Senior Cybersecurity Analyst (2025-058)

Overview:

Circle Cardiovascular Imaging (Circle) designs, builds, and implements the best-in-class cardiovascular Magnetic Resonance Imaging solutions. At the heart of everything we do is our unrelenting drive to continually offer better solutions for healthcare providers that improve healthcare outcomes. This fuels our creativity, informs our decisions and it is the reason we are passionate about our work and most importantly why we are successful. We are careful stewards of resources focused on optimizing both customer and investor value. We strive to make Circle a place where employees are highly valued, engaged, and have opportunities for professional development. Our roots are medical and digital, our passion is contagious, and our people are amongst the best.
Circle's vision is to Transform Cardiovascular Care through Intelligent Solutions. Circle is a well-known, established leader in the cardiovascular imaging industry, with our best-in-class MR and CT imaging solutions utilized by top healthcare institutions worldwide.

Position Overview:

The Senior Cybersecurity Analyst is responsible for leading Circle’s cybersecurity operations, ensuring the protection of internal systems, data, and infrastructure against emerging threats. This role will be responsible for security monitoring, compliance initiatives, and the continuous development of technical and procedural controls to align with industry standards such as ISO 27001 and NIST 800 Cybersecurity Framework (CSF).

Reporting directly to the Senior Director, Information Technology, the Senior Cybersecurity Analyst serves as the primary technical and procedural individual, driving the company’s cybersecurity posture forward, and fostering a culture of proactive risk management and compliance awareness.

This is a Calgary-based position with regular working hours from 8:00 am to 5:00 pm local time. Occasional adjustments to working hours may be required to support global operations, compliance audits, or emergent incident response events.

General Responsibilities:

Arctic Wolf Issue Management

• Monitor, triage, and respond to issues identified by Arctic Wolf Managed Detection and Response (MDR) services.
• Create and manage associated tasks in the IT Jira system, ensuring timely tracking and resolution of identified issues.
• Serve as the initial point of contact for emergent issues and escalations from Arctic Wolf.
• Participate in weekly Arctic Wolf update calls, ensuring all findings and recommendations are documented, prioritized, and acted upon.

ISO 27001 / Compliance Platform

• Act as application owner for Circle’s selected Compliance Management Platform, ensuring accurate and up-to-date configuration. 
• Develop, document, and maintain cybersecurity policies and procedures supporting ISO 27001 certification and ongoing compliance. 
  
• Collaborate with internal stakeholders to assign, track, and complete compliance related tasks for implementation and continuous maintenance of the ISO 27001 framework. 
• Support internal and external audit preparation, ensuring evidence is readily available and compliant with ISO standards. 

NIST 800 Cybersecurity Framework (CSF)

• Develop and implement policies, processes, and documentation to advance Circle’s alignment with the NIST 800 CSF.
• Lead the creation, review, and maintenance of Incident Response (IR), Disaster Recovery (DR), and Business Continuity (BC) plans. 
• Coordinate and execute annual testing of IR, DR, and BC plans, including lessons learned reviews and continuous improvement actions.
• Provide clear communication and reporting to leadership on NIST implementation progress, control maturity, and identified risks.
  

General Cybersecurity Operations

• Work collaboratively with the IT Manager to develop and implement technical policies, standards, and procedures to secure Circle’s internal environment.  
• Responsible for the management and monitoring of cybersecurity tools to ensure ongoing protection of critical systems.
  
• Contribute to and maintain security documentation, process diagrams, and response playbooks to ensure consistency and readiness. 
  
• Lead team efforts for proactive risk mitigation, vulnerability management, and security awareness.

Required Skills/Experience:

• 5 - 10 years of professional experience in cybersecurity, information security, or related IT roles. 
• CISSP certification (required) or equivalent professional certification such as CISM, CEH, or GIAC. 
  
• Deep understanding of security monitoring, incident response, and vulnerability management practices.
• Proven experience implementing or managing ISO 27001 and NIST 800 CSF frameworks. 
• Strong background in process documentation, policy development, and audit preparation.
• Hands-on experience with SIEM, EDR, vulnerability management tools, and compliance automation platforms. 
• Strong analytical and problem-solving skills with the ability to evaluate complex security incidents and drive resolution.
• Excellent communication skills—able to explain complex technical issues to non-technical audiences and senior management. 
• Ability to work cross-functionally with IT, Compliance, and Business Units to implement controls and support compliance initiatives. 

Beneficial Skills/Experience:

• Knowledge of Arctic Wolf MDR platform administration and issue triage workflows.
• Experience with Jira, Confluence, and other task/documentation management tools. 
• Exposure to cloud security best practices (AWS, Azure, Google Cloud).
• Proficiency in scripting or automation (PowerShell, Python) for security processes.
• Familiarity with Zero Trust Architecture and data protection frameworks (GDPR, HIPAA).
• Leadership experience including team management or mentoring responsibilities. 

Educational Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related technical field. Equivalent combination of education, experience, and professional certifications may be considered. 

About the Benefits:

• Competitive compensation and vacation
  
• Transportation allowance
• Flexible working arrangements
• Employee Wellness Program
• Professional development and tuition reimbursement program
• Gratifying internal recognition/kudos programs
• Annual salary review – based on company and individual performance
• Fun, inclusive, ego-free environment where diversity and individual thoughts are encouraged and valued

Upon joining Circle CVI, you will be welcomed into a collaborative and supportive company with uncompromising values on quality, innovation, culture, and customer service. Join us in changing the medical technology world and submit your application below!

#LI-Onsite