Security Analyst

Do you have what it takes to help keep the lights on for our customers in communities across the province? Then joining the Newfoundland Power team could be part of your next adventure¿

Who We Are

At Newfoundland Power, we're passionate about delivering safe, reliable, and affordable electricity. Our roots in Newfoundland and Labrador go back 140 years. Today, we're part of Fortis Inc., a leader in the regulated gas and electric utility industry in North America. We are proud to employ over 650 talented people who are among the best in the industry.

We are committed to ensuring a supportive, inclusive and diverse culture where everyone feels safe and valued for who they are. Together, we strive to create an environment which is free of discriminatory barriers, where everyone is treated respectfully and equitably so they can thrive and bring their whole selves to work.

Everything we do is guided by our core values: People, Safety, Service, Respect, Teamwork and Innovation. We believe in going above and beyond to serve our customers and giving back to the place we call home is a longstanding tradition held by our employees. This could be the opportunity for you to continue to grow and develop your career.

The Opportunity

As a valued member of our Cybersecurity team, you will play a crucial role in safeguarding our organization's digital assets against unauthorized access. Your responsibilities will include fortifying both cloud and on-premise infrastructure for the company's business and SCADA networks, analyzing metrics and data to identify and address suspicious activities, proactively identifying and mitigating potential risks to prevent breaches, and ensuring that our security systems are consistently updated and maintained. You will be instrumental in enforcing Group Policies to enhance the security posture of Windows devices, while also responsible for the creation of comprehensive documentation and strategic plans for all security-related aspects, including incident response, policies, and standards. Your regular involvement in the planning and execution of varying capital projects will be pivotal in fortifying the security of the company's digital assets.

Responsibilities will include:

• Conducting security assessments through vulnerability testing and risk analysis
• OT (Operational Technology) security and monitoring
• Privileged Access Management and Endpoint Privilege Management
• Vulnerability Management and Patch Management
• Log collection and analysis including SIEM, EDR and UEBA
• Incident Response, including playbooks and tabletop exercises
• Microsoft Windows Active Directory and Group Policy Security
• Policies and Standards
• Cybersecurity training, awareness and running Phishing campaigns
• Threat Hunting, Cybersecurity Risk Management and Phishing Analysis
• Data/Information Management and security

Your qualifications include:

• Bachelor's degree or college diploma in computer science, cybersecurity information technology, or a related field is an asset
• 3-5 years' experience working in technology with at least 2 years' working in a cybersecurity role
• A strong technical computer background
• Leadership skills are necessary for internal and external staff communications
• Self-motivation and accountability
• Common certifications for Security Analyst that would be an asset include
• • CompTIA Security+
• GIAC Security Essentials (GSEC)
• GIAC Security Operations (GSOC)
• Certified Information Systems Security Professional (CISSP)
• Certified Ethical Hacker (CEH)
• Certified Information Systems Auditor (CISA)
• Proficiency in using industry standard security tools. I.e. SIEM, EDR, etc.
• Possesses a broad understanding of cybersecurity principles, practices, and tools. They are proficient in analyzing security data, identifying threats, and implementing security controls
• Knowledge of networking protocols, firewall configuration, and network security concepts
• Understanding of operating systems (Windows, Linux, Unix) and their security features
• Familiarity with encryption techniques and cryptographic protocols
• Experience with incident response procedures and forensic analysis tools

How to Apply

If this sounds like you, please Apply or visit us online at

In support of our DEI commitment and to help us to confirm that we are reaching a wide source of qualified job seekers, we invite all applicants to provide self-identification information on a voluntary basis during the recruitment phase. More information on this process is provided within our job application tool.

We thank all applicants for their interest. Only applicants selected for an interview will be contacted directly. If you require accommodation for any reason during the interview process, please let us know what you need, and it will be kept in confidence. For any questions, please contact