Cybersecurity Analyst

Job SummaryWe are seeking someone who is passionate about making a big impact in our cybersecurity operations. In this position, you will help drive important initiatives like identity and access management, threat detection, vulnerability response, and integrating security tools. You will manage user access across cloud and SaaS platforms, respond to security alerts, track vulnerabilities, and find smart ways to automate workflows. This role offers a unique opportunity to make a meaningful impact, to enhance our security posture, support compliance initiatives, and drive the continued growth of our cybersecurity program.

Duties & ResponsibilitiesAssist in the implementation and management of cybersecurity systems, including security controls, threat detection, and incident response mechanisms. Support the administration of various security tools and technologies (e. g. , firewalls, intrusion detection/prevention systems, endpoint protection). Assist in the development and implementation of security policies, standards, and procedures.

Proactively identify opportunities to streamline and automate security tasks to reduce risk and improve efficiencyManage and support IAM lifecycle activities including Joiner/Mover/Leaver (JML) and access provisioning Review and recommend improvements to IAM policies, entitlements and federated access rolesReview and validate third-party access request forms for completeness and policy alignment Track and maintain access documentation for audit purposes and support third-party risk trackingAssist with firewall and endpoint protection policy configurations and validationsEnforce and document RBAC, SSO, and MFA configurations and policies Manage SAML and OAuth configurations and support secure integration controls Coordinate and review allowlisting requests, ensuring alignment with security policies and access control compliance requirements Maintain records of allowlisting exceptions and approvals for traceability Analyze endpoint behaviour, telemetry data and system indicators for early threat detectionMonitor, investigate and triage security alerts and anomalies, escalate as requiredTrack vulnerabilities, support remediation efforts and document corrective actions Assist in the planning and execution of security audits and compliance activitiesParticipate in security assessments, vulnerability management, and penetration testing activitiesIdentify, implement and continuously improve automated workflows for access reviews, alert handling and evidence gathering and compliance reportingSupport the automation of security operations processes by developing and maintaining scripts and orchestration logic to reduce repetitive manual tasks and improve consistencyProvide technical support and guidance to end-users on cybersecurity-related issuesCollaborate with internal teams to enhance security controls and process standardizationEnsure adherence to Porter's core values of Safety, Open Communication, Respect and Empathy, Innovation and Problem-Solving, Teamwork and Collaboration, and Passion and Drive in all cybersecurity activities.

Actively participate in Porter’s Safety Management System (SMS) including reporting hazards and incidents; understand, comply with, and promote the Company Safety PolicyOther duties as assignedBehavioural CompetenciesConcern for Safety: Identifying hazardous or potentially hazardous situations and taking appropriate action to maintain a safe environment for self and others. Teamwork: Working collaboratively with others to achieve organizational goals. Passenger/Customer Service: Providing service excellence to internal and/or external customers (passengers). Initiative: Dealing with situations and issues proactively and persistently, seizing opportunities that arise. Results Focus: Focusing efforts on achieving high quality results consistent with the organization’s standards.

Fostering Communication: Listening and communicating openly, honestly, and respectfully with different audiences, promoting dialogue and building consensus. QualificationsBachelor's degree in computer science, cybersecurity, or a related field, or equivalent2-5 years of experience in cybersecurityExperience with Cloud (e. g. , AWS, Azure, GCP) and on-premise solutions and environments. Solid understanding of cybersecurity principles, concepts, and best practicesExperience with various cybersecurity systems and technologiesFamiliarity with common security frameworks and regulations (e. g. , NIST, ISO 27001)Strong analytical and problem-solving skillsGood communication and interpersonal skillsAbility to work independently and as part of a teamRelevant certifications (e. g. , Security+, CySA+, CEH) are a plus.

Company DescriptionSince 2006, Porter Airlines has been elevating the experience of economy air travel for every passenger, providing genuine hospitality with style, care and charm. Porter’s fleet of Embraer E195-E2 and De Havilland Dash 8-400 aircraft serves a North American network from Eastern Canada. Headquartered in Toronto, Porter is an Official 4 Star Airline® in the World Airline Star Rating®. Visit www. flyporter. com or follow @porterairlines on Instagram, Facebook and X.