Senior IT Advisor (Cybersecurity Planning Advisor)

Senior IT Advisor (Cybersecurity Planning Advisor)

BC Hydro

Job Overview

Powered by water... and by people like you. Providing clean electricity to 4 million customers takes a diverse workforce and that's where you come in. We need your talent to help us build major projects to meet growing demand. Working for BC Hydro is meaningful as we work towards a solution to climate change while safely providing clean, affordable electricity to our customers.

We offer a healthy work-life balance, training opportunities, and career progression. Join us as we build an even cleaner B.C.

JOB DESCRIPTION

Duties:

1. Provides cybersecurity technical oversight to projects and the enterprise in conjunction with the Enterprise Cybersecurity Architect, solution architects, and Cybersecurity Operations.
2. Participates in the detailed technical cybersecurity design on projects, analyzes solution design and architecture, and drives alignment with enterprise architecture vision, business plans, reference architecture, policies, regulatory compliance, operations, standards, and industry practices.
3. Works within Cybersecurity Planning on the strategic direction of projects and initiatives.
4. Represents BC Hydro cybersecurity interests on projects regarding business requirements, constraints and standards; cybersecurity standards and best practices; operational requirements; and compliance requirements.
5. Participates in assessment and prioritization of cybersecurity risks and threats to be addressed through the implementation plan or operations.
6. Drives remediation of gaps in cybersecurity typically identified through assessments or by operational teams.
7. Collaborates closely with the Cybersecurity Planner to strategize and create initiatives and plans to address cybersecurity needs.
8. Collaborates closely with the Enterprise Cybersecurity Architect providing input into and executing on the vision and roadmap established by Enterprise Architecture.
9. Collaborates closely with the Cybersecurity Operations team to incorporate technical configuration details into solution implementation.
10. Collaborates with Cybersecurity Planning, Enterprise Architecture, Cybersecurity Operations, project teams, business units, contractors, suppliers, and service providers to support cybersecurity projects including research and discovery; project initiation; engaging service providers and business units; requirements gathering; performing resourcing and cost estimations; creating an implementation strategy; providing input into business justifications.
11. Analyzes project solutions to determine how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.
12. Identifies gaps in solution architectures and recommends alternatives.
13. Participates in projects including requirements definition, work effort estimations, budgeting, solution design, technical guidance, test plan development; reviews and approves project documentation.
14. Liaises with business units to maintain a pulse on cybersecurity.
15. Keeps abreast of new technologies, industry trends, and developments (IT and OT).
16. Performs other related duties as required.

Qualifications:

1. Bachelor's degree in Computer Science, Engineering, or a combination of education and experience.
2. Minimum seven years of work experience in a large enterprise designing and implementing cybersecurity technical solutions and performing cybersecurity operational duties.
3. CISSP certification or other relevant cybersecurity certifications or significant industry experience.
4. Experience advising on a range of security-related issues (e.g. establishing system boundaries; assessing the severity of weaknesses and deficiencies in the system; risk mitigation approaches; security alerts; and potential adverse effects of identified vulnerabilities).
5. Experience optimizing systems to meet enterprise performance requirements.
6. Experience applying secure system design tools, methods, and techniques.
7. Experience applying network security architecture concepts including topology, protocols, components, and principles to apply defense-in-depth to solutions.
8. Experience applying cybersecurity and privacy principles to organizational requirements.
9. Strong cybersecurity knowledge, technical ability, analytical and problem-solving skills.
10. Strong communication, conflict resolution, and collaboration skills.
11. Proficiency with Microsoft Word, Excel, PowerPoint, Visio, and SharePoint.
12. Experience with OT and ICS (supporting electric utilities) is considered an asset.
13. Experience with NERC CIP compliance is an asset.

ADDITIONAL INFORMATION

- A minimum of 15 paid vacation days

- Flexible work model, depending on your role type

- Training and development courses

For more information on the benefits we offer, visit bchydro.com/benefits.

We're always looking for exceptional people to bring new ideas and motivation to help shape the electricity system in B.C. It's an exciting time to be a part of our team.

Our values guide our work:

1. We are safe.
2. We are here for our customers.
3. We are one team.
4. We act with integrity and respect.
5. We are forward-thinking.

BC Hydro is an equal opportunity employer. We welcome applications from anyone, including members of visible minorities, women, Indigenous peoples, persons with disabilities, and others with the skills and knowledge to engage with diverse communities.

We are also happy to provide reasonable accommodations throughout the selection process. If you require support applying online because you are a person with a disability, please contact us at Recruitmenthelp@BCHydro.com.

Our four role types identify the degree of flexibility an employee could have to work from home based on the type of work they do. Employees have the right to work full-time from the office if they prefer. All of our roles require at least some in-person time.

To apply for this position, please click the appropriate "Apply" button. If more than one Apply button appears, please select the option you prefer.