Requisition ID: 19727
Job Category: Information Technology
Location: Mississauga, ON, Canada
With over six decades of business and technical experience in the mining, energy, and infrastructure sectors, we understand that challenges are changing rapidly in every industry. We respond quickly with solutions that are smarter, more efficient, and innovative. We draw upon our 9,000 staff with experience in over 150 countries to challenge the status quo and create positive change for our clients, our employees, and the communities we serve.
The successful candidate will be highly skilled security consultant with demonstrated hands-on experience related to the design and implementation of secure information infrastructures and applications by using a comprehensive suite of services and technology that is designed specifically for reducing cyber-related risk within ICT and Cloud environments. Specializing in technical assessments, architecture reviews, compliance strategies and threat analysis, the ideal candidate will combine unparalleled security experience with engineering excellence. Further, the candidate will deliver realistic and effective security solutions that will protect the very systems that are critical to our clients’ operations.

PREFERRED EXPERIENCE / EDUCATION

The following indicate specific industry, academic and functional experience/qualifications that are important to the successful achievement of the identified responsibilities and performance deliverables:

• Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, Engineering, Cyber Security or an equivalent combination of formal education and experience appropriate for the assigned duties
• Minimum of 10 years of experience in relevant sectors coupled with implementation of cyber-security services and solutions
• Expertise in industry standards and practices related to security engineering, network security and application security Expertise in SCADA and industrial control system cyber threat risk assessments (penetration testing, vulnerability analysis, threat modelling, would be an asset)
• Expertise in delivering security architecture assessments for yet-to-be-built and existing assets
• Development of customized security solutions using commercial security countermeasures (IDS/IPS, SIEM, firewalls, etc…)
• Technical cyber security exercise development and execution; mock audits; no-knowledge security reviews; Procurement language support and development of security-focused procurement specifications for pre-acquisition activities
• Proven experience in successfully applying digital technologies / solutions to a very traditional working environment
• Expertise with an agile implementation model and will have demonstrated its effective use on past projects
• Detailed knowledge of IT/OT and digital technology trends including IIoT, Big Data, Cloud Computing, AR/VR, Automation, Operations Management and Business Systems
• Able to communicate with different levels of client organizations Experience in working with distributed teams of professionals
• Experience building and managing vendors and other parties relationships
• A relevant industry certification ( CISSP with an optional concentration, or a similar relevant recognized industry designation e.g. CISM from ISACA or something from GIAC)

We are committed to fostering a workforce in each of our locations that reflects the diversity of the communities in which we operate. Hatch is an Equal Opportunity Employer that considers employment applicants without regard to age, race, colour, national origin, citizenship, religion, creed, sex, sexual orientation, marital status, disability or any other protected status. If you have any special needs requirements, please let us know. We will do our utmost to accommodate, in accordance with applicable local legislation

FUNCTIONAL TASKS

• Serve as Program Management Officer (PMO) in the execution of Cyber-Security projects
• Coach / Mentor others to further develop Cyber-Security capabilities in Hatch
• Develop, refine and own the tools (e.g. methodologies and frameworks) required to deliver Cyber-Security projects
• Participate in security architecture review of client technologies
• Provide recommendations and best practices for proposed client technologies
• Perform Risk assessments and business impact analysis for major commercial systems and new technologies
• Build a culture of collaboration with peers and partners
• Manage relationship with key partners
• Remain abreast of the industry, competitors and technology trends with a view to ensuring that the firm’s services best align to market needs

The following indicate specific industry, academic and functional experience/qualifications that are important to the successful achievement of the identified responsibilities and performance deliverables:

• Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, Engineering, Cyber Security or an equivalent combination of formal education and experience appropriate for the assigned duties
• Minimum of 10 years of experience in relevant sectors coupled with implementation of cyber-security services and solutions
• Expertise in industry standards and practices related to security engineering, network security and application security Expertise in SCADA and industrial control system cyber threat risk assessments (penetration testing, vulnerability analysis, threat modelling, would be an asset)
• Expertise in delivering security architecture assessments for yet-to-be-built and existing assets
• Development of customized security solutions using commercial security countermeasures (IDS/IPS, SIEM, firewalls, etc…)
• Technical cyber security exercise development and execution; mock audits; no-knowledge security reviews; Procurement language support and development of security-focused procurement specifications for pre-acquisition activities
• Proven experience in successfully applying digital technologies / solutions to a very traditional working environment
• Expertise with an agile implementation model and will have demonstrated its effective use on past projects
• Detailed knowledge of IT/OT and digital technology trends including IIoT, Big Data, Cloud Computing, AR/VR, Automation, Operations Management and Business Systems
• Able to communicate with different levels of client organizations Experience in working with distributed teams of professionals
• Experience building and managing vendors and other parties relationships
• A relevant industry certification ( CISSP with an optional concentration, or a similar relevant recognized industry designation e.g. CISM from ISACA or something from GIAC