Information Security Analyst

Job Description

<p>The Information Security Analyst supports the protection of Ontario's critical energy infrastructure by helping deliver secure, resilient technology solutions across the enterprise. Working within the Information and Technology Services division, this role contributes to the organization's cybersecurity strategy through policy development, access management, awareness programs, and incident response coordination.</p><p><br></p><p><b>Responsibilities:</b></p><ul><li>Assist in the design, implementation, and maintenance of enterprise security controls aligned with corporate standards and regulatory requirements.</li><li>Support the Identity and Access Management (IAM) program, including governance, process development, and stakeholder engagement.</li><li>Administer and monitor simulated phishing campaigns, awareness training, and metrics reporting to measure effectiveness.</li><li>Collect and analyze performance data for information security operations to identify control gaps and improvement opportunities.</li><li>Prepare reports and presentations highlighting risk trends, compliance status, and key findings for management review.</li><li>Participate in internal and external audits by gathering evidence, documenting results, and supporting corrective actions.</li><li>Contribute to security assessments, vulnerability reviews, and policy exception evaluations.</li><li>Stay current with emerging threats, cybersecurity technologies, and industry best practices.</li><li>Handle sensitive information with discretion, professionalism, and integrity.</li></ul><p><br></p><p><b>Qualifications:</b></p><ul><li>Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related discipline.</li><li>3-7 years of experience in information security operations, access management, or risk and compliance functions.</li><li>Working knowledge of cybersecurity frameworks, governance standards, and incident management processes.</li><li>Experience with Windows and UNIX systems, IAM tools, and security monitoring platforms.</li><li>Strong analytical and communication skills with the ability to translate technical data into actionable insights.</li><li>Relevant certifications such as CompTIA Security+, CISSP, or CISM are considered assets.</li></ul><p><br></p><p><b>What's Offered:</b></p><ul><li>Competitive compensation and benefits within a leading public-sector organization.</li><li>Defined benefit pension and extensive professional development opportunities.</li><li>A collaborative, mission-driven environment focused on securing Ontario's energy future.</li><li>Hybrid work model (3 days onsite per week) supporting flexibility and teamwork.</li></ul><p></p>