Senior IT Security Analyst

Are we right for you...

Do you enjoy working at the intersection of security operations, architecture, and real-world incident response? 

Are you someone who goes beyond alert triage, someone who investigates deeply, understands root causes, and strengthens systems to prevent future threats? 

At BC Transit, you’ll play a key role in protecting critical public infrastructure. You’ll work across enterprise systems, cloud platforms, and identity environments, balancing hands-on technical work with broader security strategy. 

If you’re looking for a role where you can lead, influence, and operate across the full cybersecurity lifecycle, this could be your next step. 

In this role, you will…

• Act as a senior technical contributor across BC Transit’s cybersecurity landscape 
• Lead and support complex incident investigations, including forensic analysis and root cause determination 
• Perform threat analysis, threat simulations, and proactive threat hunting 
• Drive vulnerability management and risk prioritization, aligning remediation with business impact 
• Work hands-on with enterprise security tools including SIEM, EDR/XDR, identity platforms, and network security controls 
• Ensure secure configuration, optimization, and continuous improvement of security technologies 
• Contribute to and influence enterprise security architecture and design decisions 
• Support security audits, compliance activities, and framework alignment (e.g., NIST, ISO) 
• Provide expert guidance to IT and business teams on cybersecurity risks and controls 
• Contribute to business continuity and disaster recovery planning 
• Mentor and support junior analysts and promote knowledge sharing across the team 

In this role, you will not be asked to…

• Be limited to monitoring alerts or administering a single tool 
• Operate in a purely advisory or policy-only capacity 
• Work in a narrowly scoped role without exposure to broader security functions 

This is a hands-on, high-impact role requiring both technical depth and strategic thinking. 

What you might love about this role

• End-to-End Exposure: From detection and response to architecture and planning 
• Hands-On Technical Work: Stay close to modern security tools and real-world problems 
• Enterprise Impact: Influence security posture across a critical infrastructure environment 
• Modern Security Stack: Work with technologies such as Microsoft Defender, Sentinel, and identity platforms 
• Continuous Learning: Stay ahead of evolving threats and technologies 
• Collaborative Environment: Work closely with infrastructure, application, and business teams 

What might not resonate

• High expectations for technical depth and ownership 
• Accountability for incident response and operational security activities 
• Need to operate effectively in a dynamic, evolving threat landscape 

This role might not be for you if…

• You prefer a purely strategic or policy-focused role 
• You are most comfortable within a narrowly defined scope 
• You prefer predictable, routine work over real-world problem solving 
• You are not comfortable leading or owning complex technical outcomes 

What you'll bring to the table...

Experience & Education 

• 5+ years of enterprise IT security experience  
• Post-secondary education in Information Technology or related field (or equivalent experience) 

Certifications (strong assets) 

• Leadership & Governance Certifications: CISSP, CISM, CISA, CRISC, CCSP 
• Advanced Technical & Offensive Security: GIAC (GCIH, GCIA, GCFA, GPEN, GMON), OSCP, CEH 
• Core & Intermediate Certifications: CompTIA Security+, CySA+, SSCP 
• Cloud & Platform Certifications: Microsoft (SC-100, SC-200, SC-300, SC-400), AWS Security Specialty, Azure Security Engineer (AZ-500), Cisco CCNP/CCIE Security 
• Other relevant cybersecurity certifications are also considered 

Technical Expertise 

• Incident response, threat detection, and forensic investigation 
• Security tooling including SIEM, EDR/XDR, IAM, IDS/IPS, and vulnerability management tools 
• Identity and access management (e.g., Active Directory, Entra ID, MFA) 
• Networking fundamentals (TCP/IP, segmentation, enterprise architecture) 
• Cloud security awareness (e.g., Azure, SaaS environments) 

Security & Risk Management 

• Strong understanding of security frameworks (NIST, ISO, CIS) 
• Experience in risk assessment, vulnerability prioritization, and control implementation 
• Familiarity with security audits and compliance requirements 

Core Competencies 

• Strong analytical and problem-solving skills 
• Ability to lead investigations and make sound technical decisions 
• Excellent communication skills with both technical and non-technical audiences 
• Ability to operate effectively in high-pressure environments 
• Collaborative mindset with ability to influence across teams 

Operational Expectations 

• Participation in on-call rotation and after-hours incident response, as required 
• Ability to support a critical infrastructure environment with high security and reliability standards 

To learn more about this role, we encourage you to review the Senior IT Security Analyst job description, which outlines the full scope of accountabilities. 

What we'll bring to the table...

• Comprehensive medical and dental benefits to support you and your family, regardless of what life throws at you
  Membership in BC’s Public Service Pension Plan (PSPP). Nationally recognized for its strong investment and governance practices, PSPP is a “defined benefit” plan 
  Access to fitness and lifestyle centers to help you take care of your physical fitness and health
  Various programs that support employees such as an Employee Assistance Program and health and wellness initiatives and events aimed at fostering your mental health
  A complimentary employee bus pass (plus taxable dependent passes)
  A corporate learning and development program to help you in continuous career growth
  An employee recognition program where we all recognize each other's successes (not just your Leaders!)
  A social club that gives you access to events throughout Victoria

What next steps could look like...

• Interviews will take place the week of July 6, 2026.
• There may be an assignment/presentation as part of the interview process.
• The position requires the completion of a Criminal Record Check or Vulnerable Sector Search.
• An eligibility list may be established for future full time regular and full time temporary vacancies
• If you have a disability that requires an accommodation during any stage of our recruitment process, please contact careers@bctransit.com to let us know how we can assist you.
• BC Transit is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities. If the organization identifies this position as a reasonable accommodation for an existing employee, all candidates will be notified as soon as reasonably possible.