Analyst - It Security

Who We Are

Kinross is a Canadian-based global senior gold mining company with operations and projects in the United States, Brazil, Mauritania, Chile and Canada. Our focus on delivering value is based on our four core values of Putting People First, Outstanding Corporate Citizenship, High Performance Culture, and Rigorous Financial Discipline. Kinross maintains listings on the Toronto Stock Exchange (symbol:K) and the New York Stock Exchange (symbol:KGC).

Mining responsibly is a priority for Kinross, and we foster a culture that makes responsible mining and operational success inseparable. In 2021, Kinross committed to a greenhouse gas reduction action plan as part of its Climate Change strategy, reached approximately 1 million beneficiaries through its community programs, and recycled 80% of the water used at our sites. We also achieved record high levels of local employment, with 99% of total workforce from within host countries, and advanced inclusion and diversity targets, including instituting a Global Inclusion and Diversity Leadership Council.

Eager to know more about us? Visit Home - Kinross Gold Corporation

Purpose of Role

The IT Security Analyst will be a member of the Corporate IT Security team and will provide security operations support for all areas of IT Security; including investigations, training, administration of security tools, and participating in security projects.

Job Responsibilities

• Provide IT security advice and support to the global IT staff.
• Support security projects.
• Enhance existing security documentation to provide IT professionals and the business with clear direction on security practices and procedures.
• Support and maintain IT Security standards, tools and processes.
• Review IT Security environment and recommend continuous improvements.
• Support the day-to-day IT Security operation.  These include:
  • Incident Response
  • Patch Management
  • Vulnerability Management
  • Access Management
  • Endpoint Protection
  • Mobile Devices Security
• Highlight IT Security risks to IT management.
• Assist server, networking, application, and client service teams to deploy systems in a secure manner.
• Collaborate with physical security professionals responsible for securing Kinross mine sites.
• Assist in incident response and forensic analysis to support investigations.
• Perform assessments against infrastructure and application designs to ensure compliance with security standards.

Scope of Responsibility and Complexity

Work is advanced in its complexity and involves new methodologies, approaches, or products requiring the interpretation of information to make recommendations. This position provides technical support to multiple projects simultaneously. Problem resolution involves a high degree of independent judgment to interpret risk in situations where considerable variation in interpretation is possible.  Work is assessed based on attainment of objectives and effectiveness of results.  The role is based in Toronto, Canada but will be working with IT staff at all Kinross sites with infrequent travel to them. This role requires after hours response to operation and security related incidents. 

Education and Experience

• 2-3 years of experience with security operations.
• Incident response, vulnerability management, and application security.
• An undergraduate degree in computer science, business, or engineering, is valued.
• Prior experience in a mid to large tier organization preferably within global context.

Minimum Qualifications & Skills Requirements

• A CISSP, SANS GIAC or equivalent designation is valued.
• Knowledge of other languages (Arabic, French, Portuguese or Spanish) is valued.
• Fluent in using Splunk; execute advanced searches and build dashboards.