Job Description

:

Cybersecurity Awareness Cyber Analyst:

Always there. Anywhere. That\'s us! A team committed to delivering inspired solutions for a better world. We care for our communities and each other, and we are committed to showing up for those who need us. We value and encourage diversity, and we have the courage to do the right thing, even when it is hard. This is the ATCO way!

We are looking for a Cybersecurity Awareness Analyst who can play a key role as part of a group of cybersecurity professionals and will be responsible is to reduce risk to ATCO\'s infrastructure by ensuring all employees and contractors, understand, and comply to ATCO\'s cyber security requirements. And Someone who will oversee the security awareness phishing simulation program, which entails data analysis, collaboration with ATCO businesses, and monitoring cyber threats applying creativity in crafting topical phishing simulations. The successful candidate for the Cyber Security Awareness Analyst position will also display practical knowledge of different message distribution techniques to ensure ATCO users and communities understand and continually apply the required behavioral change necessary to reduce the \'human factors\' cyber risk.

The Cyber Security Awareness Analyst will report to Director, Information Security and GRC. The role is located at either our Edmonton or Calgary offices.

What You Get To Do:

• Define, deploy, and manage instruction and awareness relevant ATCO\'s compliance needs and the cyber security risks. This includes work related mandatory onboarding and annual cyber security training, awareness materials, and follow up on phishing simulation results.
• Implement measurable training programs that address identified cyber security risks and security requirements. Lead the creation of engaging training materials, including presentations, e-learning modules, videos, and interactive sessions.
• Work closely with other security teams, IT, HR, and business units to ensure the training materials are relevant and address specific departmental risks. Engage with external industry groups and forums to stay updated with the latest in security awareness trends and best practices.
• Organize and manage virtual events, pre-recorded videos, and podcasts so that we are engaging our people over a variety of media channels.
• Present regular updates to senior management, showcasing the impact of training initiatives and suggesting areas for improvement. Act as the primary point of contact for all cyber security training and awareness matters. Coordinate with various departments to ensure consistent messaging and understanding of security principles across the organization.
• Develop and document processes and procedures to support ATCO\'s phishing campaigns (including reporting, escalation, and consequences).
• Provide oversight, ownership, and management of phishing Simulation tools.
• Design and conduct training sessions, workshops, and campaigns to educate ATCO\'s workforce on how to identify suspicious emails and how to report them.
• Build educational materials on a regular basis to ensure phishing simulations campaigns contribute with the maturity and understanding of the cyber issue across the ATCO Group.
• Establish metrics and KPIs to gauge the effectiveness of security awareness programs. Create a metrics framework for phishing simulation results. Develop and manage key performance indicators relating to mandatory annual cyber security training. Support team members in creating cyber security compliance KPIs.
• This job description outlines the general nature and level of work performed by individuals assigned to this position. It is not intended to be an exhaustive list of all responsibilities, duties, and skills required. Additional responsibilities and qualifications may be assigned as needed.

Who You Are:

• A bachelor\'s degree in computer science, Information Technology, Cybersecurity, or related discipline is an asset.
• Advanced Information security certifications such as CISSP, GCCC, GCIH, GCFE, CISM, and CISA can be a plus.
• 3-5 years\' experience in leading and coordinating security awareness programs and experience with NERC CIP Cyber Awareness compliance requirements.
• Experience leading cyber security awareness programs. Ability to form complex \'communications / messages\' in a simple, clear, and concise manner to the various communities within our organization. This can include different cultures, nationalities, international locations, and languages.
• Ability to plan and execute awareness campaigns, manage timelines, and measure the success of awareness initiatives.
• Ability to keep track of and meet deadlines while managing multiple tasks and projects simultaneously.
• Hands on experience with industry recognized Phishing Simulation tools and integration mechanisms with identity and access management platforms (e.g. Windows Active Directory, Okta, Others).
• Experience implementing phishing programs. Experience planning and implementing Information Security Awareness program elements and/or role-based training programs.
• Demonstrated knowledge of information security policies, standards, and/or governance controls in varied business environments.
• Understanding of the concepts of information risks and the different elements that make up risk. In addition, have at a minimum a basic understanding of the different concepts of information security.
• Experience working across multiple lines of business to design and implement training plans and track organizational progress, development, and metrics.
• Excellent verbal and written communication and client intimacy skills with experience briefing corporate executives and professionals.

What We Offer:

• A culture based on caring, integrity, agility, collaboration, and striving for excellence.
• Competitive compensation
• Flex benefits
• Tuition assistance program
• Training and mentorship programs
• Charitable donation matching

We would like to thank everyone for their application; however, only those being considered for an interview will be contacted.

Canadian Utilities is part of ATCO Ltd. ATCO delivers inspired solutions for a better world. We are a diversified global corporation with investments in the essential services of Structures & Logistics, Utilities, Energy Infrastructure, Retail Energy, Transportation and Commercial Real Estate. Learn more about how we build communities, energize industries and deliver customer-focused solutions like no other company in the world at www.atco.com.

At ATCO, we support a diverse and inclusive environment that values the contributions and perspectives of everyone on the ATCO team. We believe the ATCO team is the foundation of our business and our most valuable asset across our global operations. Without each team members\' unique skills, strengths, and knowledge, we simply wouldn\'t be able to achieve our fundamental vision of delivering life\'s essential services to our customers around the world.

ATCO is an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.

ATCO