IT Advisor - Cybersecurity Remediation Advisor

BC Hydro

Posted July 23, 2025
Burnaby

Job Overview

The Cybersecurity Remediation Advisor, Applications & Platforms, acts as the primary liaison between the Cybersecurity team and application stakeholders, ensuring effective communication, coordination, and execution of remediation efforts across the application landscape. This role is pivotal in reducing risk, enhancing resilience, and embedding security into the fabric of application development and operations.

What you'll do

1. Vulnerability Prioritization & Strategy Development: Collaborates with Cybersecurity to assess, prioritize, and define remediation strategies for application-layer security weaknesses, including those in third-party and custom-built software.
2. Cross-Team Coordination & Engagement: Facilitates collaboration across application development, DevOps, QA, and business application teams to ensure timely and effective remediation. Acts as a bridge between technical and business stakeholders.
3. Execution & Operational Oversight: Oversees remediation activities such as code fixes, library upgrades, configuration changes, security hardening, and secure deployment practices—leveraging internal teams or vendors through projects, sprints, or operational workflows.
4. Secure Development Lifecycle (SDLC) Integration: Partners with engineering and DevOps teams to embed security controls throughout the SDLC. Promotes secure coding practices, threat modeling, and automated security testing (e.g., SAST, DAST, SCA).
5. Tooling & Automation Advocacy: Identifies and champions tools that support vulnerability detection, remediation tracking, and secure CI/CD pipelines. Works with platform teams to automate remediation workflows.
6. Third-Party & SaaS Risk Management: Coordinates with vendor management and procurement to assess and remediate vulnerabilities in third-party and SaaS applications. Ensures compliance with internal security standards.
7. Security Awareness & Enablement: Conducts enablement sessions for application teams on secure development and remediation best practices. Serves as a trusted advisor to product owners and engineering leads.
8. Governance & Policy Alignment: Ensures remediation activities align with cybersecurity standards, enterprise security policies, compliance requirements, and audit findings. Contributes to the development of application security standards and SLAs.
9. Continuous Improvement & Risk Mitigation: Identifies opportunities to enhance application security posture and reduce long-term risk through proactive measures, process improvements, and strategic initiatives.

What you bring

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field.
• 5+ years of experience in cybersecurity, focusing on application and platform security.
• Strong understanding of application development lifecycles and methodologies.
• Experience with hybrid IT environments (on-premise and cloud).
• Familiarity with DevSecOps practices and tools.
• Experience with secure coding practices and application security testing.
• Familiarity with tools such as static and dynamic analysis, vulnerability scanning, and penetration testing.
• Strong understanding of cloud-native security architectures and shared responsibility models.
• Knowledge of cybersecurity frameworks and standards (e.g., NIST).
• Hands-on experience with securing cloud platforms (AWS, Azure) and hybrid environments.
• Certifications such as CISSP, CCSP, or AWS/Azure Security Specialty are highly desirable.
• Familiarity with NERC CIP compliance is an asset.
• Previous experience with Security Operations management suites (e.g., ServiceNow IRM/GRC & SecOps).

What we offer

• Minimum of 15 paid vacation days
• Flexible work model, depending on your role
• Training and development courses
• For more information, visit bchydro.com/benefits.

Response Information

To apply, click the "Apply" button or follow the application instructions above. If multiple Apply buttons appear, select your preferred option.

Post your resume on T-Net and let employers come to you.

• Upload, copy, paste, or create your resume easily.
• Save time applying for future positions.
• Make your profile "Searchable" or "Confidential" so BC Tech and IT employers can find and contact you.

Registration or use of this website constitutes acceptance of our Terms of Use.