Intermediate IT Security Analyst

Are we right for you...

Do you enjoy working at the intersection of threat detection, incident response, and hands-on technical problem solving? Are you someone who thrives in a fast-paced environment - one day analyzing logs and anomalies, the next responding to incidents or strengthening security controls? 

If you’re motivated by protecting critical infrastructure and want to further develop your cybersecurity expertise in a dynamic environment, this could be the next step in your career. 

What you'll be doing...

Reporting to the Manager, IT Security and Compliance, this role is part of BC Transit’s Security Operations function, supporting the organization's enterprise cybersecurity program. 

In this role, you will: 

• Monitor, detect, investigate, and respond to cybersecurity threats across BC Transit’s networks, systems, and applications 
• Analyse security events and investigate incidents of moderate complexity, working independently and collaboratively 
• Work with modern security platforms including Microsoft Defender XDR, Microsoft Sentinel, Entra ID, and other enterprise security tools 
• Support onboarding, configuration, and optimisation of security technologies to improve detection and response capabilities 
• Identify vulnerabilities, recommend mitigation strategies, and support patching and system hardening efforts 
• Collaborate with internal IT teams and external partners (including SOC providers) to ensure effective incident response 
• Contribute to improving processes, detection logic, and overall security operations maturity 
• Support alignment with cybersecurity frameworks and internal policies (e.g., NIST CSF) 
• Help improve operational effectiveness by contributing to reduced detection and response times 

This intermediate-level role is suited for professionals who have a solid foundation in cybersecurity and are ready to take on more independent investigation and response responsibilities. 

What you will not be doing

• This is not a purely monitoring-only role - you will actively contribute to improving tools, processes, and security posture 
• This is not a purely strategic or policy-focused role - it requires hands-on technical involvement 

What you might love about this role

• Hands-on security work: Investigate incidents, analyze logs, and strengthen defenses daily 
• Real impact: Protect critical public transportation infrastructure 
• Modern security stack: Gain experience with advanced tools including Microsoft XDR and Sentinel 
• Breadth of exposure: Work across network, endpoint, identity, and cloud security domains 
• Continuous learning: Opportunities to grow your skills and certifications 
• Collaborative environment: Work closely with IT teams, SOC partners, and business stakeholders 

What might not resonate

• Operational focus: Includes alert monitoring, incident response, and working through active security queues 
• Dynamic environment: Requires the ability to adapt to evolving threats and priorities

This role might not be for you if you…

• Prefer purely strategic or advisory work without hands-on responsibilities 
• Prefer narrowly defined responsibilities rather than a broad technical scope 
• Prefer highly predictable, low-variability work environments 

What you'll bring to the table...

• Threat detection & incident response – ability to investigate and respond to security events 
• Security tools & technologies – experience with EDR/XDR, SIEM, firewalls, IDS/IPS, and vulnerability management tools 
• Identity & access management – understanding of MFA, RBAC, and directory services (Active Directory / Entra ID) 
• Network & systems knowledge – solid understanding of TCP/IP, segmentation, and operating systems (Windows, Linux, macOS) 
• Cloud security awareness – familiarity with Azure and secure cloud practices 
• Analytical thinking – strong investigative and problem-solving skills 
• Collaboration & communication – ability to work cross-functionally and explain technical risks clearly 
• Prioritization – ability to manage multiple tasks effectively in a fast-paced environment 
• Participation in an on-call rotation and occasional after-hours support for incident response may be required 
• Ability to operate in a critical infrastructure environment with high standards for security and confidentiality 

To learn more about this role, we encourage you to review the Intermediate IT Security Analyst job description, which outlines the full scope of accountabilities. 

What we'll bring to the table...

• Comprehensive medical and dental benefits to support you and your family, regardless of what life throws at you
• Membership in BC’s Public Service Pension Plan (PSPP). Nationally recognized for its strong investment and governance practices, PSPP is a “defined benefit” plan 
• Access to fitness and lifestyle centers to help you take care of your physical fitness and health
• Various programs that support employees such as an Employee Assistance Program and health and wellness initiatives and events aimed at fostering your mental health
• A complimentary employee bus pass (plus taxable dependent passes)
• A corporate learning and development program to help you in continuous career growth
• An employee recognition program where we all recognize each other's successes (not just your Leaders!)
• A social club that gives you access to events throughout Victoria

What next steps could look like...

• Interviews will take place the week of June 22, 2026. 
• There may be an assignment/presentation as part of the interview process.
• The position requires the completion of a Criminal Record Check or Vulnerable Sector Search.
• An eligibility list may be established for future full time regular and full time temporary vacancies
• If you have a disability that requires an accommodation during any stage of our recruitment process, please contact careers@bctransit.com to let us know how we can assist you.
• BC Transit is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities. If the organization identifies this position as a reasonable accommodation for an existing employee, all candidates will be notified as soon as reasonably possible.