We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients. At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute. To learn more about CIBC, please visit CIBC.com (https://www.cibc.com/en/about-cibc.html) **What you'll be doing** As a member of CIBC’s Security Operations Center (SOC) team, you will play a crucial role in Information Security. Your focus will be on monitoring, investigating, and responding to security events to protect the organization’s digital assets. We are seeking an action oriented, collaborative, and innovative individual responsible for identifying, investigating, and resolving security incidents. The SOC Investigator will be accountable for conducting proof of concept exercises on new monitoring and detection capabilities, as well as supporting the deployment of effective operational solutions. This role offers the opportunity to join a world class team within a great organization and help meet the evolving operational security needs of a large enterprise. _At CIBC we enable the work environment most optimal for you to thrive in your role._ _You’ll have the flexibility to manage your work activities within a hybrid work arrangement where you’ll spend 1-3 days per week on-site, while other days will be remote._ **How you'll succeed** + **Information Security Operations** - Monitor and analyze security alerts from various platforms to identify potential threats. Evaluate the organization’s security posture and stay current with emerging incident trends and threat intelligence. + **Incident Response** - Lead and coordinate responses to security incidents. Serve as a subject matter expert for complex security events and coordinate response efforts across teams. Investigate alerts, perform root cause analysis, and recommend containment and remediation actions to minimize impact. + **Technology Evolution** - Evaluate, select, and implement new SOC technologies and platforms. Ensure the SOC remains current with industry best practices and emerging tools. + **Use Case Development** - Support fine tuning detection logic based on threat intelligence, incident learnings, and evolving threat landscapes to ensure high fidelity alerts and minimize false positives. + **SOC Metrics** - Define, track, and report on critical SOC performance metrics. Produce detailed analyses and actionable recommendations to drive continuous improvement and demonstrate SOC value to stakeholders. + **Leadership & Communication** - Collaborate with senior leaders and technical teams across the company. Provide informed recommendations to improve incident response processes and operational security. Communicate risk based findings that enable Lines of Business to make informed decisions. **Who you are** + **You can demonstrate 5 years of experience** ina SOC Analyst, Incident Response, or similar role. You have expertise with a variety of SOC threat detection and response tools, with hands-on experience with Microsoft and Palo Alto products. You possess a strong understanding of network protocols and are proficient in analyzing security logs for incident investigation. Working knowledge of firewall, routing, and cloud-based monitoring technologies is an asset. + **You can demonstrate strong knowledge** of security operations within heavily regulated environments, including compliance frameworks and integration of operational controls.You are familiar with processes, tools (SIEM, SOAR, AV/EDR, WAF, OSINT), techniques, and practices for maintaining the integrity and security of organizational data. + **You have a degree/diploma in** Computer Science, Engineering, or a related field. + **You act like an owner.** You thrive when you're empowered to take initiative, go above and beyond, and deliver results. + **You’re a certified professional.** You have current accreditation and good standing in CISSP, CCSP, CEH, SC-200. + **Values matter to you** . You bring your real self to work and you live our values - trust, teamwork, and accountability. \#LI-TA **What you need to know** + CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact Mailbox.careers-carrieres@cibc.com + CIBC is committed to clarity in our hiring process. All roles posted are opportunities we’re actively recruiting for, unless stated otherwise. + You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit + We may ask you to complete an attribute-based assessment and other skills test (such as simulation, coding, French proficiency). + We use artificial intelligence tools during the recruitment process. Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us. **Job Location** Toronto-CC East 12th Floor **Employment Type** Regular **Weekly Hours** 37.5 **Primary Recruiter** Sakshi Bhardwaj **Skills** Analytical Thinking, Decision Making, Information Security, IT Governance, Mentorship, Risk Assessments, Security Technologies, Security Testing, System Security, Troubleshooting At CIBC, we are in business to help our clients, employees and shareholders achieve what is important to them. Our ability to create value for all CIBC stakeholders is driven by a business culture based on common values: Trust, Teamwork and Accountability. Working with CIBC makes you a part of a work environment committed to our clients, employees and communities - a place where you can excel. Every day, our 44,000 employees help our clients achieve their financial goals, because what matters to our clients, matters to us.