Skip to Main Content

NOTICE: Temporary air traffic changes

Runway 07-25 (east-west) is required to be closed for construction September 16-27, temporarily increasing air traffic over the communities to the north and south of the Airport.

Learn more

Information Technology (IT) Security Specialist

The Ottawa International Airport Authority (Authority) is accepting applications for an Information Technology (IT) Security Specialist position.

Reporting to the IT Security Analyst, the IT Security Specialist will play a lead role in IT security related technical planning, architecture design, installation, and integration, monitoring and maintenance of IT information security systems.

The IT Security Specialist will also play a leading role in critical and complex intra and inter-organizational projects that involve coordination with multiple teams. They will have a breadth of knowledge and expertise will be crucial in successfully managing these projects. They will be responsible for assessing the efficiency and effectiveness of security systems, identifying areas of improvement, and implementing measures to enhance their performance. In addition, they will ensure the application and utilization of security systems aligns with industry standards and best practices. They will work towards the modernization and interoperability of security systems, enabling seamless integration with existing networking and computing environments..

ESSENTIAL FUNCTIONS :

  1. Security Deployment
  • Maintain a Security Information and Event Management (SIEM) or other log correlation system in accordance with industry and chosen vendor best practices;
  • Identify and implements key monitoring security metrics, develops SIEM/log correlation system use cases and alerts;
  • Monitor and continuously optimize advanced threat detection technology policies and practices in accordance with current threats, industry standards and best practices;
  • Build, execute, and maintain a Threat and Vulnerability Management System, including vulnerability and patch scanning, web application scanning, compromise, and configuration assessment. Create reports and recommendations based on the results of these activities;
  • Build Minimum Security Baselines (MSB) and performs System Hardening and Configuration Management for Endpoints (PCs, mobile devices, kiosk, etc.), servers (Windows, database, DNS, DHCP, etc.), network (switches, routers), other systems (copiers, fax VoIP, SCADA, IOT, Cloud etc.);
  • Conduct research and make recommendations on enhancements around securing new and existing IT systems and third-party connectivity; and
  • Perform other related duties as assigned.
  1. Security Operations, System Hardening and Configuration Management
  • Internal threat monitoring and contributing through intelligence services and platforms;
  • Implement external threat monitoring from various threat feeds and Information Sharing and Analysis Center (ISAC) platforms, incorporating these feeds to security tools to ensure that known threats are blocked;
  • Investigate, document, and report on information security incidents, issues, and emerging trends;
  • Maintain the operability of cyber security tools;
  • Track, report on and remediate vulnerabilities and system weaknesses by working collaboratively with IT Infrastructure and other technical staff; and
  • Perform other related duties as assigned.
  1. Security Audit
  • Ensure that critical systems and processes are in compliance with the organization’s minimum-security baselines and/or industry practices;
  • Coordinate with other system owners to assess and improve their cyber security risk postures;
  • Develop security metrics templates and prepares monthly and annual security metrics reports;
  • Maintain cyber forensic toolsets and makes enhancement acquisition recommendations;
  • Assist with information security management system (ISMS) compliance, security programs, projects and other initiatives as required;
  • Manage the organization’s Data Governance Lifecycle (discover, remediation, asset registry, data flow mapping);
  • Perform Privacy Impact Assessments (PIA) for new and existing projects/systems; and
  • Support the organization’s vendor management processes by performing Vendor/Third party risk assessments.
  • Assist with the rollout and ongoing enhancement of the cyber security awareness program; and
  • Perform other related duties as assigned.

The successful candidate must :

  • Have strong analytical skills in security analysis to identify appropriate solutions.
  • Analyze security breaches to determine their root cause.
  • Anticipate cyber-attacks, always thinking one step ahead of a cyber-threat.
  • Be detail-oriented, self-motivated and demonstrate initiative when performing tasks.
  • Discover, identify, capture, and document relevant information into a cohesive report.
  • Have strong customer service orientation with the ability to deal effectively with end users. 
  • Possess a valid driver’s licence (Class G or equivalent).

These abilities, combined with a professional and positive attitude, will ensure success in building positive working relationships in a team environment.

ESSENTIAL QUALIFICATIONS :

  • University degree or college diploma in Information Technology, Information Systems, Engineering or in a related discipline OR a combination of relevant education and a minimum of three (3) years’ related experience in a similar position where duties included participating in threat and risk assessment;
  • Experience in deploying and operating vulnerability scanners, such as Tenable, Rapid7 products or any other SCAP scanner;
  • Experience in configuring and operating software whitelisting functionality in Windows environment, such as AppLocker, Faronics and similar tools;
  • Experience in deploying and managing patch management systems, including SCCM, Manage Engine and similar tools;
  • Experience in using network access control solutions such as NAC, Cisco ISE, Aruba Clear Pass;
  • Experience with log management systems and SIEM systems;
  • Experience with endpoint protection methods and malware defenses.
  • Excellent understanding of and experience with networking principles, standards and technology, and common protocols;
  • Strong knowledge of Python, PowerShell scripting languages;
  • Strong knowledge of Microsoft Windows account permission controls;
  • Understanding with security tools and software;
  • Understanding of IDS/IPS systems including ability to customize IPS signatures;
  • Demonstrated ability to use nMAP, Metasploit, OpenVAS, Netcat, Wireshark, Kali Linux suite;
  • Demonstrated ability to write custom SQL query, RegEx queries to filter for security events; and
  • Excellent communication and written skills in English.

ASSETS :

  • Experience with the National Institute of Standards and Technology (NIST), Health Insurance Portability and Accountability Act (HIPAA), and Critical Security Controls (CIS) standards;
  • Global Information Assurance Certification (GIAC) or other IT security certifications;
  • Experience with threat hunting;
  • Knowledge of Payment Card Industry Data Security Standard (PCI-DSS), ISO 27001:2013 and Information Technology Infrastructure Library (ITIL) standards and procedures; and
  • Bilingualism (English and French).

ABOUT THE POSITION :

Salary

$85,799.00 to $96,980.00 per year in accordance with the current Collective Agreement (July 1, 2022 to June 30, 2024 rates) and based on a work week of 37.5 hours. 

Job requirements

  • Provide a driver’s abstract (issued within the last month)
  • Successfully obtain:
    • A security clearance check for an Airport Restricted Area Identity Card (RAIC);

To explore this opportunity, please send your resume to [email protected] by September 9, 2024.

The OIAA is committed to the principles of Employment Equity and to achieving a workforce that is representative of the diversity of the Canadian population. We strongly encourage candidates to self-identify if they are Indigenous peoples, persons with disabilities, or members of visible minorities.