Security Analyst (Risk Assessment & Architecture)

Date November 24 2025

Location Mississauga ON Hybrid

Requisition ID 20370

StatusRegular

Business UnitInformation and Technology Services

Why join us

The IESO is committed to ensuring Ontarios electricity system meets the provinces needs today and into the future. We are charged with purpose delivering reliable affordable and sustainable electricity for homes businesses and communities across the province. We are energized to grow embracing opportunities to shape the future of a dynamic and evolving energy sector while advancing our careers. We are powered by teamwork supported by diverse and passionate colleagues who foster respect celebrate successes and thrive on shared achievements. At the IESO its not just what we doits who we are!

Who we are

Our central role includes managing the provincial power grid in real-time overseeing and evolving Ontarios electricity market engaging with government municipalities and Indigenous communities and planning for Ontarios future electricity needs. Our employees play a key role in driving grid innovation protecting the system from threats advancing the provinces energy conservation programs and forecasting and procuring the electricity resources well need in the decades to come.

This role is a part of

• The Security Analyst under the direction of the Supervisor Security Architecture and Risk will be part of the team responsible for IESOs information security architecture threat and risk assessment and vulnerability management programs.
• They will participate with project teams as an InfoSec subject matter expert throughout the project lifecycle.
• Working with various IESO teams they will collect data analyze information and conduct threat and risk assessment reports on projects IT procurements and vendor risk assessments.
• Information and Technology Services - unionized

What makes this role exciting

The energy sector is rapidly evolving offering exciting new opportunities for those who want to make a difference.

• The Security Analyst will coordinate plan and/or organize the response to a detected cybersecurity issue within the IESO and the Ontario electricity industry. This function will work with the Security OperationsSecurity Architecture Security Technology Access Management and Threat/Vulnerability and Risk Teamsand our security providers including our government security partners. This function is the first point of technical contact in the organization around cyber security operations. This is a critical role in the identification of cyber incidents.

What youll do

In this role youll make a meaningful impact by contributing to the IESO team and supporting the electricity needs of the province through:

• Oversee/monitor access logs and privileges.
• Contribute to the development of Information Security standards and procedures for business units consistent with corporate security objectives and generally accepted and leading edge Information Security practices and professional security standards and in coordination with IT Process Development Leaders and the Senior Manager Information Security.
• Support the delivery of theSecurity Operations and Technology programs for applications tools anti-virus encryption and fire walls implementation support identification of system vulnerabilities User and Entity Behaviour Analysis system assessments Information Security advice and consultation business resumption planning and disaster recovery planning.
• Provide input to supervision on all areas of Information Security.
• Contribute to the development/delivery of awareness training and general Information Security education.
• Provide strategic operational and technical insight to ensure the IESO Security program is adequately prepared to detect current and future threats
• Review and modify in conjunction with the Threat/Risk and Governance Teams the security technology rules and filters to better detect and prevent security incidents. As part of this change formal review and documentation of the change will need to take place to prevent outages or detrimental system impact
• Create and implement the automation routines and information collection and identification tools for security correlation purposes
• Identification and formallyrevieredundant monitoring tasks redundant security event analysis or data duplication on collection tasks to streamline and free up system resources. Where Reduction occurs documentation will need to be developed explaining the proposed solution
• Monitor and ensure Service Provider is empowered to review the security data feeds among the various servers applications and networks within relevant processes
• Document and review with other SOC analysts at the Service Provider the interactions of the filters rules and matching routines and security applications within the deployed security technologies.
• Assist through strong documentation and communications skills the Service Provider SOC analysts in explaining the solutions that were developed designed and implemented to security operations and non-security operations personnel
• Keep up-to-date on the latest security information pertaining to the SOC technology in order to validate the security capabilities of the SOC
• Keep up-to-date on the vulnerability of appliances servers OS application etc. of the SOC
• Conduct the installation operation and management of approved security tools and applications to provide security information security event relationship and security event analytical tools for the SOC analysts
• Participate in improvement efforts to gather analyze and define security operations and information security requirements for a variety of threat and vulnerability management issues
• Perform product evaluations and recommendations. The analyst may be asked to choose security products and services to implement and plan the implementation based on industry best-practices or procedures in relationship to the SOC

In a typical day you will

• Develop document and present general and technical presentations
• First point of contact from Service provider during business hours.
• Provide leadership and insight for the security monitoring and security incident investigation and response personnel
• Handle confidentiality issues requiring high level of trust and integrity
• Perform other duties/tasks/projects as required or assigned.

Role Requirements

Our team consists of experts from diverse backgrounds each bringing their unique perspectives and skills.

To succeed in this role youll need:

Education:

• Requires a sound knowledge of computer science information technology and telecommunications systems.
• Good written and oral communication skills in order to deal with end-users review/input on procedures standards and/or methods; and design/deliver training.
• This knowledge is considered to be normally acquired either through the successful completion of a university degree in the area of Computer Science or related discipline or equivalent.

Experience:

• Experience in conducting threat and risk assessments.
• Experience coordinating/analyzing enterprise security systems or components of the security program on a diverse set of computing platforms operating systems and applications especially Windows NT and UNIX.
• Experience with networking productslarge package and systems implementation. Previous experience as part of a large multi-disciplined project and with systems vendors which requires having sound project management skills
• A period of over 4 years up to and including 6 years is considered necessary to gain this experience.

How We Support You

From a comprehensive total rewards program to dynamic learning and development opportunitiesincluding job rotations to broaden your expertisewe empower you to define and shape your own success. When you join the IESO heres what you can expect:

• Best-in-class benefits and long-term support in the form of a defined benefit pension plan.
• A commitment to flexibility as we currently support a hybrid model where applicable that supports a blend of remote and in-office work based on business needs. Participating employees typically work in-office a minimum of four days and work remotely up to six days over a two-week period with a goal of maximizing in-office time through the use of established team days.
• Work in a dynamic and evolving sector that offers exciting opportunities and the chance to explore new career paths.
• Leadership that values meaningful discussions welcomes feedback and prioritizes career development.
• A strong inclusive culture and a collaborative team environment with a shared passion for impactful work.
• Compensation packages that are regularly reviewed to remain competitive and to best accommodate the diverse needs of our employees.

Thank you for your interest in a career at the IESO. Only candidates selected for an interview will be contacted. Please note that the successful candidate must be legally eligible to work in Canada and will be subject to applicable background checks.

IESO will not conduct interviews or offer positions via online text chat or social media platforms. We will not gather personal information directly from candidates or potential candidates. Selected candidates will work with our Talent Acquisition team to ensure their application is processed.

We believe in opportunities for everyone.

At the IESO we know that achieving great results depends on embracing diversity by attracting developing and retaining people from a wide variety of backgrounds. We do this by ensuring our recruitment and advancement policies are fair and equitable and by creating an accessible and inclusive environmentone that values every team members unique skills and experiences and ensures they have the support they need to achieve their potential. If you require accommodation during the recruitment process please let us know.

Were proud to say weve been recognized as a supportive inclusive employer.