Junior IT Security Analyst

The House of Commons Administration delivers outstanding services to Members of Parliament and their employees in support of parliamentary democracy. Our success is made possible by our talented and dedicated workforce. We leverage diversity in all its forms and recognize that everyone has valuable contributions to make and the potential for individual growth. If you dream of joining an organization that is small enough for you to be noticed, but big enough to provide you with a meaningful career, then we want to hear from you!

Job Description

The House of Commons’ Digital Service and Real Property is currently looking to staff the Junior IT Security Analyst L1 (IT Security Analyst, Monitoring) position.

This position is full time on-site five (5) days per week.

As a member of the IT Security Operations Team, you will help protect parliamentary technologies by monitoring cybersecurity threats and supporting security operations for Members of Parliament, their staff, and the House of Commons Administration. In a fast-paced, collaborative environment, you will contribute to maintaining the security and availability of parliamentary systems during daily operations and major parliamentary events.

In this role, you will monitor and triage security alerts, logs, dashboards, and suspicious activity across tools such as SIEM, EDR/XDR, Microsoft 365, firewall, endpoint, email, authentication, and cloud security platforms. You will assist with investigations into phishing attempts, malware detections, suspicious logins, and other security incidents while supporting incident response and escalation processes.

Digital Services and Real Property (DSRP) has a requirement of a 24/7 support model and work activities related to this role may require working irregular hours and overtime to meet our operational requirements.

Top Reasons to Join the IT Security Operations team:

You will work closely with senior analysts to support daily SOC operations and gain hands-on experience with enterprise security technologies while building a strong foundation in cybersecurity and security operations.

• Training and development opportunities.
• Work-life balance /35-hour workweek
• 4 weeks’ vacation (minimum)

Qualifications

Education:

• University degree in cybersecurity, information technology, computer sciences or another related field, OR an acceptable combination of education, training and experience.

Experiences:

• Security Monitoring – Knowledge of security monitoring and alert triage, including analyzing alerts, identifying suspicious activities, and escalating potential threats;
• Endpoint Detection & Response (EDR) - Familiarity with endpoint security monitoring and EDR tools and concepts for detecting and responding to threats;
• Microsoft 365 security technologies - Experience with Microsoft Exchange Online, Microsoft Purview, Microsoft Entra ID (Azure AD), Multi-Factor Authentication (MFA), Microsoft Intune, and Active Directory;
• Windows & Linux Operating Systems - Hands-on experience with Windows and Linux operating systems administration, including account management, log review, system diagnostics, and security monitoring activities;
• Log Analysis - Knowledge of SIEM concepts and log analysis including event correlation, alert investigation, and dashboard monitoring;
• Networking Fundamentals - Understanding of networking fundamentals, including TCP/IP, DNS, HTTP/HTTPS, IP addressing, ports, protocols, VPN connectivity, firewall concepts, and network traffic analysis; cisco environments; basic scripting (PowerShell, Python), ticketing systems (e.g., ServiceNow);
• Phishing, malware & common threats - Experience identifying and responding to common cybersecurity threats, including phishing attacks, malware infections, unauthorized access attempts, social engineering techniques, and other malicious activities;
• Core IT Security Principles - Experience applying core IT security principles, including authentication, authorization, and access control, within enterprise environments;
• End-user support and client service concepts - Experience providing end-user support and client service in an IT environment, with the ability to communicate professionally, gather information during investigations, and deliver customer-focused technical assistance.

Assets:

• Security-focused certifications such as CompTIA Security+, ComptTIA Network +, CompTIA CYSA, SANS (GCIA, GCIH), Microsoft SC-900, Microsoft SC-200, Cisco CyberOps, ISC2 Cybersecurity Certification, or other applicable certifications;
• Experience with Packet capture and traffic analysis using tools such as Wireshark to support network monitoring and security investigations.

Additional Information

We are committed to creating an inclusive workplace by providing a barrier-free recruitment and selection process. If you have an accommodation request, require material in an accessible format, or need additional support with the application process, please contact Recruitment and Selection Services at [email protected].

Each bilingual position is assigned a linguistic profile that identifies the level of second language proficiency for reading comprehension, written expression and oral interaction required. The profile for this position is BBB. Consideration may be given to candidates with other linguistic profiles.

We invite you to save a copy of the notice of job opportunity. Once the closing date has passed, these documents will no longer be available.

Qualified candidates may be considered for future vacancies for this role or for other similar and/or related roles on an indeterminate and/or fixed term basis.

Learn more about us! Visit Ourcommons.ca.

To learn about our hiring process, visit Eligibility and Selection.