Security Operations Analyst

About IFS

IFS is a billion-dollar revenue company with 7000+ employees on all continents. Our leading AI technology is the backbone of our award-winning enterprise software solutions, enabling our customers to be their best when it really matters–at the Moment of Service™. Our commitment to internal AI adoption has allowed us to stay at the forefront of technological advancements, ensuring our colleagues can unlock their creativity and productivity, and our solutions are always cutting-edge.

Copperleaf is the world’s leading AI powered Asset Investment Planning (AIP) solution, enabling organizations to make better decisions – faster, smarter and with more confidence.

Together Copperleaf and IFS offer the first end-to-end asset lifecycle management solution. Underpinned by Industrial AI, the combining of Copperleaf and IFS will allow our asset intensive customers to deliver on their moment of service through strategic allocation and execution of CAPEX and OPEX; balancing expenditure, business objectives, risk and optimal asset performance.

At IFS, we’re flexible, we’re innovative, and we’re focused not only on how we can engage with our customers but on how we can make a real change and have a worldwide impact. We help solve some of society’s greatest challenges, fostering a better future through our agility, collaboration, and trust.

We celebrate diversity and understand our responsibility to reflect the diverse world we work in. We are committed to promoting an inclusive workforce that fully represents the many different cultures, backgrounds, and viewpoints of our customers, our partners, and our communities. As a truly international company serving people from around the globe, we realize that our success is tantamount to the respect we have for those different points of view.

By joining our team, you will have the opportunity to be part of a global, diverse environment; you will be joining a winning team with a commitment to sustainability; and a company where we get things done so that you can make a positive impact on the world.

We’re looking for innovative and original thinkers to work in an environment where you can #MakeYourMoment so that we can help others make theirs. With the power of our AI-driven solutions, we empower our team to change the status quo and make a real difference.

If you want to change the status quo, we’ll help you make your moment. Join Team Purple. Join IFS.

About the Role: Security Operations Analyst

IFS Canada is hiring a Security Operations Analyst to help defend a hybrid environment — with a mix of legacy on-prem infrastructure and growing cloud-native services across AWS and Azure.

This is a hands-on role within our Security Operations team. You'll be responsible for building and refining detection logic, responding to incidents, and coordinating vulnerability remediation efforts. The ideal candidate is comfortable navigating across endpoint, network, and cloud contexts — and is curious enough to chase down leads others might miss.

You’ll also play a key role in ensuring our security controls and practices support compliance with ISO 27001, SOC 2, and other regulatory frameworks.

Who We’re Looking For:

We're seeking someone who’s curious by nature and analytical by default — the kind of person who asks “what else is this connected to?” after every alert. You enjoy exploring how systems work, breaking things in test environments, and tinkering with new detection ideas.

While this role is primarily defensive, we welcome candidates with an interest in red teaming, adversary emulation, or purple team activities. Over time, there’s potential to grow into a more proactive simulation-focused role — working with engineering teams to anticipate and test attacker behavior.

If you're passionate about building detections, breaking assumptions, and closing gaps, you’ll thrive here.

Key Responsibilities:

• Investigate and respond to alerts from SIEM, EDR, and cloud-native logging systems
• Correlate activity across identity, endpoint, network, and cloud data to detect threats
• Build, tune, and maintain detection logic using query languages and regular expressions
• Provide 24/7 rotational on call coverage for critical events
• Create and maintain investigation playbooks, detection documentation, and response templates
• Coordinate vulnerability management activities:
• Work with IT and DevOps to validate, prioritize, and track remediation
• Support compliance evidence collection for vulnerability closure
• Tune endpoint, firewall, and DNS protections based on evolving threat intelligence
• Contribute to detection gap analysis, threat modeling, and internal red team exercises
• Assist with enforcement of policies and evidence collection for ISO 27001/SOC 2 compliance
• Recommend improvements to logging, alerting, and monitoring pipelines

Preferred Experience & Qualifications:

• 2+ years in a SOC, detection engineering, or security analyst role
• Experience working in a technology or SaaS company, ideally under ISO 27001 or SOC 2
• Familiarity with IAM, endpoint security, vulnerability management, and cloud logging
• Experience writing detection logic in query-based systems (LEQL, SQL, regex, etc.)
• Exposure to AWS and/or Azure security tools (e.g., IAM, CloudTrail, Defender for Cloud)
• Scripting or automation knowledge in PowerShell, Bash, or Python is a plus

Must-have Certifications:

• CompTIA Security+ or equivalent.

Nice-to-have Certifications:

• ISC2 CC.
• Microsoft SC-900, AWS Security Specialist or CompTIA Network+.

What We’re Offering:

• Salary Range: $70,000 - $80,000 CAD annually + bonus
• Flexible paid time off, including sick and holiday
• Medical, dental, & vision insurance
• RRSP with Company contribution
• Flexible spending accounts
• Life insurance and disability benefits
• Tuition assistance
• Community involvement and volunteering events

We embrace flexibility and hybrid work opportunities to support diverse needs and lifestyles, while also valuing inclusive workplace experiences. By fostering a sense of community, we drive innovation, strengthen connections, and nurture belonging. Our commitment ensures you can work in a way that suits you best, while also engaging with colleagues to share ideas and build meaningful relationships.

Key skills/competency

• Security Operations
• Incident Response
• Detection Engineering
• Vulnerability Management
• Cloud Security (AWS/Azure)
• SIEM/EDR
• ISO 27001 Compliance
• SOC 2 Compliance
• Threat Hunting
• Scripting (PowerShell/Python)