Senior Cyber Security Officer

Manitoba Hydro

Posted: 1 day ago Closes: Jul 31, 2026

Job Location: Winnipeg, MB

Job Type: Full Time

How To Apply: https://www.hydro.mb.ca/careers

Sign Up to Start Applying

Senior Cyber Security Officer

Winnipeg, MB

Manitoba Hydro is consistently recognized as one of Manitoba's Top Employers! We are a leader among energy companies in North America, recognized for providing highly reliable service and exceptional customer satisfaction. Join our team of Manitoba's best as we continue to build a company that champions safety, supports innovation, and delivers on our commitment to customer service - while actively fostering a diverse, equitable, and inclusive workplace reflective of the communities we serve.

Great Benefits
  • Competitive salary and comprehensive benefits package.
  • Defined-benefit pension plan for long-term financial security.
  • Nine-day work cycle, typically resulting in every other Monday off to support a balanced approach to work, family life and community.

Position Overview:
We are seeking a permanent Senior Cyber Security Officer to join our Control Centre Technology Systems Department in Winnipeg, Manitoba. 

Responsibilities
Under the general direction of the  Infrastructure and Security Section Head, responsible for providing cyber security leadership and direction to Control Center Technology Systems in the application of corporate wide cyber security policy/procedure and the development and application of standards and programs specific to centralized operational technology (OT). 

Support and lead the implementation and management of cyber security controls, tools, and systems to assist in the identification, detection, triage, containment of, and response to cyber security threats and report on relevant metrics. Lead the development of the centralized OT cyber security tools roadmap in consultation and coordination with corporate cyber security and enterprise architecture. 

Provide guidance and expertise to System Operations staff, and project teams by recommending and enforcing security controls and best practices for new and existing technologies and applications within the centralized OT environment.

Principal Duties
  • Lead the development and implementation of the cyber security program, strategy, and roadmap for the EMS environment to ensure continued NERC CIP Compliance, alignment with enterprise cyber security goals/roadmaps, and launch our cyber security maturity to new levels:
    - Develop, implement and monitor security related metrics to track roadmap implementation status, and security health of the EMS environment.
    - Define, implement, and maintain operational security standards and procedures to support execution of the cyber security roadmap.
    - Create related reports or presentations to be delivered to management and relevant governance committees.
  • Lead, recommend, plan, install, configure, monitor and upgrade appropriate security tools, controls, and countermeasures to protect systems in the EMS environment against all types of cyber security threats:
    - Maintain and improve the malicious software prevention program.
    - Develop, monitor and facilitate the security risk management program.
    - Track and conduct assessments on newly released vulnerabilities and security patches.
    - Develop and implement mitigation plans for identified vulnerabilities.
  • Lead and assist with cyber security audits of systems, applications and networks, and coordinate third-party audits including external assessments, internal and NERC CIP audits as required.
  • Establish incident response and communication plans:
    - Coordinate and align with Cyber Security Operations Centre enterprise cyber security incident response and communication plans.
    - Create specalized centralized OT plans which provide clear and concise direction to other staff responding to or assisting in the incident response.
    - Develop communication strategies and guidelines to best enable enterprise wide coordination on centralized OT aspects of a response, adherence to NERC CIP and CIS incident response requirements, and appropriate communication to impacted departments and standard owners.
    - Develop training, presentations, and exercises for these plans as required.
  • This position leads CCTS Cyber Security program involvement and implementation of multiple security programs (ICS CSRM, NERC CIP, Technology Security), provides assistance and consultation on several others, and is a recognized leader within System Operations and Manitoba Hydro. 
  • Providing guidance and consulting assistance to all Manitoba Hydro System Operation Division staff and management on overall Cyber Security risk, Cyber Security controls, governance, and best practices is also part of this position.
  • Regularly communicate best practices and guidance to improve the over-all cyber security posture and culture of Systems Operations division by presenting Cyber Security best practices that considers the unique differences and struggles OT networks and operators have when improving Cyber Security.
  • Lead the proactive security monitoring and reporting program using tools such as the SIEM system including leading the centralized OT threat intellegance program. Evaluate incoming threat intelligence for applicability and severity and determine appropriate counter-measures and mitigations necessary. Provide information to system SMEs and briefings to management as required based on severity and likelihood of a threat. 
  • Responsible for network intrusion detection and prevention policy, procedures, and systems. 
  • Respond to and ensure root causes for suspected security breaches and failures are identified and fully addressed. 
  • Lead, plan, coordinate, and conduct cyber security incident response exercises and assessments.
  • Develop cyber security playbooks. Lead implementation of SOAR (Security Orchestration Automation and Response).
  • Provide round-the-clock support, as required, on an emergency basis to lead the response to a cyber security event.
  • Receive and analyze security alerts from various sources.
  • Apply DevSecOps principles wherever possible in the implementation, testing, and maintenance of supported infrastructure. 
  • Keep current on all cyber security related issues:
    - Identify and establish contacts with industry peers and information sources to keep abreast of emerging and relevant cyber security issues and risks.
    - Conduct cyber security research.
    - Represent MH as an OT cyber security expert on internal & external cyber security committees.
  • This position will be responsible for mentoring junior staff and their understanding and development in the cyber security and centralized OT areas. 
  • Provide 24-hour support (standby) to the System Control Centre as part of the EMS Infrastructure and Applications on call rotation.

"Principal Duties are intended to be an accurate reflection of the main duties essential for this position. They are not designed to be an exhaustive list of all duties, tasks and responsibilities."

Qualifications
  • A four year degree in Computer Science or Computer Engineering from a university of recognized standing plus a minimum of six years of directly related experience in the field of information/computer technology and cyber security.
    OR
  • A two year diploma in Computer Programming Technology from an institute of recognized standing plus a minimum of eight years directly related experience in the field of information/computer technology and cyber security.
    OR
  • An equivalent combination of education and experience may be considered.
  • Global Information Assurance or ICS2 Certification(s) would be considered an asset.
  • Demonstrated initiative and ability to plan, organize, schedule and complete a high volume of work within strict timelines.
  • Demonstrated ability to establish and maintain successful working relationships with external and internal contacts in multiple departments and positions. 
  • Demonstrated ability to communicate effectively, both orally and in writing.
  • Demonstrated advanced level knowledge of IT and OT systems and networks.
  • Expert level knowledge of NERC CIP Standards, Programs and Procedures.
  • Subject matter expert in cyber seucirty policies, practices, controls, and tools. 
  • Expert level knowledge and experience with Intrusion Detection Systems and Endpoint Detection & Response systems.
  • Expert with Security Information and Event Management (SIEM) systems, Security Orchestration & Automated Response (SOAR) platforms and threat intelligence platforms. 
  • Demonstrated commitment to continuous learning and keeping pace with changing technology and related best practices. 
  • Demonstrated forward thinking and ability to identify and implement continuous improvement.
  • Demonstrated knowledge of Lean and DevOps / DevSecOps.
  • Obtain and maintain a current Personnel Risk Assessment and a "Clear" security rating in accordance with Manitoba Hydro policy P513.
  • Completed Critical Infrastructure Protection (CIP) Training prior to transfer and renewed annually.
  • Completed Standards of Conduct training within two weeks of start date and renewed annually. 
  • Reside within the headquarters zone. 
  • Possess a valid Province of Manitoba Driver's Licence with appropriate classification.
  • Be available after hours to lead response to critical and urgent issues as needed. Occasional travel to field or office work sites outside the headquarters zone will be required.

Salary Range
Starting salary will be commensurate with qualifications and experience. The range for the classification is $52.88-$72.45 Hourly, $101,332.40-$138,828.30 Annually.

Apply Now!
Note: This employment opportunity is advertised on Manitoba Hydro's career website, and all candidates wishing to apply must do so using our online application system. Ready to join a team that energizes Manitoba and puts safety, innovation, and inclusion at the heart of everything we do? Visit www.hydro.mb.ca/careers to learn more about this position and to apply online.

Application deadline: July 28, 2026.

We appreciate your interest in Manitoba Hydro and thank all applicants. Only those selected for the next stage of the selection process will be contacted.

If you require accommodations during the recruitment process or need this posting in an accessible format, please let us know - we're committed to a barrier-free experience for all candidates

This employer accepts online applications via AMIK.ca! Apply online now for the following benefits:

  • Apply online for any job on AMIK.
  • Save jobs for later and track your job applications.
  • Add and manage all your resume in one place.