Share this Job

Sr IT Security Specialist

Date: Jun 17, 2022

Location: Barrie, ON, CA

Company: Hydro One Networks Inc

44837 - Barrie - Regular - ongoing 

Safety Comes First is a core value at Hydro One, and we remain committed to taking every reasonable precaution to ensure a respectful, safe and healthy working environment. Further to this commitment, we have adopted a COVID-19 Vaccination Policy to protect the health of our employees from the hazard of COVID-19. New employees will be required to declare their vaccination status to Hydro One. Employees who do not provide proof of vaccination status may not enter any 3rd party locations that require full vaccination (e.g. customer properties).

Hydro One is proud to be the largest electricity transmission and distribution provider in Ontario, serving nearly  1.5 million customers. We have a long history in the industry with our roots dating back over 110 years to 1906. Since then, we have worked to grow and evolve to meet the changing needs of our customers and communities across Ontario. Today, we’re focused on providing exceptional customer service and ensuring we are building safe communities where we live, work and play.

It’s an exciting time to join the team at Hydro One!

*NOTE* Hydro One introduced a Hybrid Work Pilot Project in 2022 for most office-based roles. Employees work in-office/on-site two days a week and remotely from home for three days a week. Hydro One is adding refreshed workspaces and technology to support these changes.  Join us as we ‘trial & learn’ a new modern way of working and be a key driver of future state!

In office but with intention – a time for team and trust building, collaboration, and socialization. Please reach out to us to learn more!

General Accountabilities:
• Support the Senior Manager, Regulatory Compliance and Operations Services in effectively designing and developing strategies consistent with Hydro One positions related to Security and Regulatory Compliance requirements
• Support the Director, Director, Operating Technology (OT) Operations of in the successful sustainment of Regulatory Compliance, and Security standards
• Prime point of contact for all Audit engagements and Regulatory / Compliance examinations which impact the LOB
• Coordinates and oversees any meetings and engagements with Audit, and Compliance including:


➢ Reviews evidence prior to submission to other groups or external entities and ensuring consistency and quality
➢ Ensures the right resources are engaged and prepped to understand rules of engagement for regulatory/audit interactions
• Tracks progress on remediation of Audit and Compliance findings / observations, meeting regularly with observation owner and communicate to management on progress, escalating early when remediation dates are off track


• Consolidate OT comments for audit and drafting committee document reviews
• Own and manage the LOB Technology & Operational Risk Register
• Work with LOB stakeholders to ensure technology, processes and controls are in place to meet regulatory and technology standards and polices and to address key risks.
• Ensure open control issues are tracked within the risk register, remediation plans are created with assigned owners and plans are monitored to completion
• Provide support, consulting, and management for the implementation of solutions to mitigate risks related to control gaps. Make recommendations on risk and control related processes and procedures to improve risk posture while supporting efficient use of resources
• Develop and operationalize management reporting to highlight progress of key risk remediation activities. Chair LOB Technology Risk Committee Monthly meetings
• Develop and operationalize LOB Technology Risk Scorecard (working with 2nd line partners – e.g. Security Operations) includes defining
LOB Technology Risk Metrics (key Risk Indicators) tied to risk related operational activities and identifying associated LOB control/KRI owners. Examples:


➢ Late Access Terminations
➢ High Risk Overdue Vulnerabilities
➢ Overdue Access Attestations
➢ Currency Issues for High-Risk Assets
➢ Asset Inventory Accuracy and Completeness
➢ # of Systems which send logs to central system


• Work with control owners to establish and monitor get to green plans for Yellow and Red KRIs
• Act as program manager for key risk initiatives (typically those with Enterprise Visibility) which span multiple teams and across stakeholders in various LOBs
• Act as program manager for Operating Technologies Quality Management and Assurance System through encouraging a culture of knowledge and provide support and advice on developing and keeping current knowledge repository.
• Develop training / educational material to update and inform the team on changes to regulatory or Corporate requirements
• Ongoing Monitoring of Policies and Procedures to ensure accuracy and relevance
• Develop KPI dashboards
• Analyze program output and provide assessment of risk
• Participate in regulatory and compliance workshops to ensure current knowledge on current and emerging requirements.
• Relevant experience in strategic business planning and management
• Work to continually improve product and compliance knowledge by completing industry courses, participating in seminars, workshops and conferences, proactively reading internal publications and internet postings and sharing information and ideas with peers


Selection Criteria:
The candidates are expected to have demonstrated capability in the following areas:
• University degree or related studies, or equivalent experience.
• 10+ years experience
• Proven ability to meet deadlines and manage priorities.
• Good communications skills with the ability to work/liaise effectively with business, IT stakeholders, and vendor representatives.
• Relevant experience in utility sector is preferred.


At Hydro One we understand that the success and strength of our business rests with our people. When we develop their skills, we are investing in both their success and ours. To secure the best talent, we seek to create a workforce that reflects the diverse populations of the communities where we live and work and to create a culture based on safety, innovation and inclusiveness.

 

We are honoured to be recognized by Forbes in its list of Canada’s Best Employers for 2021.

 

Thank you for considering a career with Hydro One, we welcome applications from all qualified candidates. If you are having difficulty using our online application system and you need an accommodation due to a disability, please email careers@hydroone.com. Hydro One will provide reasonable accommodation for qualified individuals with disabilities in the job application process.

 

Please note this email is only for accommodation requests. Resumes sent to this email address will not be considered.

 

Deadline: July 4, 2022

 

 

In the event you are experiencing difficulties applying to this job please consult our help page here.


Job Segment: Compliance, Corporate Security, Law, Consulting, Legal, Security, Technology