Security Operations Center Analyst

Worker Sub-Type: Regular  Job Description:  QNX® is a trusted supplier of safe and secure operating systems, hypervisors, frameworks, and development tools, and provides expert support and services for building the world’s most critical embedded systems.   We are the embedded experts. QNX was born in embedded, and provides time-tested and trusted foundation software, including our deterministic microkernel real-time operating system (RTOS), safety-certified products, middleware, and security solutions, all purpose-built for embedded systems.   QNX software is trusted by more than 68% of the Electric Vehicle market by volume, 24 of the top 25 EV manufacturers and is running in 255 million vehicles globally. Our foundation products have been pre-certified to ISO 26262 ASIL D, and we offer a broad range of board support packages, professional services, AUTOSAR adaptive support and middleware solutions – from acoustic management to digital cockpits to advanced driving assistance (ADAS) - to accelerate development and help OEMs meet Start of Production (SOP) dates. Are you the person we are looking for? We are seeking a skilled and detail-oriented Security Operations Analyst to join our Hybrid Security Operations Center.  This dynamic role encompasses responsibilities from both the Security Operations Center (SOC) and the Vulnerability Management domains.  The ideal candidate will have strong analytical abilities, experience with security tools and technologies and a proactive approach to threat detection, incident response, and vulnerability management. Responsibilities:

• Monitor security alerts and notifications from various security tools and systems.
• Investigate and respond to security incidents, performing root cause analysis and document findings.
• Conduct real-time analysis of security incidents and escalate as necessary.
• Implement and manage security controls and measures to protect the organization’s assets.
• Maintain and update incident response playbooks and standard operating procedures.
• Collaborate with IT and other departments to ensure timely resolution of security incidents.
• Generate reports on security incidents, trends (KRIs), and SOC performance metrics (KPIs).
• Conduct regular vulnerability assessments and scans across the organizations network, applications, and systems.
• Analyze and interpret scan results prioritize vulnerabilities based on risk and impact.
• Work with IT teams to remediate identified vulnerabilities and provide guidance on best practices.
• Develop and maintain vulnerability management policies, standards, and procedures.
• Stay updated on the latest vulnerabilities, exploits, and security trends.

Skills & Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field; or equivalent work experience.
• 3+ years of experience in a SOC analyst role and/or vulnerability management role.
• Strong knowledge of security incident response processes and methodologies.
• Experience with security information and event management (SIEM) technologies.
• Proficiency with vulnerability assessment tools such as Nessus, Qualys, or Rapid7.
• Familiarity with common security frameworks and standards (e.g., NIST, ISO 27001, CIS).
• Relevant certifications such as CISSP, GIAC, CEH, or CompTIA Security+, or equivalent are preferred.

Additional Assets:

• Ability to work effectively both independently and as part of a team.
• High level of integrity, professionalism, and attention to detail.
• Excellent analytical, problem-solving, and communication skills.

Scheduled Weekly Hours: 40