Sr IT Security Specialist

1 month ago

Brossard, Canada Hydro One Full time

Hydro One is proud to be the largest electricity transmission and distribution provider in Ontario, serving nearly 1.4millioncustomers. We have a long history in the industry with our roots dating back over 110 years to 1906. Since then, we have worked to grow and evolve to meet the changing needs of our customers and communities across Ontario. Today, we’re focused on providing exceptional customer service and ensuring we are building safe communities where we live, work and play.

It’s an exciting time to join the team at Hydro One

Specific Accountabilities:

  • Support the Manager, CIP Compliance Sustainment in effectively designing and developing strategies consistent with Hydro One positions related to standards and compliance requirements.
  • Support the Critical Infrastructure Protection (CIP) Senior Manager and/or Delegate in the successful sustainment of compliance to NERC CIP standards.
  • Oversee compliance sustainment and continuous improvement efforts associated with Hydro One’s NERC CIP compliance program. Review NERC CIP related security incidents for systemic problems and opportunities for process improvements.
  • Support the Governance Delegates (GDs), Execution Delegates (EDs) and Process Owners (POs) accountable for the CIP standards/processes within the Hydro One Internal Compliance Program (ICP).
  • Advise the GDs on areas to focus when new changes are introduced to the NERC CIP standards. Coordinate with GDs/POs to help facilitate institutionalizing CIP compliance into Hydro One work processes.
  • Advise GD and ED in creation of non-compliance reports and remediation planning.
  • Provide oversight and ensure that an overall CIP process metrics dashboard is established with input from all stakeholders and is maintained in accordance with the reporting cycles.
  • Advise GDs/EDs in creation of non-compliance reports and remediation planning.
  • Ensure that the CIP Process Architecture is maintained and kept current.
  • Assist CIP GDs/POs with updating high impact or high complexity processes based on specific improvement or remediation efforts.
  • Assist CIP GDs/POs in identifying and rolling out complex key changes in support of specific improvement or remediation efforts.
  • Provide governance support to Process Owners in respect to escalating issues and concerns as well as formalizing support requests to create formalized projects and continuous improvement initiatives.
  • Perform preliminary reviews of Physical Security Plans, Cyber Security Policies and Technical Feasibility Exceptions related to CIP Standards and other related policies on an annual basis and report out to Manager.
  • Provide advice and deliver training and other communications to internal stakeholders, corporate and operations staff to assist in their understanding of security compliance processes. This may include websites, toolkits, seminars and other employee engagement tools.
  • Collaborate with Reliability Standards Readiness and Strategy to provide direction to CIP GDs/POs. Support Reliability Compliance Assurance’s evidence audit operations and actioning of audit results
  • Enforce compliance with IT Security Policies and Standards across the enterprise using the compliance tracking framework.
  • Coordinate compliance enforcement activities with outsource service providers.
  • Develop and present management compliance reports to various stakeholders.
  • Engage and manage third parties to perform compliance exercises as necessary.
  • Participate in development and maintenance of IT Security Policies and Standards.
  • Manage compliance remediation activities.
  • Manage and motivate staff and contractors in projects.

Selection Criteria:

  • The candidate is expected to have demonstrated capability in the following areas:
  • University degree or related studies, or equivalent experience.
  • 10+ years experience in IT Security.
  • 5+ years relevant experience in a senior Information Security or IT Security role.
  • Demonstrated understanding of relevant standards and regulatory requirements (NERC CIP, Bill C-198, PCI, PIPEDA, etc.).
  • Relevant experience in IT security governance with the capacity to enforce standards and liaise with stakeholders.
  • Strong organizational and communication skills.
  • Ability to lead and work in a multi-team environment and drive completion of deliverables.
  • Ability to assess enterprise risk with proper recommendation on mitigation.
  • Proven ability to meet deadlines and manage priorities.
  • Good communications skills with the ability to work/liaise effectively with business, IT stakeholders, and vendor representatives.
  • Relevant experience in utility sector is preferred.
  • Ability to apply discretion when dealing with confidential information.


At Hydro One we understand that the success and strength of our business rests with our people. When we develop their skills, we are investing in both their success and ours. To secure the best talent, we seek to create a workforce that reflects the diverse populations of the communities where we live and work and to create a culture based on safety, innovation and inclusiveness.

We are honoured to be recognized by Forbes in its list of Canada’s Best Employers for 2024.

Thank you for considering a career with Hydro One, we welcome applications from all qualified candidates. If you are having difficulty using our online application system and you need an accommodation due to a disability, please email careers@hydroone.com. Hydro One will provide reasonable accommodation for qualified individuals with disabilities in the job application process.

Please note this email is only for accommodation requests. Resumes sent to this email address will not be considered.

Deadline: May 29, 2024

In the event you are experiencing difficulties applying to this job please consult our help page here .

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr

  • Sr. Security Engineer

    1 week ago

    Brossard, Quebec, Canada The Kraft Heinz Company Full time

    Sr. Security Engineer - Cryptography and Access Management The Kraft Heinz Company The Kraft Heinz Company provides high quality, great taste and nutrition for all eating occasions whether at home, in restaurants or on the go. View company page The Information Security team is committed to delivering innovative cybersecurity solutions and services to the...

  • Sr. Consultant, Information Security

    1 month ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Consultant, Information Security

    1 month ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Consultant, Information Security

    1 month ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Security Engineer

    3 weeks ago

    Brossard, Canada The Kraft Heinz Company Full time

    Sr. Security Engineer - Cryptography and Access Management The Kraft Heinz Company The Kraft Heinz Company provides high quality, great taste and nutrition for all eating occasions whether at home, in restaurants or on the go. View company page The Information Security team is committed to delivering innovative cybersecurity solutions and services to the...

  • Sr. Security Engineer

    3 weeks ago

    Brossard, Canada The Kraft Heinz Company Full time

    Sr. Security Engineer - Cryptography and Access Management The Kraft Heinz Company The Kraft Heinz Company provides high quality, great taste and nutrition for all eating occasions whether at home, in restaurants or on the go. View company page The Information Security team is committed to delivering innovative cybersecurity solutions and services to the...

  • Sr. Analyst, Information Security

    2 months ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Analyst, Information Security

    2 months ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Analyst, Information Security

    2 months ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Analyst, Information Security

    4 weeks ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • Sr. Analyst, Information Security

    4 weeks ago

    Brossard, Canada CIBC Full time

    CIBC Bank on your terms with CIBC – whether it’s in person, over the phone or online, CIBC has you covered. View company page We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.At CIBC, we embrace your strengths and your ambitions, so...

  • IT Specialist, Security Analyst

    4 weeks ago

    Brossard, Canada Bitfarms Full time

    Bitfarms is a global vertically integrated Bitcoin mining company that operates one of the largest cryptocurrency mining operations in North America. As the only publicly traded pure-play Bitcoin mining company audited by a Big Four audit firm, we are a global operation powered by entrepreneurial leaders and the most novel technology available. Spanning two...

  • Product Engineer, Cloud Security SaaS, Philippines

    1 month ago

    Brossard, Canada Horangi Cyber Security Full time

    Product Engineer, Cloud Security SaaS, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page We are looking for...

  • Product Engineer, Cloud Security SaaS, Philippines

    1 month ago

    Brossard, Canada Horangi Cyber Security Full time

    Product Engineer, Cloud Security SaaS, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page We are looking for...

  • Product Engineer, Cloud Security SaaS, Philippines

    1 month ago

    Brossard, Canada Horangi Cyber Security Full time

    Product Engineer, Cloud Security SaaS, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page We are looking for...

  • Product Engineer, Cloud Security SaaS, Philippines

    4 weeks ago

    Brossard, Canada Horangi Cyber Security Full time

    Product Engineer, Cloud Security SaaS, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page We are looking for...

  • Product Engineer, Cloud Security SaaS, Philippines

    4 weeks ago

    Brossard, Canada Horangi Cyber Security Full time

    Product Engineer, Cloud Security SaaS, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page We are looking for...

  • Sr. Application Security Researcher in Test

    1 week ago

    Brossard, Quebec, Canada OpenText Full time

    Sr. Application Security Researcher in Test (Dynamic) OpenText OpenText offers cloud-native solutions in an integrated and flexible Information Management platform to enable intelligent, connected and secure organizations. View company page OPENTEXTOpenText is a global leader in information management, where innovation, creativity, and collaboration are...

  • Cloud Security Research Engineer, Philippines

    2 months ago

    Brossard, Canada Horangi Cyber Security Full time

    Cloud Security Research Engineer, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page Horangi – A Bitdefender...

  • Cloud Security Research Engineer, Philippines

    2 months ago

    Brossard, Canada Horangi Cyber Security Full time

    Cloud Security Research Engineer, Philippines Horangi Cyber Security Leading cyber security firm in Asia, offering advanced cyber security products and services, including consulting. We specialize in equipping businesses with robust security solutions and expert guidance to navigate the digital landscape... View company page Horangi – A Bitdefender...