Information Security Analyst – REMOTE CANADA/EUROPE – Digital Nova Scotia – Leading Digital Industry

Information Security Analyst – REMOTE CANADA/EUROPE

The Information Technology (IT) team plays a key role in providing business enablement throughout ResMed. We are focused on application, infrastructure, and user productivity solutions, with innovation, efficiency and security. Our goal is providing customer oriented agile delivery, effective business partnership and state-of-the-art technology solutions.

Lets talk about the team

The ResMed Security Operations team is focused on building a global Security Operations Center to monitor our diverse environment.  Combining cutting edge tools, existing and newly developing processes, and a security focused business, provides an exciting environment to really make an impact.  As a growing company, there’s a lot of opportunity to learn new tools, collaborate with other teams to solve problems, and have some freedom to investigate events.  The ResMed security team is a supportive environment that encourages learning, investing in new skills and asking questions.  We strive to create an environment where every team member is empowered to do the best work of their careers.

Let’s talk about the role

The primary role of Information Security Analyst is to work with our Global team of Security Analysts to monitor our security tools, investigate unusual findings, and respond to incidents within the business.

  • Keeps up to date on the latest security news and monitors for threats and zero day or other exploits followed by action and communication
  • Monitors information security related websites (US-CERT, SANS, Internet Storm Center, etc.) and other sources to stay up to date on current attacks and trends
  • Work with DevOps teams to provide Security guidance and feedback
  • Monitors and works Security Operations ticket queue
  • Monitors and investigates alerts generated from ResMed’s security appliances, cloud services and various technologies
  • Works with Infrastructure teams and other internal business units as required to promote Secure computing standards and monitoring
  • Compiles and analyzes data for management reporting and metrics
  • Covers non-EU regions during their off-hour periods
  • Analyzes potential impact of new threats and communicates risks to stakeholders
  • Incident Response Role:
    • Responds to computer security incidents according to the computer security incident response plan (CSIRP)
    • Provides guidance to Infrastructure and Service Desk personnel for handling information security incidents
    • Coordinates efforts across multiple global regions during incident response episodes
    • Provides timely and relevant updates to appropriate stakeholders and decision makers
    • Validates and maintains incident response plan and processes to address potential threats
  •  Provides investigation findings to relevant business units to help improve information security posture
  • Investigates security incidents by utilizing numerous forensics tools and contributes to evolution of forensics practice
  • Contributes to security related business and InfoSec projects in both an advisory and hands on capacity
  • Continually innovates on existing security posture, finding and identifying gaps, and defining a plan to close the identified gaps
  • Contributes to various InfoSec documentation resources and ensures that library maintains relevance
  • Attends change management meetings and reviews security impact of proposed changes such as firewall ACL submissions, network changes, solution/application architecture etc.

Let’s talk about you

  • A passion for Security is more important than experience to us. We can teach the Security side of the role, we can’t teach someone to be curious, inquisitive and wonder “why is that thing that way?”
  • Demonstrates the ability to work extremely well under pressure while maintaining a professional image and approach
  • Able to perform independent analysis and distill relevant findings and root cause
  • Strong analytical writing skills to articulate complex ideas clearly and effectively
  • Team player with proven ability to work effectively with other business units, IT management and staff, vendors, and consultants
  • Strong communication skills such as planning and leading effective meetings and conducting structured interviews to collect information
  • Advanced presentation skills to provide relevant and timely information to stakeholders and/or decision makers in an effective and professional manner


  • Minimum of 3 years IT Experience

It would be a plus if you have

  • AWS, Cloud or Software Development Experience
    Incident Response experience (either “General IT” or Security related)
  • Experience with EDR, SIEM or CASB Tools
  • Experience working with security regulatory requirements and standards (such as NIST 800 series, ISO 2700x series, GLBA, FFIEC)

Joining us is more than saying “yes” to making the world a healthier place. It’s discovering a career that’s challenging, supportive and inspiring. Where a culture driven by excellence helps you not only meet your goals, but also create new ones. We focus on creating a diverse and inclusive culture, encouraging individual expression in the workplace and thrive on the innovative ideas this generates. If this sounds like the workplace for you, apply now!