05/14/2025 - Cyber Security Specialist

Company: SaskPower

Location: Full-time on-site at Client's Head Office in Regina

Engagement Period: July 1, 2025, to May 31, 2026, with the possibility of an extension

Working Hours: Monday to Friday, 8 am to 5 pm

The Cyber Security Specialist is responsible for supporting and strengthening our overall cyber security posture through the implementation and monitoring of advanced security controls across on-premises and cloud environments. This role will ensure compliance with industry-specific security frameworks and standards while proactively identifying and mitigating cybersecurity risks. This is a contracted, full-time onsite role.

University degree in Computer Science, Computer Engineering, Information Security, or a related field; an equivalent combination of education and extensive professional experience in cybersecurity will be considered. At least 5 years of hands-on experience in IT security or cybersecurity operations, including involvement in security monitoring and incident response.

Relevant professional security certifications are strongly desired, such as CISSP, CISM, GIAC certifications, or vendor-specific credentials like Microsoft Certified: Azure Security Engineer Associate. These demonstrate a depth of knowledge and commitment to ongoing professional development.

• Technical Expertise: Proven experience with cloud and enterprise security technologies, specifically Microsoft Azure, Microsoft Defender suite, Microsoft Sentinel (SIEM), and vulnerability management platforms like Tenable One. Ability to configure and use these tools for threat detection, analysis, and automated response. Proficiency in PowerShell, JSON, Kusto Query (KQL), Logic Apps, or similar languages.
• Frameworks & Methodologies: Strong familiarity with industry cybersecurity frameworks and standards such as NIST Cybersecurity Framework, ISO/IEC 27001/27002, and CSA standards. Knowledge of incident response methodologies and best practices.
• Analytical Skills: Excellent analytical and problem-solving skills, with the ability to assess complex systems for security risks. Capable of analyzing logs, alerts, and forensic data across network, endpoint, and cloud sources to identify and resolve security issues.
• Security Clearance: Must be eligible to obtain and maintain a Government of Canada Level II (Secret) Security Clearance, requiring a comprehensive background check and personal reliability.

• Experience in regulated or critical infrastructure environments, such as energy utilities or nuclear industries, especially with SCADA/ICS systems.
• Strong communication skills to articulate cybersecurity risks and strategies to technical and non-technical stakeholders. Ability to work collaboratively and mentor team members.

• Incident Reports and Analysis: Detailed investigation reports and lessons learned for cybersecurity incidents.
• Vulnerability Assessment Reports: Regular scan results and remediation tracking using Tenable One.
• Security Posture Metrics: Periodic reports on security posture and compliance, including Azure Secure Score dashboards.
• Compliance Documentation: Demonstrating alignment with NIST CSF, ISO 27001, and CSA standards for audits and compliance.
• Updated Security Artifacts: Security policies, procedures, diagrams, and system security plans, especially for nuclear-related projects.