Description

Reporting to the Manager, IT/OT Security Operations, the IT/OT Security Analyst will be responsible for day-to-day IT/OT security operations, including implementation of security projects, ensuring the success of day-to-day operations, and assisting other IT/OT teams and business units with security related tasks. The role will be responsible for working closely with global teams and managed service partners to ensure the security of IT and OT assets. The role will be responsible for the management and/or oversight of several technologies, including security orchestration, automation, and response; data loss prevention; endpoint security; network security; network threat detection; vulnerability management;; security incident and event management system;; VPN; privileged access management; and more.

This position will be based in our Toronto Head Office. Additionally, this role will be 4 days in office per week, with one flexible day available for employees to work from home.

Key Responsibilities

Implement and monitor the Global Cyber Security Program that governs all Northland entities, which includes both Information Technology and Operations Technology.
Implement procedures and technology changes to maintain and evolve Northland's security maturity
Monitor and report on network security, system, and application security solutions to highlight areas of non-compliance and recommend the development of improved practices and processes
Work closely with Managed Service Partners, IT/OT Infrastructure, and Project Management to provide organization direction and guidance on security best practices and compliance to policies
Work closely with our Managed Security Partners (SOC) to monitor and identify gaps in the current environment and implement necessary changes
Ensure data processing activities have sufficient data protection mechanisms
Audit security privileges to ensure concepts of least-privilege are followed
Participate in ongoing IT/OT security audits for all Northland entities to ensure compliance to baseline requirements
Act as a key member of the cybersecurity incident response team to quickly identify, contain, and resolve incidents
Perform periodic maintenance of security systems to ensure they remain up to date to identify and prevent threats
Perform and/or assist with periodic penetration tests
Manage the security orchestration, automation, and response system, and implement new automation use cases.
Manage and maintain the privileged access management system
Handle reported phishing emails, ensuring that reported threats are effectively triaged and remediated
Provide evidence to support external audits of various departments and operational facilities
Review security reports and logging to identify potential risks or required adjustments
Manage the global vulnerability management and penetration testing program
Report on security trends, both internal and external, and recommend appropriate risk responses
Implement threat intelligence to enrich prevention and detection controls
Participate as required in project pipeline activity to ensure IT/OT acquisitions and implementations are in line with Northland IT/OT Security requirements
Establish and maintain written and in-person communications with key stakeholders on IT Security matters
Advise and assist on physical security controls selection, design, and implementation

Who You Are:

Collaborative: You build relationships and enjoy working as a team player to get things done.
Independent: You are an independent thinker and naturally set your own timescales and milestones to ensure you meet your objectives. You know when you need to ask for help and are comfortable doing so.
Flexible: You are agile in your approach to your work and in working hours, after all you will be working alongside colleagues in other countries.
Eager and adaptable: You are eager to learn and expand your skillset, and comfortable adapting to changing priorities in a fast-paced and deadline-driven environment.
A strong communicator: You have exceptional oral and written communication skills and are able to articulate your analyses in a clear and concise manner.

Qualifications and Experience

Undergraduate degree in Computer Science or related field. A post-secondary diploma combined with equivalent experience is acceptable.
Thorough understanding of IT Security principles and practices, with at least 5 years of experience in the IT Security field. CISSP certification is required.
Courses and/or certifications in IT Security, network administration, server administration, data protection, or industrial control systems are highly desirable.
Good understanding of Data Privacy laws at a global level, which include GDPR and PIPEDA.
Sound knowledge of network design (LAN, WAN).
Experience working with Enterprise Infrastructure technologies and platforms such as firewalls, SIEM, SOAR, vulnerability management solutions, intrusion detection systems, endpoint security, enterprise browser, cloud solutions, and Office 365.
Strong knowledge of Python, PowerShell and REST API principles.
Sound knowledge of ISO 27000 series framework, NIST SP800-53, NIST CSF, and IT Security best practices.
Experience with NERC CIP and/or NIS2 is highly desired.
Strong analysis and attention to detail
Strong verbal/written communication and presentation skills.
Good knowledge of IT security products, services, hardware/software security tools.
Good judgement, highly self-motivated, and self-directed.
Ability to effectively prioritize and execute tasks in a pressured situation.
Experience working in a team-orient, collaborative environment.
Experience and willing to work "Hands on" and interested in a dynamic, fast paced environment
Demonstrates a passion for cybersecurity and critical infrastructure protection.

Read the full posting.

Contact

Northland Power Inc.

30 St Clair Ave W

Toronto

www.northlandpower.com

From the same organization

Workday Analyst - Northland Power Inc.

18 Nov, 2025

Senior Financial Systems Specialist - Northland Power Inc.

18 Nov, 2025

Executive Assistant - Northland Power Inc.

6 Nov, 2025

MORE

IT/OT Security Analyst

EMERSON
Salt River Project Completes Hydropower Modernization Project for Greater Renewable Energy Production Efficiency and Reliability

UNIVERSITY OF BRITISH COLUMBIA
Made-in-Canada sustainability database aims to boost global trade, climate goals

CLEAN ENERGY BUYERS ASSOCIATION
CEBA Report: Corporate Demand Drives Clean Energy

CLEAN ENERGY STATES ALLIANCE
CESA's Essential Role in Solar for All

MET GROUP
MET Group enables energy transition and publishes Climate Impact Report 2024

2025 CANADIAN WATERPOWER WEEK

GRIDFWD 2025: AI AND THE GRID

9TH E-MOBILITY POWER SYSTEM INTEGRATION SYMPOSIUM

24TH WIND & SOLAR INTEGRATION WORKSHOP

GLOBAL CONGRESS ON POWER AND ENERGY ENGINEERING (POWER SUMMIT-2025)

Private zone

Privacy

Press

Subscription

IT/OT Security Analyst

Private zone

Privacy

This website uses cookies