Cybersecurity Planning Advisor

Source: BC Hydro
Job Title: Cybersecurity Planning Advisor

Powered by water... and by people like you. Providing clean electricity to 4 million customers takes a diverse workforce and that's where you come in. We need your talent to help us build major projects to meet growing demand. To help our customers find clean energy solutions for their homes and businesses and to be ready to respond during storms and outages to keep our system reliable.

Working for BC Hydro is meaningful. And now, the stakes have been raised as we work towards a solution to climate change while safely providing clean, affordable electricity to our customers.

We offer a healthy work life balance, training opportunities and career progression. We're proud to be ranked as one of B.C.'s Top Employers and one of Canada's Best Diversity Employers. Join us as we build an even cleaner B.C.

JOB DESCRIPTION

The Senior Cybersecurity Technical Specialist works under Cybersecurity Planning to provide cybersecurity subject matter expertise across the enterprise playing a key role in execution of the implementation plan, as established in accordance with the Enterprise Architecture vision and roadmap, incorporating input from Cybersecurity Operations for sound, practical solution execution.

This role drives technical cybersecurity guidance and direction on projects ensuring plans and deployments align with guidelines, standards, policies, and practices.

Duties:

1. Provides cybersecurity technical oversight to projects and the enterprise in conjunction with the Enterprise Cybersecurity Architect, solution architects and Cybersecurity Operations.
2. Participates in the detailed technical cybersecurity design on projects, analyzes solution design and architecture, and drives alignment with enterprise architecture vision, business plans, reference architecture, policies, regulatory compliance, operations, standards and industry practices.
3. Works within Cybersecurity Planning on strategic direction of projects and initiatives.
4. Represents BC Hydro cybersecurity interests on projects as it pertains to business requirements, constraints and standards; cybersecurity standards and best practices; operational requirements; and compliance requirements.
5. Participates in assessment and prioritization of cybersecurity risks and threats to be addressed through the implementation plan or operations.
6. Drives remediation of gaps in cybersecurity typically identified through assessments or by operational teams.
7. Collaborates closely with the Cybersecurity Planner to strategize and create initiatives and plans to address cybersecurity needs.
8. Collaborates closely with the Enterprise Cybersecurity Architect providing input into and executing on the vision and roadmap established by Enterprise Architecture.
9. Collaborates closely with the Cybersecurity Operations team to incorporate technical configuration details into solution implementation.
10. Collaborates with Cybersecurity Planning, Enterprise Architecture, Cybersecurity Operations, project teams, business units, contractors, suppliers and service providers to support cybersecurity projects including research and discovery; project initiation; engaging service providers and business units; requirements gathering; performing resourcing and cost estimations; creating an implementation strategy; providing input into business justifications.
11. Analyzes project solutions to determine how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.
12. Identify gaps in solution architectures and recommend alternatives.
13. Participates in projects including requirements definition, work effort estimations, budgeting, solution design, technical guidance, test plan development; reviews and approves project documentation.
14. Liaises with business units to maintain a pulse on cybersecurity.
15. Keeps abreast of new technologies, industry trends and developments (IT and OT).
16. Perform other related duties as required.

Qualifications:

1. Bachelor's degree in Computer Science, Engineering or a combination of education and experience.
2. Minimum seven years of work experience in a large enterprise designing and implementing cybersecurity technical solutions and performing cybersecurity operational duties. Our ideal candidate has a breadth of knowledge and experience in multiple technologies; with extensive experience in two or more technology areas (such as cloud, data centre, enterprise applications, identity and access management, security monitoring and tools, firewalls, systems and computing, networking, collaboration tools).
3. The ideal candidate has significant experience working in cybersecurity architecture and planning roles.
4. Experience in identity and access management is critical for this role.
5. CISSP certification or other relevant cybersecurity certifications or significant industry experience.
6. Experience advising on a range of security-related issues (e.g. establishing system boundaries; assessing the severity of weaknesses and deficiencies in the system; plans of action and milestones; risk mitigation approaches; security alerts; and potential adverse effects of identified vulnerabilities).
7. Experience optimizing systems to meet enterprise performance requirements.
8. Experience applying secure system design tools, methods and techniques.
9. Experience applying network security architecture concepts including topology, protocols, components and principles to apply defense-in-depth to solutions.
10. Experience applying cybersecurity and privacy principles to organizational requirements.
11. Strong cybersecurity knowledge, technical ability, analytical and problem solving skills.
12. Strong communication, conflict resolution and collaboration skills.
13. Proficiency with Microsoft Word, Excel, PowerPoint, Visio, and SharePoint.
14. Experience with OT and ICS (supporting electric utilities) is considered an asset.
15. Experience with NERC CIP compliance an asset.

ADDITIONAL INFORMATION

• A minimum of 15 paid vacation days
• Flexible work model, depending on your role type
• Training and development courses

For more information on the benefits we offer, visit bchydro.com/benefits.

Don't forget to update your Candidate Profile with your current resume and copies of your certifications. If applicable, include your Trades Qualification. This will ensure we have all the necessary information to assess your application without any delays.

We're always looking for exceptional people to bring new ideas, fresh thinking and the motivation to help shape the electricity system in B.C. It's an exciting time to be a part of our team as we invest in our system and prepare to meet the challenges of tomorrow.

Our values guide our work. Want to join us?

We are safe.
We are here for our customers.
We are one team.
We act with integrity and respect.
We are forward thinking.

BC Hydro is an equal opportunity employer. We include everyone. We welcome applications from anyone, including members of visible minorities, women, Indigenous peoples, persons with disabilities, persons of minority sexual orientations and gender identities, and others with the skills and knowledge to productively engage with diverse communities.

We are also happy to provide reasonable accommodations throughout the selection process and while working at BC Hydro. If you require support applying online because you are a person with a disability, please contact us at Recruitmenthelp@BCHydro.com.

Our four role types identify the degree of flexibility an employee could have to work from home based on the type of work they do. The flexibility for an individual job is up to the manager for each position and the operational requirements. Employees also have the right to work full-time from the office if they prefer. All of our roles require at least some in-person time.

IBEW/Field - No option to work from home
Resident - Works primarily (4+ days per week) in the office.
Hybrid - May be able to work from home up to 3 days per week.
Remote - Works from home 4+ days per week.

Response Information

To apply for this position, please click the appropriate "Apply" button (or follow the application instructions listed in the Job Description above).