
- Ensure adherence to Porter's core values of Safety, Open Communication, Respect and Empathy, Innovation and Problem-Solving, Teamwork and Collaboration, and Passion and Drive in all cybersecurity activities.
- Actively participate in Porter’s Safety Management System (SMS) including reporting hazards and incidents; understand, comply with, and promote the Company Safety Policy
- Other duties as assigned
- Concern for Safety: Identifying hazardous or potentially hazardous situations and taking appropriate action to maintain a safe environment for self and others.
- Teamwork: Working collaboratively with others to achieve organizational goals.
- Passenger/Customer Service: Providing service excellence to internal and/or external customers (passengers).
- Initiative: Dealing with situations and issues proactively and persistently, seizing opportunities that arise.
- Results Focus: Focusing efforts on achieving high quality results consistent with the organization’s standards.
- Fostering Communication: Listening and communicating openly, honestly, and respectfully with different audiences, promoting dialogue and building consensus.
- Bachelor's degree in computer science, cybersecurity, or a related field, or equivalent
- 2-5 years of experience in cybersecurity
- Experience with Cloud (e.g., AWS, Azure, GCP) and on-premise solutions and environments.
- Solid understanding of cybersecurity principles, concepts, and best practices
- Experience with various cybersecurity systems and technologies
- Familiarity with common security frameworks and regulations (e.g., NIST, ISO 27001)
- Strong analytical and problem-solving skills
- Good communication and interpersonal skills
- Ability to work independently and as part of a team
- Relevant certifications (e.g., Security+, CySA+, CEH) are a plus.
Since 2006, Porter Airlines has been elevating the experience of economy air travel for every passenger, providing genuine hospitality with style, care and charm. Porter’s fleet of Embraer E195-E2 and De Havilland Dash 8-400 aircraft serves a North American network from Eastern Canada. Headquartered in Toronto, Porter is an Official 4 Star Airline® in the World Airline Star Rating®. Visit www.flyporter.com or follow @porterairlines on Instagram, Facebook and X.
Report job
