SENIOR CYBER SECURITY PROGRAM SPECIALIST

SENIOR CYBER SECURITY PROGRAM SPECIALIST

WINNIPEG, MB

Manitoba Hydro is consistently recognized as one of Manitoba's Top Employers!

Great Benefits

and community.

nature of work, operational requirements and work location.

Manitoba Hydro is a leader among energy companies in North America, recognized for providing highly reliable service and

exceptional customer satisfaction. Join our team of Manitoba's best as we continue to build a company that supports innovation,

commitment, and customer service, while actively supporting a diverse, equitable and inclusive workplace.

Under the general direction of the Enterprise Cyber Security Program (ECSP) Department Manager and as a recognized corporate

cyber security expert, play a critical role in ensuring the success and sustainability of the Enterprise Cyber Security Program,

enterprise technology security assessments, cyber security governing committees, and cyber security risk management. Provide

mentorship and coaching across the Cyber Security Division and support Cyber Security Operations where required.

This position will support the department mandate to increase the cybersecurity maturity of Manitoba Hydro to meet the Canadian

utility-industry average by 2028 and lead development a permanent program for the purpose of maturing and sustaining

cybersecurity at Manitoba Hydro.

Responsibilities:

both Industrial Control System Program and Business Technology Asset Program representatives, and initiate, lead, oversee,

and deliver security policies, standards, programs, roadmap, metrics, accountability structure, centralized services, and

organizational change management for the ECSP. Oversee, drive progress on, lead, provide expert level input to, and monitor

status of critical cyber security initiatives and programs across Manitoba Hydro. Initiate, justify, and lead the procurement and

management of ECSP related contracts.

execution of assessment activities including cyber maturity assessments, scenario assessments, penetration tests, threat risk

assessments, enterprise technology security assessments and other assessments as a means of determining current state

and identifying opportunities for improvement and enhancement.

cyber security governing committees. Provide expert level input and recommendations to committees to support effective

decision making.

and gaps, assess and prioritize risks, and recommend, justify, influence, initiate, develop and drive implementation of

mitigation activities.

forms (including information sharing presentations, documentation and process reviews, brainstorming, guidance, counsel

and coaching and technical training plan development and implementation). Play a lead role in documenting work processes

and continuous improvement initiatives.

internal/external communications during events, and threat intelligence and vulnerability intake, triaging, action initiation, and

tracking. In the event of a significant cyber security incident, you may be called to support response activities at any time

during a 24-hour period to assure Manitoba Hydro system security and reliability.

MANITOBA HYDRO IS COMMITTED TO DIVERSITY AND EMPLOYMENT EQUITY

Reference Code: CO57062275-01

information on all cyber security related developments, issues, research, and trends applicable to MH. Maintain an awareness

of legislation and regulations pertaining to cyber security including NERC and federal and provincial regulations. Participate in

relevant industry cyber security groups. Develop and maintain working relationships with key industry contacts for the purpose

of information exchange and to keep abreast of technology innovation, directions, trends and intelligence and threat

developments. Provide expert level technical cybersecurity support to the Cyber Security Division, contribute to Departmental

and Divisional strategic planning and visioning, and assist in translating corporate strategic goals into specific cyber security

strategic and tactical actions.

Qualifications:

minimum of six years related information technology (IT) or industrial control system (ICS) Support experience, including

cyber risk management, governance, policy, risk reduction and mitigation, IT and ICS protection, and regulatory requirements

related to cybersecurity

OR

plus a minimum of eight years related information technology (IT) or industrial control system (ICS) Support experience,

including cyber risk management, governance, policy, risk reduction and mitigation, IT and ICS protection, and regulatory

requirements related to cybersecurity.

Certifications such as Cyber Security specific (CISM, CRISC, OSCP, CEH, CGIH, GPE, SANS, ISAACA CSX Cybersecurity

Practitioner (CSX-P)), technology specific (SIEM, XDR, etc.), etc.), network related (CCNA, etc.), cloud platform related

(M365, Azure, etc.), operating system related (Linux, Windows, Unix, Apple IOS), management related (PMP, emergency

management, etc.), software/application security, etc. would be an asset.

processes, and technology.

policies, standards, tools.

reports, recommendations, and presentations, and the ability to build and maintain harmonious working relationships with staff

across the enterprise at all levels.

new systems and processes, with a focus on documentation and continuous improvement.

Hydro policy P513.

Salary Range

Starting salary will be commensurate with qualifications and experience. The range for the classification is $51.34-$70.34 Hourly,

$98,380.88-$134,784.78 Annually.

Apply Now!

Visit www.hydro.mb.ca/careers to learn more about this position and to apply online.

The deadline for applications is JUNE 26, 2025.

We thank you for your interest and will contact you if you are selected for an interview.

This document is available in accessible formats upon request. Please let us know if you require any accommodations

#IND1