6-month contract Senior Security Analyst role focused on detection engineering with a global organization with a hybrid work environment located in downtown Vancouver

• 6-month Security Analyst role.
• High profile team driving Cybersecurity excellence with a focus on detection engineering.
• Hybrid work environment in downtown Vancouver, 4 days a week in office.

As part of an ongoing investment in enterprise cybersecurity, our client is looking to hire a Senior Security Analyst, Detection Engineering to build and maintain the detection capabilities that power their security operations. In this role you will be designing, implementing, and continuously improving high-fidelity detections across lululemon's enterprise environment. You'll work closely with the SOC, Incident Response, and Threat Intelligence teams to make sure detections are not just technically sound but operationally useful. A large part of the role is also building out automation through SOAR to reduce manual toil and create consistent, repeatable response workflows. It's a deeply technical role for someone who thinks in attacker behaviors, writes detection logic fluently, and takes pride in closing coverage gaps before they become incidents.

This client is one of the most recognizable Canadian brands, a true Vancouver success story who has expanded globally. They are well known for their corporate culture and has won major awards for their accomplishments. They have invested majorly in technology and have had an incredibly successful past few years, including a major strategic acquisition. They have an all-star leadership team who keeps you accountable and provides support while still affording you tremendous autonomy. They are located close to rapid transit in newly renovated offices in downtown Vancouver and have an in office work environment, 4 days a week in office.

You will bring the following education, skills and experience to the role:

• 8+ years in cybersecurity with at least 3 years focused on detection engineering or security analytics, including designing and maintaining behavior-based detections aligned to MITRE ATTACK across multiple telemetry sources.
• Strong proficiency writing detection logic in KQL within Microsoft Sentinel and Defender, with hands-on experience ingesting and querying large volumes of SIEM and EDR telemetry, plus scripting in Python, PowerShell, Bash, or JavaScript.
• Proven experience building and implementing SOAR automation workflows; including alert enrichment, triage, IOC lookups, and ticketing using Logic Apps and integrating SIEM, EDR, threat intelligence, and case management systems.
• Demonstrated ability to perform detection gap analysis, validate detections through testing or simulation, and collaborate with SOC, Incident Response, and Threat Intelligence teams to ensure detections are actionable and operationally effective.

This role pays between $65-75 per hour.

If the sound of this opportunity excites you, and you’re confident that it’s a good fit for your experience and career goals, then we’d love to hear from you! Please send your updated resume to us by applying to this posting and one of our awesome team of recruiters will be in touch.