Participate in Business and IT initiated projects. Ensure that security requirements for the projects are defined and captured. Catalogue all security risks within projects, including those created within the proposed solutions. Utilize ISD’s 5 Stage Project Methodology when delivering security guidance and services. Manage IT Security sponsored projects. Manage or co-manage IT Security Operations. Participate in the ongoing development of Hydro One Security Policy, Procedures and Guidelines. The incumbent must possess a strong client service orientation and a desire to help the business meet their objectives.
Support the Manager, Cybersecurity Governance and Consulting in effectively designing and developing strategies consistent with Hydro One positions related to standards and compliance requirements.
Participate in Business and IT initiated projects; Attend project reviews as required, including assessment of Project Orders, RFP’s, Business Cases and Service Requirement Documents (SRD’s)
Ensure security requirements for the project are defined and captured.
Provide security architecture expertise to the project.
Catalogue all security risks with the project, including those created within the proposed solution and those generated through project activities.
Review and recommend approval for proposed technology solution.
Review and recommend approval for sustainment adjustments as a result of remedial actions for risk reduction.
Remain operationally current for all key and critical Hydro One IT systems and networks to ensure investigations are necessary, core operational competencies and skills will improve and ensure that the full range of potential root causes are explored without putting at risk the continued operation of the system or network.
The position will be responsible for the development, maintenance and communication of the Enterprise Cybersecurity policies, standards and guidelines.
The candidate will also be expected to be an expert in Information Technology (IT) security, offering recommendations on projects to ensure compliance with standards, policy, and security industry practices. In addition, the candidate must be able to consult with stakeholders in functional and technical arenas in support of Cybersecurity priorities.
The individual should have strong communication skills and be willing to take initiative in a dynamic, collaborative environment.
Provide governance support to Process Owners in respect to escalating issues and concerns as well as formalizing support requests to create formalized projects and continuous improvement initiatives.
The candidate is expected to have demonstrated capability in the following areas:
University degree or related studies, or equivalent experience.
Preference will be given to those with a CISSP, CISA, CISM certifications
10+ years experience in IT Security.
5+ years relevant experience in a senior Information Security Consulting or Advisory role
Demonstrated understanding of relevant standards and regulatory requirements (NIST Cybersecurity Framework, NERC CIP, Bill C-198, PCI, PIPEDA, etc.).
Relevant experience in IT security governance with the capacity to enforce standards and liaise with stakeholders.
Relevant experience in strategic business planning and management.
Strong organizational and communication skills.
Strategic business thinking – ability to apply technical knowledge and experience to make management decisions for achieving business objectives.
Ability to lead and work in a multi-team environment and drive completion of deliverables.
Ability to assess enterprise risk with proper recommendation on mitigation.
Proven ability to meet deadlines and manage priorities.
Good communications skills with the ability to work/liaise effectively with business, IT stakeholders, and vendor representatives.
Relevant experience in utility sector is preferred.
Ability to apply discretion when dealing with confidential information.
If you share our passion for safety, our customer service focus, and are ready to play a lead role in building a bright future, we would love to hear from you!
Thank you for considering this opportunity and we welcome applications from all qualified candidates. If you are being considered for an interview or other assessment one of our Recruitment Consultants will be in touch. Furthermore, if you are being considered for an interview and require special accommodations please let us know. Finally, short-listed candidates will be asked to pass a reliability check (which could include criminal background check, driver’s license abstract, education verification, etc.) prior being offered a job at Hydro One.
Deadline: November 19, 2018
In the event you are experiencing difficulties applying to this job please consult our help page here.