Find More Than 10K+
United Kingdom Jobs

47004 - Toronto - Regular - Ongoing

Safety Comes First is a core value at Hydro One, and we remain committed to taking every reasonable precaution to ensure a respectful, safe and healthy working environment. Further to this commitment, we have adopted a COVID-19 Vaccination Policy to protect the health of our employees from the hazard of COVID-19. New employees will be required to declare their vaccination status to Hydro One. Employees who do not provide proof of vaccination status may not enter any 3rd party locations that require full vaccination (e.g. customer properties).

Hydro One is proud to be the largest electricity transmission and distribution provider in Ontario, serving nearly 1.5 million customers. We have a long history in the industry with our roots dating back over 110 years to 1906. Since then, we have worked to grow and evolve to meet the changing needs of our customers and communities across Ontario. Today, we’re focused on providing exceptional customer service and ensuring we are building safe communities where we live, work and play.

It’s an exciting time to join the team at Hydro One!

*NOTE* Hydro One introduced a Hybrid Work Pilot Project in 2022 for most office-based roles. Employees work in-office/on-site two days a week and remotely from home for three days a week. Hydro One is adding refreshed workspaces and technology to support these changes. Join us as we ‘trial & learn’ a new modern way of working and be a key driver of future state!

In office but with intention – a time for team and trust building, collaboration, and socialization. Please reach out to us to learn more!

The IT Security Specialist will work within the Cybersecurity Governance, Risk and Compliance (GRC) team to govern, protect, and secure the reliable operation of critical infrastructure and protection of sensitive information at Hydro One Networks.

Primary duties can include:

• Supporting the efforts of Cybersecurity Projects
• Supporting the efforts of Cybersecurity metrics collections and dashboard reporting.
• Participate in overall GRC activities.
• Perform Security Administration and coordinate intake requests.
• Non-compliance and remediation action plan tracking and reporting.
• Gather and communicate cybersecurity articles/news/feeds.
• Assist with Cybersecurity Policy & Standards Development activities.
• Assist with developing and documenting efficiencies in processes.

General Accountabilities:

• Support Cybersecurity GRC in building out core capabilities and processes in alignment with the strategy.

• Participate in Business, IT, OT, and Cybersecurity initiated projects. Ensure that GRC requirements for the projects are defined and captured as required.

• Review cyber risks and remediation action plans in risk register across organization

• Support Cybersecurity GRC efforts

• Participate in the ongoing development of Hydro One Security Policy, Procedures and Guidelines.

• The incumbent must possess a strong client service orientation, attention to detail and a desire to help the business meet their objectives.

• Assist management & senior cybersecurity specialists with overall GRC type activities.

Specific Accountabilities:

• Support Cybersecurity GRC in building out processes to mature and align with department and overall strategy.

• Attend project reviews as required; ensure security requirements for the project are defined and captured.

• Assist in developing, reporting, tracking, and monitoring all non-compliant risks in risk register for the different lines of business.

• Review and develop a strong understanding of remediation action plans collected in the risk register.

• Remain current on all cybersecurity related policies and standards at Hydro One.

• Support team members in regulatory, audit and leadership reporting

• Collaborate with our Cybersecurity awareness team to develop a robust program through gathering and dissemination of relevant presentations, news articles and cybersecurity feeds.

• Review and update content on GRC corporate web page/intranet to promote and bring further awareness to GRC.

• Assist senior cybersecurity specialists with overall GRC type activities.

Job Requirements:

Discipline: Cybersecurity, IT/OT, Technical Business Analyst, Technical Writing & Communications

Academic Level: Bachelor’s degree (1-5 years Cybersecurity experience)

The following knowledge is essential in order to perform in this position:

• Computer Skills (Microsoft Office – Outlook, Word, Excel and PowerPoint)
• Strong organizational and communication skills.

The following knowledge and experience is desirable to perform in this position:

• Prior work experience in and familiarity with the utility/critical infrastructure industry.
• An understanding of Information Security principles and processes.
• Knowledge of the NERC CIP Standards or the NIST Cybersecurity framework.
• Understanding of regulatory standards and auditing process.

At Hydro One we understand that the success and strength of our business rests with our people. When we develop their skills, we are investing in both their success and ours. To secure the best talent, we seek to create a workforce that reflects the diverse populations of the communities where we live and work and to create a culture based on safety, innovation and inclusiveness.

We are honoured to be recognized by Forbes in its list of Canada’s Best Employers for 2022.

Thank you for considering a career with Hydro One, we welcome applications from all qualified candidates. If you are having difficulty using our online application system and you need an accommodation due to a disability, please email [email protected]. Hydro One will provide reasonable accommodation for qualified individuals with disabilities in the job application process.

Please note this email is only for accommodation requests. Resumes sent to this email address will not be considered.

Deadline: June 19, 2023

In the event you are experiencing difficulties applying to this job please consult our help page here.

Job Segment: Compliance, Information Security, Technical Writer, Business Analyst, Corporate Security, Legal, Technology, Security