Cyber Security Specialist - Pickering, Canada - Ontario Power Generation

Ontario Power Generation

Verified Company

Pickering, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Location:

Pickering, ON, CA, L1W 3J2
Req ID:44983
Status: Regular Full time
Working Conditions:Hybrid Work Environment (3 days in office)
Education Level:4 years of University degree in an appropriate field such as Computer Science plus 1 year of further concentrated study in Cybersecurity programs

Location:

Pickering, ON
Shifts(s): Days
Travel:25%
Deadline to Apply: December 15, 2023.
Electrify your career and help build a brighter tomorrow.

Every generation has a challenge that defines them. At OPG, we are calling on all innovators, disruptors, thought leaders and changemakers. Join us to electrify life in one generation and build a sustainable future powered by our electricity, our ideas, and our people. Join OPG and make history.
Whether you work in the skilled trades or are a business professional, a career at OPG is an opportunity to electrify your life on and off the job.
ACCOMMODATIONS
_

NEW CAMPUS:
This position is moving to OPG

Corporate Headquarters:

_:

In Summer 2025, OPG will officially welcome employees to our new Corporate Headquarters located at 1908 Colonel Sam Drive, Oshawa, Ontario. This new space will enable teamwork, collaboration and innovation that will help us to achieve our mission to electrify life in one generation_

.

JOB OVERVIEW

Ontario Power Generation (OPG) is looking for dynamic, strategic, and resultsdriven professional to join our team in the role of

-
Cyber Security Specialist.

This is an exciting opportunity to work in an environment where you will contribute to OPG's public outreach, engagement, and education efforts as part of the company's commitment to growing its social license.
KEY ACCOUNTABILITIES
Utilize Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR) and other tools to track and investigate threats within the Ontario Power Generation (OPG) information technology and systems environment in accordance with Corporate requirements and legal statutes.
Drive remediation of vulnerabilities across the network by working with internal/external teams and system owners to mitigate based on a riskbased approach, that could require the business to upgrade or disable features. Provide system owners with accurate action plans and follow up on implementation.
Work in collaboration with multiple teams across the organization to optimize procedures and processes based on events and incidents to ensure continuous improvement in improving detection and response. Keep up to date with assets, configurations, and design of the environment.
Create reports for key metrics and deliverables for Cybersecurity Operations and present to senior management, as assigned. Identify opportunities for improvement and work with stakeholders on implementation.
Maintain an in depth understanding of Threat Assessments, Risk Management, and Incident Response.
Conduct studies, identify emerging threats, tactics, and procedures, and collaborate with internal and external teams to share trends and provide actionable threat intelligence.
Identify and support the development of processes and procedures to improve monitoring, detection, and response to threats.
Provide input to and maintain compliance to policies, standards, and procedures. Work with other team members to provide up to date information to stakeholders.
Support or lead incident response lifecycle. Work with internal/external Incident Response leads, and advise on decisions during or after the incident, ensuring root cause analysis (RCA) and lessons learned are tracked.
Conduct quarterly Firewall rule reviews and identify misconfigurations, insecure protocols, and overly permissive rules. Work with the network team and business owners to evaluate impact of remediation and mitigate risks.
Support Cybersecurity Office in audits and compliance reporting. Such involves performing procedures for critical controls in collaboration with system owners to ensure regulatory compliance.
Collaborate with and provide advice to Cybersecurity team on best practices and assist with awareness of Cybersecurity from a regulatory and industry perspective. Attend workshops with industry peers and exchange information on emerging technologies and controls.
Other Duties as Required.

EDUCATION

4 years of University in an appropriate field such as computer science plus 1 year of further concentrated study in cybersecurity programs.

QUALIFICATIONS
-
A period of over 6 years and up to and including 8 years is considered necessary to gain this experience.

Hands on experience or knowledge and understanding of NERC CIP requirements or equivalent standards would be an asset.
Requires an advanced knowledge of computer sciences and cybersecurity, including indepth understanding of security best practices, risks and technologies, and the solutions to address those risks.
Requires a good knowledge of communications, bot