Cyber Security Business Analyst

Work options: Hybrid

• 6-Months Contract (with the possibility of extension)
• Hybrid: In-Office (Monday, Tuesday & Thursday), Remote (Wednesday & Friday)
• Location: 200, st Street SW Calgary, AB T2P 3L8 or st NW Edmonton, AB T5J 0H3

At Enbridge, our goal is to be the first-choice energy delivery company in North America and beyond—for customers, communities, investors, regulators and policymakers, and employees.

To meet that goal, Enbridge is partnering with Raise—a leading recruitment firm that specializes in IT, Technical, and Engineering staffing.

Together, Raise and Enbridge are building teams that are rising to meet the growing energy needs of North America. If you're looking for a challenging role that will make the most of your skills while allowing you to make an impact, this is it.

Enbridge is hiring a Cyber Security Business Analyst right now—when you apply, Raise will review your application within 48 hours and contact qualified applicants for interviews.

About the Role:

• The Cyber Business Analyst will serve as the primary liaison between cybersecurity technical teams (e.g., SOC, detection and design, and technology and tools teams) and USUI application teams. This role focuses on the end-to-end enablement of application logging capability for all in-scope USUI applications. The Cyber Business Analyst will support the detection and design team in validating effective security monitoring and assist the SOC with incident response for USUI applications.
• Additionally, the Cyber Business Analyst will collaborate with the Project Manager to ensure the successful implementation of Network Access Controls (NAC) and Silent Defense continuous threat detection (CTD) sensors for the USUI IT and OT network.

Key Responsibilities:

• USUI Application Security Logging Enablement:
• Act as the primary liaison for application logging enablement, translating application logging requirements for the USUI applications team.
• Gather, validate, and document security monitoring requirements for USUI applications as per TIS-Security-12, and develop guidance using TIS-Security-337.
• Develop and maintain an applications security logging playbook to ensure structured engagement with USUI applications teams.
• Maintain a solid understanding of the cybersecurity posture and attributes of in-scope USUI applications.
• Collaborate with the detection and design team to define, test, and validate monitoring and detection rules.
• Cyber Visibility and Incident Response Support:
• Develop a cyber visibility metric and dashboard to communicate cybersecurity endpoint protection coverage and security monitoring visibility.
• Support the SOC with incident response by facilitating accelerated response from business owners and applications teams.
• Implementation of NAC and Silent Defense CTD Sensors:
• Coordinate the deployment of Network Access Control (NAC) for all acquired USUI IT switches.
• Coordinate the deployment of Silent Defense sensors to applicable OT sites.
• Ancillary Duties:
• Support the Cyber Project Manager with other workstream tasks as needed.
• Take direction from the USUI Cybersecurity Workstream Lead for successful delivery of accountabilities.

Scope:

• Applications: USUI applications with L1 and L2 business criticality and all external-facing applications.
• Assets: USUI IT and OT infrastructure and network assets.
• Security: Ensure adequate security monitoring visibility for in-scope USUI applications to improve cybersecurity incident response efficiency and effectiveness.

Qualifications:

• Business Analysis and Cyber Skills:
• Strong understanding of business analysis and cybersecurity monitoring processes, including NIST CSF security detection and response controls.
• Experience working closely with the SOC on security monitoring initiatives or as a SOC analyst.
• Strong understanding of NIST SP 800-92, Guide to Computer Security Log Management.
• Proficiency in Windows and Linux operating systems logs and experience with application logs.
• Familiarity with cybersecurity monitoring tools like Crowdstrike, Tenable Nessus, Trellix Application Control, etc.
• Understanding of cybersecurity risk management processes and mitigation strategies.
• Access and Identity Management:
• Knowledge of principles of least privilege and role-based access control.
• Understanding of authentication methods, including Kerberos, NTLM, and modern protocols.
• Threat Detection:
• Understanding of common attack vectors and threats specific to Active Directory.
• Compliance and Legal Requirements:
• Awareness of legal and regulatory requirements affecting data security.
• Soft Skills:
• Excellent communication skills for explaining technical issues to non-technical stakeholders.
• Self-starter with minimal supervision required.
• Strong analytical and problem-solving skills.
• Team player with good interpersonal skills.

Please note: Successful applicants will be employees of Raise, working at Enbridge facilities with both Enbridge and contract employees.

Applying with Raise

Raise is an established IT and engineering hiring firm with over 60 years' experience connecting talented candidates with meaningful work. When you apply, you'll get more than just a chance at a great job—you'll become part of a vast network of employers that are always changing.

We value diversity and inclusion and encourage all qualified people to apply. If we can make this easier through accommodation in the recruitment process, please contact us at or