This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Tech jobs every day in Canada!

To post a job, login or create an account |  Post a Job

   Canadian Tech jobs   

Website updated every day with fresh jobs in the IT industry

Slide 1
Slide 2
Slide 3
previous arrow
next arrow

Senior Manager, Cyber Forensics

BlackBerry

This is a Contract position in Mississauga, ON posted July 27, 2022.

Worker Sub-Type:

Regular

 Job Description: 

BlackBerry's Cyber Forensics team is responsible for conducting digital investigations into a variety of case types from internal allegations to the determination of root cause for security incidents. The Senior Manager must demonstrate an excellent working knowledge of all aspects concerning cyber security: including awareness of current threats, attack vectors and their associated tools, techniques, and procedures.  More importantly, a Senior Manager will be of sound investigative mind and analyze extrapolated data from cases in order to produce the necessary solutions. The Senior Manager, Cyber Forensics is responsible for identifying the facts of investigations and conveying those findings with intention to improving BlackBerry's security posture where possible while supporting case management for the team and mentoring staff.

Responsibilities: 

  • Performing forensic investigations as required

  • Continuously developing and maintaining comprehensive computer forensics programs to safeguard BlackBerry assets

  • Responding to IT security incidents, mitigating impact, coordinating remediation efforts as well as making recommendations to senior management

  • Providing expertise to enable proactive detection of potential security threats and recommending enhancements to overall security posture

  • Categorizing and communicating risk profiles to senior management

  • Documentation of findings and creation of detailed reports for internal stakeholders

  • Supporting forensic investigations, including participation in chain of custody for evidence potentially leading to disciplinary actions, civil or criminal prosecution

  • The successful candidate will be expected to cultivate external relationships to enhance internal awareness of industry trends and best practices.

  • Investigate network intrusions and other cybersecurity incidents to understand the cause and extent of the breach.

  • Perform host-based and network-based analysis across all major operating systems and network device platforms.

  • Produce high-quality oral and written work product and deliver expert opinions based on analysis.

  • Support the mentorship and technical development of team members.

  • Investigate instances of malicious code and documents to determine attack vectors and payloads and conduct malware analysis.

  • Develop and refine policies and procedures for forensic and malware analyses.

  • Maintain and support evaluation of cyber security tools and technology used by the team including the lab environment and maintain a yearly operational budget.

  • Assign investigative tasks to staff and review their work for accuracy.

  • Cultivate meaningful metrics and provide regular updates to leadership.

Essential Skills and Qualifications: 

  • Post-Secondary degree in Computer Science/​Engineering or Information Technology preferred

  • Preferred minimum 5 years of experience

  • Solid understanding of forensic methodologies, including in-depth knowledge of computer incident handling and response processes

  • Knowledge of forensic processes and tools as well as malware analysis tools & techniques

  • Demonstrate advance technical knowledge of forensic examination principles, computer operating systems, file structures, file artifacts, network architecture and computer hardware components required

  • Experience using commercial and open-source tools in conducting in-depth digital computer forensic examinations of digital media and data storage systems

  • Intimate knowledge of the following: logging controls & log analysis, IP network architecture, routing and protocols, data management, Web application security, memory analysis, firewalls, IDS/IPS/HIPS, anti-virus, cryptography and PKI

  • Current with latest attack techniques and countermeasures; malware and threat actor profiles

  • Able to lead multiple projects concurrently and mentor staff

  • Technical or professional certifications preferred: GSEC, CISSP, CCE

  • Functional certifications preferred: GCIA, GCIH, GCFA, GREM, EnCe

#LI-TH1

Scheduled Weekly Hours:

40