As a trusted partner in the delivery of clean electricity, BC Hydro is seeking an experienced IT Advisor to lead and provide oversight for cybersecurity compliance sustainment activities within our Technology department.

The successful candidate will be responsible for leading the development, review, and improvement of Technology cybersecurity compliance processes and procedures to align with corporate-level policies, programs, and processes.

1. Reporting to the Technology Cybersecurity Risk and IT Compliance Manager, you will lead and provide oversight for cybersecurity compliance sustainment activities (e.g. NERC CIP) within the Technology KBU.
2. You will lead the development, review, and improvements of Technology cybersecurity compliance processes (e.g. NERC CIP) and procedures to align with corporate-level policies, programs, and processes.
3. Lead the team and develop action plans to improve internal compliance processes to reduce non-compliance risks via continuous improvement.
4. Work closely with Reliability Compliance team, Compliance Program Office, and various internal and external parties to perform compliance incident investigations and mitigation plan development.
5. Participate as Technology Compliance SME on projects or initiatives to evaluate/implement new cybersecurity compliance standards (e.g. NERC CIP).
6. Participate or coordinate response to various internal and external cybersecurity audits when required.
7. Identify the cybersecurity compliance and risk impacts for Technology projects or other corporate initiatives with potential impacts and risk mitigations. Provide security control guidance to the implementation teams to ensure both compliance and security requirements are followed.
8. Lead supply chain cybersecurity risk assessment process and support mitigation actions.

1. University degree or experience in relevant discipline or equivalent combination of education and experience.
2. Ability to obtain security clearance for a Security Sensitive Position classification.
3. A minimum of 7 years of experience in Technology regulatory compliance/audit, with a strong focus in cybersecurity.
4. Knowledge and experience on audit-related activities.
5. Experience on project management and task coordination.
6. Experience on internal control process improvement.
7. Experience on investment planning including developing business cases and facilitating approvals.
8. Experience on assessing cybersecurity risk and implementing security controls.
9. Knowledge or experience in NERC CIP standards and requirements.
10. Knowledge or experience in multiple of these areas: Active Directory, Log management, Strong Authentication, Identity and Access Management (IAM) solutions, Access Management, Access Review.
11. Knowledge of industry standards such as ISO 270001/2, NIST, COBIT etc.
12. Knowledge and experience on incident investigation process.
13. Ability to translate technical risks, controls, vulnerabilities, and issues into clear, actionable business language.
14. Persuasive, proven negotiating capability that can bring competing objectives together in a way that provides the sense of "win-win".
15. Excellent presentation skills including the ability to explain technical matters to a non-technical audience.
16. Strong interpersonal skills and documentation skills. Ability to develop written communications that are persuasive and business-focused.
17. Team player, good time-management and organizational skills and ability to work autonomously in a dynamic environment.
18. Flexibility to adjust quickly to multiple demands, shifting priorities, ambiguity, and rapid change.

We offer a healthy work-life balance, training opportunities, and career progression. We're proud to be ranked as one of B.C.'s Top Employers and one of Canada's Best Diversity Employers.

A minimum of 15 paid vacation days
Flexible work model, depending on your role type
Training and development courses

For more information on the benefits we offer, visit bchydro.com/benefits.

We are safe.
We are here for our customers.
We are one team.
We act with integrity and respect.
We are forward-thinking.

BC Hydro is an equal opportunity employer. We include everyone. We welcome applications from anyone, including members of visible minorities, women, Indigenous peoples, persons with disabilities, persons of minority sexual orientations and gender identities, and others with the skills and knowledge to productively engage with diverse communities.

We are also happy to provide reasonable accommodations throughout the selection process and while working at BC Hydro.