Job Description

The Opportunity:
Company, Department: Nova Scotia Power, Corporate Security & Cyber Risk Management
Location: 1223 Lower Water Street, Halifax, NS
Closing Date: April 2nd, 2025
Currently, we are looking to hire an Enterprise Cyber Security Specialist to join our Cyber Security Risk Team in a Permanent position. Reporting to the Cyber Security Risk Lead, you will be responsible for providing highly skilled security expertise and operational support for all Emera Canadian companies (Nova Scotia Power, Emera Inc., Emera Energy, Emera New Brunswick, and Emera Newfoundland and Labrador) and all technologies (information technology, operational technology, customer technology).
As an Enterprise Cyber Security Specialist, you will proactively identify and assess threats to NSPs network and data, monitor NSPs network for malicious activity, investigate intrusions and other relevant events, and have a sophisticated and detailed understanding of the evolving threat landscape. You will be the lead for all aspects of your specialization and work collaboratively with all external and internal stakeholders. You are seen as a change agent in your specialization by presenting alternative solutions to complex problems including a clear rationale for recommendations and understanding of interdependencies across affected functional lines of business.
As a successful candidate, you are required to live in or be willing to relocate Nova Scotia for this role. Key elements of this role include::
In this role you will oversee the operationalization of new cyber security capabilities in your specialty as well as leverage existing tools and techniques to mature security practice, capabilities, and methodologies throughout the organization. More specifically:
Based on insights gained from expertise, work with Cyber Security Risk Lead to provide input on the development of new cyber security capabilities, managing multiple risk assessments simultaneously, and workforce planning to accomplish small to medium projects.
Conduct threat risk assessments, third party risk assessments and make recommendations for risk remediation, tools, artifacts and frameworks used for risk and security assessments within your specialty.
Proactively assess the enterprise infrastructure for current and potential risks, vulnerabilities or security threats by leveraging risk assessment tools, conducting security assessments, and determining if anomalies are actual system compromises. This is to ensure all pertinent information is obtained to allow for the identification, containment, eradication, and recovery actions to occur in a time sensitive environment.
Identify, evaluate, and recommend corrective action plans (changes to architecture, hardware, and software) that assist in the mitigation/remediation efforts of identified cyber security risks and vulnerabilities.
Lead risk management sharing sessions with other companies, industry partners, and agencies, as well as third party risk notification to stakeholders.
Leverage experience, critical thinking, and analytical skills to find inventive and effective solutions to security problems. Articulate complex information security concepts to non-technical employees clearly while accurately portraying risks and threats to the company.
Assist in the development of threat/risk metrics, security processes, and operational procedures.
These skills will make you successful::
Expert knowledge of risk and security management process, methods, and tools.
Expert in designing and implementing advanced methodology, artifacts, and tools for specialized areas of focus.
Expert knowledge/training of project management fundamentals - methods and tools, project life cycles, and the integration of organizational change management.
Leading continuous improvement, change and problem resolution for small to medium projects or initiatives.
Develops others in the field of Cyber Security
Experience with following is considered an asset:
NERC (North American Electric Reliability Corporation) CIP standards
Industrial Control System (ICS) or OT (Operations Technology) environments
Azure Microsoft 365 security services.
Good working knowledge of the following is considered an asset:
Risk Assessment methodologies and practices
Understanding of NIST & ISO 27001 Framework & industry best practices
Vulnerability Management technologies and practices
Security & Privacy Incident Response & Event Management Processes
Security Technologies (i.e., SIEM, Firewalls, IDS/IPS, VPN, DLP, etc.)
Cloud Security (i.e., Azure, AWS)
Information Technology General Control assessments
Computer programming skills.
At Nova Scotia Power, everyone is a leader in their own right. Our Leadership Competencies set standards that advance our business strategy, deliver results for customers, and provide career development for employees. The successful individual in this role will take ownership and act with integrity, drive operational success for customers and cultivate innovation and embraces change. Learn more about our culture and values:
At the Emera Group of Companies, youll be part of an inclusive, respectful workplace where everyone is welcomed and supported. Come build a career as unique as you are: making an impact from Atlantic Canada to the world. Your experience and perspective will help us to safely deliver cleaner, more reliable energy to our customers.
If working in an innovative environment, challenging yourself, and shaping a cleaner energy future inspires you, we want to hear from you. Apply by April 2nd, 2025 and let us know why this role is right for you. The perks of joining our team? We offer::

• Health & Wellbeing: A comprehensive benefits plan, 24/7 access to virtual health care services for you and your family through Dialogue, access to a free on-site fitness centre, Employee and Family Assistance Program, parental leave top-up plan and wellness benefits.
• Grow Your Career: Opportunities to advance within and between our affiliate companies, a focus on employee development and available sponsored education programs.
• Community Engagement & Care: Corporate investments in the places where our people live and work, mentoring opportunities, fundraising-matching, volunteer programs, various committees and employee resource groups, and scholarships for children of employees.
• Competitive Compensation: Short-term incentive plans and a Defined Contribution Pension Plan.

Diversity, Equity & Inclusion at Emera:
As one of Atlantic Canadas largest publicly traded companies, we are ranked one of , and . We know our success is driven by our dedicated teams and we strongly encourage applications from all qualified candidates, including persons who identify as racially visible, Indigenous, persons with disabilities, women in underrepresented roles and members of the 2SLGBTQ+ community.
Applicants from these equity groups may self-identify through the online application process. We support candidates and employees with access and accommodation needs and encourage you to let us know when you require accommodation. Recruitment & Promotion Policy:
The success of the Emera Company is driven by its people: a strong team with a shared commitment to support the . The purpose of our recruitment policy is to provide a consistent framework to support fair and equitable attraction, hiring, and retention of the best talent for vacant positions. We are dedicated to maintaining a fair hiring process that provides equitable opportunities to all our applicants and is guided by our company values.