Who We Are At Northland, we’re enablers of change, united by our journey to transform the energy sector into the foundation for a sustainable future.

Since our inception, we’ve been early movers in the energy industry, adopting new initiatives that pave the way for communities across the globe and helping forge their path towards a carbon-neutral landscape.

We’re a different kind of independent power producer. As developers, owners and operators who are at the forefront of the energy transition, we’re uniquely positioned to leave a lasting impact in the regions where we operate. We’ve expanded our business across Canada, the United States, Latin America, Europe and Asia to become a global leader, all by bringing together industry experts to find solutions with an entrepreneurial mindset.

While our work powers communities across the globe, Northland is powered by our people. Reporting to the Manager, IT/OT Security Operations, the IT/OT Security Analyst will be responsible for day-to-day IT/OT security operations, including implementation of security projects, ensuring the success of day-to-day operations, and assisting other IT/OT teams and business units with security related tasks. The role will be responsible for working closely with global teams and managed service partners to ensure the security of IT and OT assets. The role will be responsible for the management and/or oversight of several technologies, including security orchestration, automation, and response; data loss prevention; endpoint security; network security; network threat detection; vulnerability management;; security incident and event management system;; VPN; privileged access management; and more.

This position will be based in our Toronto Head Office. Additionally, this role will be 4 days in office per week, with one flexible day available for employees to work from home.

Key Responsibilities

• Implement and monitor the Global Cyber Security Program that governs all Northland entities, which includes both Information Technology and Operations Technology.
• Implement procedures and technology changes to maintain and evolve Northland’s security maturity
• Monitor and report on network security, system, and application security solutions to highlight areas of non-compliance and recommend the development of improved practices and processes
• Work closely with Managed Service Partners, IT/OT Infrastructure, and Project Management to provide organization direction and guidance on security best practices and compliance to policies
• Work closely with our Managed Security Partners (SOC) to monitor and identify gaps in the current environment and implement necessary changes
• Ensure data processing activities have sufficient data protection mechanisms
• Audit security privileges to ensure concepts of least-privilege are followed
• Participate in ongoing IT/OT security audits for all Northland entities to ensure compliance to baseline requirements
• Act as a key member of the cybersecurity incident response team to quickly identify, contain, and resolve incidents
• Perform periodic maintenance of security systems to ensure they remain up to date to identify and prevent threats
• Perform and/or assist with periodic penetration tests
• Manage the security orchestration, automation, and response system, and implement new automation use cases.
• Manage and maintain the privileged access management system
• Handle reported phishing emails, ensuring that reported threats are effectively triaged and remediated
• Provide evidence to support external audits of various departments and operational facilities
• Review security reports and logging to identify potential risks or required adjustments
• Manage the global vulnerability management and penetration testing program
• Report on security trends, both internal and external, and recommend appropriate risk responses
• Implement threat intelligence to enrich prevention and detection controls
• Participate as required in project pipeline activity to ensure IT/OT acquisitions and implementations are in line with Northland IT/OT Security requirements
• Establish and maintain written and in-person communications with key stakeholders on IT Security matters
• Advise and assist on physical security controls selection, design, and implementation

Who You Are

• Collaborative: You build relationships and enjoy working as a team player to get things done.
• Independent: You are an independent thinker and naturally set your own timescales and milestones to ensure you meet your objectives. You know when you need to ask for help and are comfortable doing so.
• Flexible: You are agile in your approach to your work and in working hours, after all you will be working alongside colleagues in other countries.
• Eager and adaptable: You are eager to learn and expand your skillset, and comfortable adapting to changing priorities in a fast-paced and deadline-driven environment.
• A strong communicator: You have exceptional oral and written communication skills and are able to articulate your analyses in a clear and concise manner.

Qualifications And Experience

• Undergraduate degree in Computer Science or related field. A post-secondary diploma combined with equivalent experience is acceptable.
• Thorough understanding of IT Security principles and practices, with at least 5 years of experience in the IT Security field. CISSP certification is required.
• Courses and/or certifications in IT Security, network administration, server administration, data protection, or industrial control systems are highly desirable.
• Good understanding of Data Privacy laws at a global level, which include GDPR and PIPEDA.
• Sound knowledge of network design (LAN, WAN).
• Experience working with Enterprise Infrastructure technologies and platforms such as firewalls, SIEM, SOAR, vulnerability management solutions, intrusion detection systems, endpoint security, enterprise browser, cloud solutions, and Office 365.
• Strong knowledge of Python, PowerShell and REST API principles.
• Sound knowledge of ISO 27000 series framework, NIST SP800-53, NIST CSF, and IT Security best practices.
• Experience with NERC CIP and/or NIS2 is highly desired.
• Strong analysis and attention to detail
• Strong verbal/written communication and presentation skills.
• Good knowledge of IT security products, services, hardware/software security tools.
• Good judgement, highly self-motivated, and self-directed.
• Ability to effectively prioritize and execute tasks in a pressured situation.
• Experience working in a team-orient, collaborative environment.
• Experience and willing to work “Hands on” and interested in a dynamic, fast paced environment
• Demonstrates a passion for cybersecurity and critical infrastructure protection.

What’s In It for You:

Our employees are the driving force behind our achievements. We are unwavering in our commitment to not only recognise your contributions but also to empower you to excel in every aspect of your life. Here's a glimpse of why Northland is the place where you'll truly thrive:

• Thoughtful benefits – A competitive RRSP matching scheme of 8%; extended health, dental and vision benefits for yourself and your immediate family from day one; paid parental leave; Accident and Life Insurance and disability benefits are just a few of the benefits you’ll be able to access.
• Wellbeing first – Staying true to our taking care of ourselves and each other value, you will have access to our global Wellness Program and Employee Assistance Program, including access to mental health resources.
• Floating days and Birthdays off – As part of our commitment to promoting a healthy work-life balance, you will get your birthday off so you can celebrate however you choose! You will also receive three additional days off annually to observe any other events that are important to you.

We hire talented and passionate people from different backgrounds. If you’re excited about a role but your past experience doesn’t align perfectly with this job description, we still encourage you to apply. Learn more about our diversity, inclusion and belonging commitments . Disclaimer This document is a guide. The duties, responsibilities, and requirements of the jobs as described herein are not inclusive and are subject to change. Northland Power is an equal opportunity employer and we are committed to creating a fair, inclusive and accessible environment. As part of our commitment we work to ensure our application process is accessible to all candidates. If you require special assistance or accommodation during the hiring process, please notify a member of the HR Department.