Senior Cyber Security Specialist

Saint John, NB
Permanent
Full-time

29 days ago

As a Senior Cyber Security Specialist, you play a key role in identifying, assessing, and managing technology and cybersecurity risks to ensure the organization’s information and system assets remain secure. Your goal is to ensure that enterprise architecture principles and standards are designed to be secure and resilient so that the implementation of solutions, applications, and technologies (both hardware and software) never compromises business objectives by introducing technology or cybersecurity risks. You would integrate threat intelligence, KPIs, and KRIs into ongoing risk monitoring to proactively detect changes requiring action and prevent potential risks from materializing. Your success is demonstrated through your ability to support and execute security testing, conduct thorough threat modeling, and effectively address risks across technology and cybersecurity environments, ensuring a robust and continuously improving security posture.What We Offer:

Work Environment – Work in our beautiful home office building with access to a fitness facility, onsite nurse, and a café
Competitive Compensation – Including an annual bonus plan, pension plan, and parking allowance
Flexible Benefits Plan – In effect from day one and offers three levels of coverage to select from to meet your unique, personal needs
Paid Vacation – Plus an annual option to purchase additional vacation, too
Wellness Support – With an annual wellness allowance, paid personal care days and a 24/7 Employee & Family Assistance Program
Opportunity to give back to some amazing causes in our community – Choose when and where to make an impact with a paid volunteer day, company volunteer opportunities, and a donation matching program

Your Responsibilities:

Contribute to defining technology security strategies, principles, policies, and standards
Identify, assess, and manage technology and cybersecurity risks using established risk assessment tools and frameworks
Evaluate risks related to the design and development of innovative solutions across infrastructure, applications, data, and technology
Develop cybersecurity requirements for new products, services, infrastructure, and applications
Partner with IT teams to perform threat modeling and ensure security considerations are integrated into projects
Design and conduct security testing, identify risks, recommend mitigations, and ensure continuous monitoring of systems
Build and maintain risk dashboards that highlight key risk metrics and trends.
Integrate threat intelligence, KPIs, and KRIs into risk monitoring to detect changes requiring proactive action and prevent potential risks from materializing

Your Skills:

Strong analytical, problem‑solving, deductive reasoning skills and the ability to quickly identify and mitigate issues
Structured and methodical approach to root cause analysis, problem resolution, and incident management
Ability to model and represent information using defined standards, combining graphical and textual elements
Ability to navigate fast‑paced, changing environments, set priorities, and maintain adaptability and urgency
Strong communication skills with the ability to convey complex risk issues to both technical and non‑technical stakeholders; proficient in threat intelligence integration, risk metrics analysis, and security testing/threat modeling techniques

Your Experience:

Bachelors or Master’s degree in computer science, Information Technology, Information Systems, or equivalent experience; supported by 10+ years overall experience, including 7+ years in cybersecurity, system architecture, design, development, and deployment
Extensive hands-on experience across complex environments, including Oracle ERP, Salesforce, Web/Mobile/low‑code development platforms, network security, and cloud platforms such as Azure and AWS
Strong risk management background with expertise in developing and monitoring KPIs/KRIs, and deep knowledge of industry security frameworks including NIST CSF, RNF, NIST 800‑53r5, ISO 27005, and CIS CC v8.1; professional certifications such as CISSP, CRISC, CISM, or Offensive Security are strong assets

Irving Oil is committed to supporting a diverse and inclusive work environment. We thrive on the good energy that’s created when our people from different backgrounds, identities, cultures and experiences share their unique perspectives. Diversity is key to our success and inclusion is everyone’s responsibility.Job Requirements - Work Experience Information TechnologyJob Requirements - Education Bachelors: Information Technology

Irving Oil

Apply Now