Job Description

At Nutrien, our purpose is Feeding the Future and we do so with safety, inclusion, integrity and results as our core values. Nothing is more important than sending our people home safe, every day.Nutrien is a leading provider of agricultural products, services, and solutions. With over 26,000 employees world-wide, we are the largest producer of potash (by capacity) and one of the world\'s largest producers of nitrogen and phosphate. We also operate a leading agriculture retail network that services over 500,000 growers globally.We harvest the best. Diverse views and experience make us strong. We look for people who have a safety-first mindset, who are collaborative team players, who deliver on their commitments, act with integrity, and who support inclusion.Working at Nutrien will provide you an opportunity to help us raise the expectation of what an agriculture company can be and grow your career.The Senior Cybersecurity Global Portfolio Architect reports to Nutrien\'s Chief Information Security Officer.This role works in a dynamic and fast-paced environment and with cross-functional teams (cyber security, business projects, and IT). The Sr. Cybersecurity Global Portfolio Architect will engage in an internal threat risk service focused on assessing and managing cyber security risks with new technology solutions being considered, developed, bought, or implemented. Key duties will be to identify and expedite requests when business opportunities require accelerated assurance to cyber security safely deliver cutting edge technology and innovation.The role is a key participant in global enterprise projects seeking to further automate, globalize and standardize. You\'ll forge strong working relationships with other teams and individuals including security analysts, senior enterprise architects, risk assessors, project managers and business leads. The role will allow teams/individuals to understand their information and cyber risk and manage them within Nutrien\'s risk appetite.Additionally, the position will be responsible for providing the appropriate teams with guidance on cyber security issues that need to be remediated. The individual must be able to work with and leverage Nutrien global cybersecurity support teams and architecture to provide superior solutions and advice to multiple layers of the Nutrien business teams.What you will do:

• Cyber Security Architecture Consultant for Nutrien working in close collaboration with the Nutrien Cyber Security Architecture team
• Primary for performing Nutrien Threat and Risk Assessments on new initiatives
• Responsible to create and communicate a risk treatment plan to stakeholders highlighting any key risks that their initiative has and consulting with them as they work to remediate those risks
• Working as key team member on the Nutrien threat and risk teams to promote Nutrien\'s cyber security architecture across the enterprise
• Maintain a strong understanding of current Cyber Security risks and vulnerabilities. Keep abreast of new behaviours by adversaries to ensure Nutrien has strong detection and prevention capabilities in place
• Leads client engagement interviews to frame & size engagements (Triage) and develops/defines risks & opportunities for risk reduction for engagements
• Conduct peer reviews within the Cybersecurity Architecture team, client communication and risk assessments to ensure consistency
• Leads the development of new Cyber Security patterns, templates, processes, and documentation
• Keep in tune with respect to new techniques and approaches to mitigating threats
• The role is the senior cybersecurity position in North America and is part of the Global Nutrien Cybersecurity Team

What you will bring:

• Core Competencies/Experience:
• Previous Cybersecurity role at a medium to large organization
• Previous incident response, automation, and threat modelling experience
• A thorough knowledge of networking, security awareness, awareness of malicious activities on the internet
• Attention to detail and strong ability to determine root cause
• Experience in creating cyber security architecture documentation with primary focus on cloud capabilities and devops integration
• Experience in assessing solutions, across multiple technology stacks
• Ability to assess designs and identifying where potential risks exists within a proposed solution and provide control objectives that address the risk to a business acceptable level
• Must have an understanding of basic enterprise project management fundamentals
• The candidate needs to be able to read situational context and must be able to lead the cyber security architecture conversations with multiple layers of the business
• Must have an understanding of basic enterprise project management fundamentals
• Must have the ability to work as part of a larger global team while self-managing local workloads and priorities
• Must have extensive experience working with agile software development teams
• Must have the consistent attitude of having cyber security be an enabler for achieving business objectives
• Someone with ideas to help drive security architecture left in the SDLC with a focus on self-serve and automation
• A customer focused attitude that enables the business to operate effectively in a secure manner

• Post-secondary Degree or Technical Diploma is preferred and eight or more years of related experience
• Comprehensive and practical experience in performing security architecture and risk assessment roles
• Cyber security-related certifications like CISSP or CRISC are considered an asset but not mandatory
• Knowledge and experience of agile software development practices within a global organization
• Knowledge and experience of DevSecOps practices, tools, and culture
• Knowledge and experience implementing OWASP frameworks such as SAMM and DSOMM
• Experience in ISO 31000 and or other risk management frameworks
• Experience in ISO 27001/27002, SOC2 Type II control frameworks
• Knowledge of privacy compliance frameworks such as CCPA, LGPD, GDPR
• Knowledge and experience of cloud services such as serverless, containers, CICD pipelines, secure code management, security benchmarks, identity services etc
• Fluent in written and conversational English, and experience working as part of global team and time zones
• Ability to work independently within a global team & frameworks

Are you a good match? Apply today!The estimated salary that Indeed, Glassdoor and LinkedIn suggested does not represent Nutrien\'s compensation structure.Nutrien is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.This job will remain posted until filled. While we appreciate all applications we receive, only candidates under consideration will be contacted.To stay connected to us and for the latest job postings and news, follow us on: , andGROW WITH US. FEED THE FUTURE.At Nutrien, we never stop growing, because our world never does. Our size can help us weather a storm, but with that ability comes a great responsibility\xe2\x80\x94to our growers and customers, our employees and shareholders, our communities, and the planet.Not Ready To Apply?Stay connected by joining our network and we\'ll keep you informed about upcoming events and opportunities that match your interests.

Nutrien