Cyber Security Specialist
Weir Marine Engineering - NETE
LaSalle, QC or Halifax, NS
Hybrid

Purpose of Role: The Cyber Security Specialist will be a member of the Information and Communication Systems Section and will play a central role in the development, application and review of cyber security process and technical security controls applicable to Royal Canadian Navy information technology systems that are being designed, tested and delivered by the organization.

Certifications, Licenses, Registrations, Special Skills:

Eligible to obtain a Government of Canada security clearance, which requires Canadian citizenship and 10 years of residence in Canada (MANDATORY). Please note all offers of employment are conditional upon obtaining a government of Canada security clearance to the level required by the function. The candidate must be a Canadian citizen and have lived in Canada for a minimum of 10 consecutive years .

Why choose Weir:
Be part of a global organization dedicated to building a better future: At Weir, the growing world depends on us. It depends on us constantly reinventing, quickly adapting and continually finding better, faster, more sustainable ways to access the resources it needs to thrive. And it depends on each of us doing the best work of our lives. It’s a big challenge – but it is exciting.
An opportunity to g row your own way: Everything moves fast in the dynamic world of Weir. This creates opportunities for us to take on new challenges, explore new areas, learn, progress and excel. Best of all, there is no set path that our people must take. Instead, everyone is given the support and freedom to tailor-make their own career and do the best work of their lives.
Feel empowered to be yourself and belong: Weir is a welcoming, inclusive place, where each individual’s contribution is recognized and all employees are encouraged to innovate, collaborate and be themselves. We continually focus on people and their wellbeing. We believe in fairness and choose to be honest, transparent and authentic in everything we do.

Key Responsibilities:

• S afety First: Demonstrate 100% commitment to our zero harm behaviors in support of our drive towards developing a world class safety culture.

• Become highly knowledgeable about DND policies, procedures and methodologies related to information systems security, including the Cyber Security and Risk Management Process (CSRMP), and Security Assessment and Authorization (SA&A)

• Develop customized processes, procedures and artefact templates for cyber security engineering based on top level DND policy instruments

• Champion the customized cyber security engineering processes by providing guidance to group members in the application of cyber security engineering principles to the system development life cycle process

• Become highly knowledgeable in DND’s Vulnerability Management Programme to develop and champion a vulnerability assessment and mitigation process to support system engineering efforts and operational systems

• Support technology product hardening efforts by providing guidance based on DISA, CIS and other recognized security agencies

• Produce conceptual illustrations, diagrams and technical artefact of security concepts and solution architectures

• Review and/or evaluate security documentation / deliverables produced by others

• Investigate and assess the security posture of existing or proposed systems, networks or communication systems, identifying potential gaps and vulnerabilities, and proposing more secure configurations or mitigation measures to address the identified gap areas and/or vulnerabilities

• Lead security related meetings and discussions with peers and clients in the area of cyber security engineering, product hardening and vulnerability management

• Prepare technical reports in English with the results of investigations and analysis

• Provide technical expertise and assistance to other team members and clients

Job Knowledge/Education and Qualifications:

• Any equivalent combination of education and experience will be considered for candidates that have the ability to perform the objectives above.

• Experience working in a client environment to assist in promoting system security engineering processes to build security into systems

• Experience in developing detailed security documentation for information systems in a commercial or government organization with detailed processes for managing and controlling information systems security risks

• Experience in conducting vulnerability assessments, penetration testing, as part of security engineering validation in support of overall vulnerability management processes would be an asset

• Experience interpreting and applying security compliance guidelines, such as STIGs

• Experience with DoD or DND security engineering processes for information systems would be an asset

• Knowledge of, and experience in, implementing ITSG-33 Risk Management Framework and/or the NIST Special Publication 800 Series Risk Management processes

• Knowledge of NIST 171, 172 and 53r5 would be an asset

• System engineering skills and experience would be an asset

• Recognized IT security certifications (e.g. CISSP, CISM and/or CISA) would be highly desirable

What we offer you:

Weir Marine Engineering (WME) has managed the Naval Engineering Test Establishment (NETE) on behalf of the Government of Canada since 1953. Through this association, WME has developed a unique capability to provide multidisciplinary engineering, testing and consulting services to government and industry.

Benefits

• Flexible, compressed work schedules, work from home or office

• Competitive compensation

• Vacation, personal days, holidays, and parental leaves

• Comprehensive Family Medical, Dental and Vision coverage as well as:

• A Wellness Spending Account to aid in your wellness journey

• Employee & Family Assistance Program (EFAP)

• Medical Travel Insurance

• A Registered Retirement Savings Plan that includes matching company contributions that also includes access to Financial Advisors providing investment advice and comprehensive financial planning

• Access to development resources to enhance your skills and/or advance your career including:

• Education Assistance Program

• Reimbursement for a professional membership

• Self-directed Mentoring

Under the Policy on COVID-19 Vaccination, new employees may be required to be fully vaccinated as a condition of employment, unless accommodated due to certified medical contraindications, religion, or other prohibited grounds under the Canadian Human Rights Act

Founded in 1871, Weir is a world leading engineering business with a purpose to make mining operations smarter, more efficient and sustainable. Thanks to Weir’s technology, our customers can produce essential metals and minerals using less energy, water and waste at lower cost. With the increasing need for metals and minerals for climate change solutions, Weir colleagues are playing their part in powering a low carbon future. We are a global family of 11,000 uniquely talented people in over 60 counties, inspiring each other to do the best work of our lives.

Weir is committed to an inclusive and diverse workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, veteran status, disability, age, or any other legally protected status.

For additional information about what it is like to work at Weir, please visit our Career Page and LinkedIn Life Page.