Senior Cyber Security Analyst

Trans Mountain Corporation operates Canada’s only pipeline system transporting oil products to the West Coast. We deliver approximately 890,000 barrels of petroleum products each day through a dual pipeline system of more than 1,150 kilometres of pipeline in Alberta, British Columbia and Washington state.

Trans Mountain also operates a state-of-the-art loading facility, Westridge Marine Terminal, with three berths providing tidewater access to global markets.  

As a federal Crown corporation, Trans Mountain continues to build on more than 70 years of experience delivering operational and safety excellence through our crude oil pipeline system. 

With our expanded pipeline system now in place, Trans Mountain provides enhanced direct access for Canadian crude oil to world markets. The expansion realizes a world-class system for oil transport, developed to Canada’s high standards within one of the most stringent regulatory regimes in the world, creating long-term economic benefits, enhanced marine protection, enhanced safety and emergency management capabilities, and enhanced skilled-worker capacity building in communities and Indigenous groups.

Our Core Values

Trans Mountain’s core values – Safety, Integrity, Respect and Excellence – guide our every step. Each obstacle we’ve overcome or success we’ve experienced has been the result of a shared commitment to living these values every day. Together, we’re focused on doing the right thing for each other and our communities.

As a Senior Cyber Security Analyst with Trans Mountain, you’ll have the opportunity to work with a progressive and fast-paced group of professionals. This position is based in our Calgary Head Office and reports to the Manager, Cyber Security.

Trans Mountain Canada is looking for an innovative and driven Cyber Security Analyst to support the Cyber Security team in evaluating and responding to current and emerging threats and risks. This role will be focused on supporting our compliance and risk management functions and is pivotal in protecting our business though operational processes, management of security technologies, identifying risks, and raising user awareness across the organization.

This position will include a variety of technical and non-technical cyber security activities which range from investigation of alerts, development of phishing tests, execution of Threat Risk Assessments (TRA), support during audits, delivery of user awareness and incident management support. Working closely with the rest of the cyber security team, and in partnership with key stakeholders within business units and the Information Technology (IT) areas, our team strives to deliver an outstanding cyber security program that protects Trans Mountain Pipeline.

Key Responsibilities

• Threat Monitoring and Detection: Collaborate with existing Security Operations Center (SOC) provider to support investigation of escalated threats. Provide on-call support on a scheduled rotation with existing cyber security team.
• Cyber Incident Response: Support incident management activities, as part of a broader incident response team, following the Cyber Security Incident Response Plan (CSIRP).
• Technology Support: Support, along with broader team, existing cyber security technology stack including Security Information and Event Management (SIEM), Privileged Access Management (PAM) solution, Operational Technology (OT) monitoring solution, vulnerability scanners, etc. Consult with additional stakeholders on new technology implementations for cyber security.
• Awareness and Training: Execute simulated phishing tests. Educate and train Trans Mountain staff on cyber security risks and threats and changes in the threat landscape. Build and grow a culture of security within the organization.
• Compliance: Provide compliance support during regulatory assessments and internal and external audits, including evidence collection. Support annual reviews and updates of security policies, standards and procedures, as required.
• Risk Management: Support senior staff to perform TRA to identify and mitigate business, privacy and cyber security risks posed with the use of technology.
• Reporting: Deliver and improve reports to monitor the performance of processes, services and key metrics for the cyber program.
• Security Advisory: Collaborate with IT and other business units to ensure security controls are understood and applied effectively across the business.
• Continuous Improvement: Work with our team to drive efficiency in our processes, bring fresh ideas and challenge status quo within the cyber security program.

Requirements

• Bachelor’s degree in computer science, Information Technology, Computer Engineering.
• Over 10 years of experience with a minimum of 5 years in cyber security, or in a related field.
• Certifications an asset: Global Information Assurance Certification (GIAC); Certified Information Systems Security Professional (CISSP); Certified Information Security Management (CISM) Computing Technology Industry Association (CompTIA) Security+
• Knowledge of cyber security controls, and the differences applying them in IT and OT environments.
• Technical background with knowledge of IT and OT environments including networks, servers, application development, architecture, storage, cloud, etc.
• Awareness of relevant regulatory frameworks and compliance requirements.
• Practical or formalized training and experience control frameworks (e.g. ISO 27001, and NIST cyber security framework (CSF)).
• Team player with a positive attitude, and a curiosity and passion for cyber security.
• Self-motivated, capable of performing tasks with minimal supervision.
• Able to prioritize and handle multiple tasks simultaneously.
• Strong attention to detail.
• Excellent written and verbal skills.
• Ability to work well under pressure, handle strict deadlines and shifting priorities.
• Strong organizational and problem-solving skills.
• Ability to work in a fast paced and dynamic environment.​​​​​​​

We Build Careers and Pipelines That Last

Our story is about determination, resourcefulness and resilience. It’s about charting our own course, finding innovative solutions to challenging problems and doing the right thing. It was true when Trans Mountain became a company in 1951 and it’s just as true today. We welcome new members to our team that embrace the qualities in our story, that thrive on the new path and directions we take.  Our culture is one of care and taking our responsibilities seriously. If you would like to contribute to our culture, then join our journey.

A Rewarding Opportunity

We offer:

• Valuable experience providing opportunity for professional development and career advancement;
• An opportunity to engage with and learn from some of the most talented and experienced people in the business;
• Competitive compensation;
• Comprehensive benefits programs including flexible benefits, pension and savings plans
• A place to share a sense of purpose and build relationships;
• Meaningful work that makes a difference;
• An opportunity within the Canadian energy industry.

We value:

• The health, safety and wellness of everyone working in our company;
• Meaningful participation from Indigenous and local communities;
• The commitment and resilience of our people;
• Collaboration and achieving success together. 

In keeping with Trans Mountain’s commitment to maximize benefits for communities, priority will be given to qualified candidates from Indigenous, local and regional communities along the Trans Mountain pipeline corridor.

In Alberta, the pipeline system spans the traditional territories of Treaty 6, 7 and 8, and the Métis Nation of Alberta (Zone 4).

In British Columbia, the system crosses the traditional territories of numerous First Nations that are affiliated with the Secwepemc, Dakelh (Carrier), Nlaka'pamux, Syilx/Okanagan, Interior and Coast Salish, Stó:lo, as well as the Métis.

Trans Mountain also operates through 15 First Nation Reserves located within the region spanning the BC interior through Fraser Valley.

Our Commitment to Inclusion, Diversity, Equity and Accessibility (IDEA)

Trans Mountain is committed to fostering inclusion, diversity, equity and accessibility.  The diverse viewpoints and cultural knowledge that our employees bring to work enrich our organization’s collective cultural understanding, which is reflected in the work we do every day.  We strive to create an environment that is free of barriers to promote full participation in the workplace. Trans Mountain welcomes new team members from traditionally underrepresented groups, including but not limited to women, Indigenous Peoples, members of racialized groups, persons with disabilities and members of the 2SLGBTQI+ community.