Compliance Specialist assessing cybersecurity compliance for TC Energy. Collaborating with teams on security standards and regulatory requirements.
About the role
- Application Security Analyst focusing on embedding security in software development lifecycle at Nutrien. The role involves collaboration with development teams and managing vulnerabilities.
Responsibilities
- Develop rapport with others by demonstrating an understanding of their concerns, needs, and issues, and build an internal network of relationships that can provide advice and support.
- Consistently deliver quality client services.
- Monitor progress, manage risk, and ensure key stakeholders are informed about progress and expected outcomes.
- Stay abreast of current business and industry trends relevant to global development teams, business operations, and cyber security.
- Assist engagement with DevOps teams in evaluating vulnerability management tools across people, process, and technology.
- Work with engagement teams to own distinct portions of vulnerability management solutions tailored to client environments.
- Perform and control targeted vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls.
Requirements
- It is preferred that you have, or are working on, a bachelor’s degree or certificate in Computer Science, Information Systems, Engineering, Business, or a related field.
- An understanding of the vulnerability management lifecycle and governance.
- Familiarity with security and risk standards including ISO 27001-2, ISO 31000, PCI DSS, NIST, ITIL, COBIT, CVSSv4, and MITRE ATT&CK.
- Hands-on operational experience with vulnerability management tools (e.g., Qualys, Tenable, Snyk, trufflehog pro).
- Understanding of various operating systems (Windows, Unix, MacOS); cloud concepts (secure build images, ephemeral workloads, cloud patching); and networking fundamentals.
- A full understanding of full stack application development and mobile development on iOS and Android.
- Deep expertise in writing and running queries to prepare metrics reports and dashboards.
- Good understanding of scanning tools for APIs.
- Ability to report issues clearly and succinctly and adapt communication styles to demonstrate vulnerability severity to technical stakeholders and leadership.
- Knowledge of general cybersecurity concepts and methods including secure configuration management, data protection and privacy, security monitoring, incident response, governance, risk and compliance, patch management, and enterprise security strategies and architecture.
- Strong written and verbal communication skills with the ability to interact with senior management and technical SMEs.
- Ability to examine issues both strategically and analytically.
- Experience working in cloud and container environments.
- Penetration testing experience.
- Application security experience.
- Automation and scripting experience (e.g., Python, Bash).
- Enterprise application development experience.
- Financial services sector regulatory experience.
- Attack Surface Management experience.
Benefits
- Nutrien is an equal opportunity employer.
- We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.
- Background check required.
- Substance test may be required.
- Several employment initiatives and events including recruitment fraud alert and application tracking.
- Opportunities for career growth.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Cybersecurity Compliance Analyst at PCL Constructors Inc. developing and supporting cybersecurity compliance initiatives and governance activities in Edmonton.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Cybersecurity Analyst monitoring security systems and mitigating threats at Vosyn, a pioneering AI firm. Engaging in hands - on experience and collaboration with senior management.
LP
InfoSec Analyst
LinkedIn Recruiter Post
InfoSec Analyst contract in Toronto (Hybrid). 8 years experience with ServiceNow, Splunk, risk frameworks, and vulnerability management required.
Senior Security Analyst at McCarthy Tétrault in Canada focusing on security and IT compliance initiatives. Collaborating with teams on incident response and vulnerability management in a hybrid workspace.
Security Analyst providing technical client support in Managed Security Services at CDW. Monitoring security alerts and incidents while fostering trust and loyalty with clients.
LP
CyberSecurity Coordinator
LinkedIn Recruiter Post
Cybersecurity Coordinator for a top 5 bank. 6 - month contract, 2 days/week on - site in GTA, requires 5 - 8 years technical/security experience.
LP
Security Specialist
LinkedIn Recruiter Post
Temporary Security Specialist supporting Microsoft security assessment for public sector client. Hybrid role focusing on security posture improvement and implementation planning.
LP
Junior Cybersecurity Analyst
LinkedIn Recruiter Post
Junior Cybersecurity Analyst role in Toronto, working with senior leadership in a growing Cyber division. Requires understanding of cyber principles, diligent personality, and some complex environment experience.