Job Description
o Provide security requirements to projects and operational areas,based on Security Standards and best practice.o Identify security design gaps in existing and proposedarchitectures and recommend changes or enhancements in theform of threat/risk assessments.o Align standards, frameworks and security with overall businessand technology strategy.o Participate in identifying and collaborating with other projectstaff and Technology and Security experts on identifying suitablesolutionso Consult with Enterprise Architecture and Data Architecture onroadmaps, strategies and visionso Collaborate and share information, tools, priorities and processeso Develop Technology Roadmaps based on current/future statereference architecture vision and roadmapso Define standards, patterns and best practices to promotepredictable and consistent designso Create standardized forms or reusable artifactso Facilitate, contribute and/or minute regular meetings with otherproject staffo Utilize SaskPower’s information management systems, software,etc. to ensure vital contract and technical documents aremaintained.o Maintain knowledge of industry developments and best practicesrelated to area of specialization and adapt them to SaskPower’soperational environmentDeliverables/Quality of Service:• Security threat-risk assessments of current state and proposed solutions• Security Standards and re-usable security requirements• Security roadmaps and artifacts.• Critical Infrastructure reliability architecture specific to electrical utilities connected to Bulk Electric System (BES)• TRA reports on future recommendations (including budgetary information)• Contribution to concept, methodology, component definition, improvement• Contribution to industry directions and best practices• Contribution to documenting the current cyber security landscape and developing strategy (1-5 years)Desired Education/ CertificationsComputer Engineering / Computer Science degree or equivalentCISSP, SCCP, GIAC or similar security training.TOGAF certification is an assetDesired Experience :Experience in implementing Cloud Solutions (Azure/O365) would be an asset, as would experience in a utility or other critical Infrastructure.