Analyst, Endpoint Security

About the Organization

The Ontario Medical Association (OMA) represents and supports physicians, with a mission to help shape a stronger role for doctors in patient care. The organization aims to be a trusted contributor to the transformation of Ontario’s health-care system by pursuing practical improvements, fresh thinking, and better ways of working.

Role Summary

This position focuses on improving the digital employee experience by keeping devices, applications, and user accounts secure, dependable, and productive. The role follows a service-oriented, customer-focused approach that looks at the full endpoint experience, working to raise the quality, stability, and ease of use of workplace technology so employees can work smoothly and securely.

Using modern endpoint protection methods, evidence-based insights, and ongoing service enhancement, this role helps build a technology environment that is efficient, low-friction, and supportive of employee productivity and satisfaction.

Key Responsibilities

• Oversee and support enterprise endpoint protection for Windows, macOS, and mobile devices while ensuring alignment with internal policies and security requirements.
• Maintain identity and privileged access controls to help provide secure access for employees and contractors.
• Track security alerts and incidents and assist with initial assessment, escalation, and remediation alongside senior security staff.
• Support remediation of endpoint vulnerabilities and help sustain a strong security posture through compliance checks and reporting.
• Assist with Microsoft 365 security administration, setup, and monitoring to maintain a protected and compliant environment.
• Contribute to security reporting, metrics, and operational analysis to support decision-making and ongoing improvement.
• Provide day-to-day operational support, create and maintain documentation, and participate in change management activities to keep endpoint services secure and effective.

Requirements

• A college diploma or university degree in Information Technology, Computer Science, Computer Engineering, or an equivalent background.
• At least 3 years of experience working as an analyst in enterprise endpoint and identity security.
• Mandatory certifications include Microsoft 365 Certified: Endpoint Administrator Associate and Microsoft Certified: Azure Security Engineer Associate.
• Preferred certifications include CompTIA Security+, CompTIA CySA+, GIAC Security Essentials (GSEC), Microsoft Certified: Security Operations Analyst Associate, Microsoft Certified: Identity and Access Administrator Associate, Microsoft Cybersecurity Architect Expert, Microsoft Security, Compliance and Identity Fundamentals (SC-900), Azure Administrator Associate (AZ-104), Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), and ITIL Foundation (latest edition).
• Hands-on experience with modern endpoint management tools such as Microsoft Intune, Autopilot, and Security Copilot.
• Working knowledge of identity governance and conditional access in Entra ID.
• Experience with endpoint and identity security platforms, including Defender for Endpoint and Defender for Identity.
• Familiarity with security monitoring and response tools such as Microsoft Sentinel, SOAR platforms, and automated playbooks.
• Knowledge of Windows security hardening, baseline configuration, and patch management practices.
• Experience with vulnerability remediation and exposure tracking.
• Strong scripting and automation capability, especially in PowerShell, with additional exposure to Power Automate and Azure CLI.
• Understanding of Zero Trust concepts, MITRE ATT&CK, and threat modeling.
• Knowledge of device compliance policies, configuration policies, and app protection policies.
• Solid grounding in network security fundamentals such as ports, protocols, segmentation, VPNs, DNS, and TLS.
• Familiarity with Digital Employee Experience tools and analytics.
• Experience with automated remediation workflows and AI-enabled security tools such as Microsoft Security Copilot.
• Ability to work with API-based integrations such as Graph API and REST.
• Awareness of risk management practices and third-party cybersecurity assessments.

Work Arrangement

The organization operates in a permanent hybrid model. The person in this role must work from the Toronto office a minimum number of days each week.

Benefits and Culture

• A workplace guided by respect, boldness, responsiveness, and transparency.
• The chance to grow professionally while contributing to the strategic direction of the OMA, its members, and the broader health-care system.
• A strong commitment to equity, diversity, and inclusion grounded in humility, accountability, collaboration, courage, and integrity.
• Paid professional development and ongoing internal learning opportunities.
• A flexible and welcoming hybrid work setup.
• A competitive total compensation package, including a salary range of $65,400 to $69,490, plus a pension plan and bonus program.
• A comprehensive benefits package with a spending account and an extensive wellness program.
• Recognition as one of Greater Toronto’s Top Employers for six straight years.

Employment Conditions

Employment is subject to background screening and reference verification. This is an existing vacancy. The recruitment process does not use artificial intelligence. Accommodation will be provided throughout the hiring process for applicants with disabilities, in line with accessibility requirements. The organization welcomes applications from racialized persons/persons of colour, women, Indigenous Peoples of North America, persons with disabilities, LGBTQ2S+ persons, and others who contribute to a more diverse community.