Cybersecurity Advisor supporting Finning’s global information security program through risk assessments and compliance activities. Collaborating with teams to address security requirements and protect information assets.
Responsibilities
Support cybersecurity risk assessments for applications, infrastructure, and business initiatives.
Participate in solution and design reviews by providing security input aligned with Finning security standards.
Identify control gaps and document risk observations with recommended remediation options.
Assist with threat modeling and security review activities using established templates and processes.
Support compliance activities aligned to frameworks such as ISO 27001, NIST, and internal Finning security standards.
Contribute to the maintenance of security policies, standards, and guidance documentation.
Engage with technology and business teams as a security advisor on assigned initiatives.
Contribute ideas to improve advisory processes, assessment approaches, and documentation.
Requirements
4–6 years of experience in cybersecurity, information security, IT risk, or related IT roles.
Experience supporting security risk assessments, control reviews, or compliance activities.
Working knowledge of common security frameworks (e.g., ISO 27001, NIST, CIS).
General understanding of enterprise technologies (applications, cloud, identity, infrastructure).
Ability to document risks, controls, and recommendations clearly using defined templates.
Experience collaborating with cross-functional technology and business teams.
Post-secondary education in Information Security, IT, Computer Science, or equivalent experience.
Benefits
Great people and place to work with a hybrid work opportunity
Career advancement and training opportunities
Pension and employee stock purchase plans with company contributions
Extensive health benefits including group medical and dental benefits, and short-term and long-term disability benefits
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.