In search of an experienced Cybersecurity Professional with a background in cybersecurity policy assessment, cybersecurity operations, incident response, SIEM tools, as well as creating and maintaining incident response playbooks. Responsibilities include interacting with stakeholders to enhance and implement new technologies, responds to threats and incidents as needed, and collaborate on providing a strategic road map of future security technology.If you are interested in this role, please reach out to firstname.lastname@example.org AdvantagesIf you are looking to join a challenging and growing team, this is the role for you! Role is remote however you must be in Ontario, Alberta, BC or SK. Will be working Eastern timezone ResponsibilitiesEvaluation of critical incidents. Review alerts, threat intelligence, and security data. Identify threats that have entered the network, and security gaps and vulnerabilities currently unknownImplement and manage the full SOC security tool stack as well as take ownership of and adapt incident response SOPs and playbooksEfficiently gather and analyze data with these tools to detect and investigate suspicious activities, contain, and prevent them. Provide insight to potential tooling changes, as needed to adapt to threats based on threat intelligence / IOCsAudit and compliance support. Review and provide recommendations on security policy and applications. Track performance and provide recommendations on improving metrics and KPIs. Preparing disaster recovery plansReduce downtime and ensure business continuity by proactively notifying business stakeholders about serious security events and how to potentially mitigate the posed associated risk(s)Qualifications10+ years’ experience supporting cybersecurity SOC operationsBachelor’s degree or equivalent in Computer Science, Information Assurance, MIS or related field; Masters is a plusExperience and education in one or more of the following: CEH, eCPPT, OSCP, GCFW, GCIH, IHRP, CISSPExperience and education in one or more vendor certification programs such as LogRhythm Platform Administration (LRPA), LogRhythm Security Analyst (LRSA), LogRhythm Cloud Administration (LRCA) Certification, Security+, Network+, GSEC, Certified Systems Analyst, CISM, or ISO 27001SOC analysis and SIEM experience with LogRhythm. Candidate should be able to write advanced LR queries, create dashboards and reports, and be knowledgeable with SIEM administrationExperience in an MSSP - tiered SOC/SIEM serviceAdvanced Experience with the Enterprise Incident Response Cycle: Preparation, Detection & Analysis, Containment and Recovery, Post Incident AnalysisSummaryIf you are interested in this role, please reach out to email@example.com with your resume! Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to firstname.lastname@example.org to ensure their ability to fully participate in the interview process.