Description

ABOUT THE ROLE

We are seeking a highly skilled and motivated Cybersecurity and Risk Specialist to join our team and play a critical role in safeguarding our organization's digital assets, systems, and sensitive information. As the Specialist, you will report directly to the Team Lead, Cybersecurity & Risk Management, and will work closely with the IT team and other stakeholders across the business. You will be responsible for sustaining and enhancing the cybersecurity and risk management program strategy, to help improve the overall security posture at TransAlta. Initially, this role will be primarily focused on supporting and driving our Supply Chain Risk Management project (i.e., Vendor security assessments). Long-term, the Specialist role will be responsible for providing guidance, and technical subject matter expertise to TransAlta's Cybersecurity and Risk Management program.

This role is based out of our Head Office in Downtown Calgary, with the flexibility of a hybrid work schedule.

WHAT YOU WILL DO

Cybersecurity, Risk Management & Compliance

Serve as a cybersecurity generalist and Subject Matter Expert (SME) by providing expertise and understanding of all aspects of the Cybersecurity Governance and Risk Management landscape (Including specific expertise around Supply Chain Risk Management).
Assist with the development and implementation of TransAlta's IT and Cybersecurity program, strategy, and roadmap, in alignment with industry-standard frameworks. (e.g., NIST CSF, CIS Controls) and business objectives.
Assist in the development and maintenance of corporate cybersecurity policies, standards, and procedures.
Support the risk evaluation and monitoring of third-party vendors by reviewing the appropriate governance and security controls, maintaining the documentation, and reporting risks or concerns to stakeholders.
Monitor, maintain, and ensure continuous improvement of the effectiveness of controls associated with TransAlta's assets.
Proactively understand, assess, and document key cybersecurity risks and implement relevant controls to mitigate identified risks.
Assist in establishing plans and protocols to protect TransAlta information and information systems against cyber threats and attacks.
Participate in the assessment, identification, and recommendation, and assist in the implementation of appropriate cyber security countermeasures.
Assists in the coordination of and participates in internal and external security audits.
Assist in cloud and third-party vendor security risk assessments as part of supply chain procurement and services risk management.
Develop and maintain positive relationships, instilling confidence and rapport with business stakeholders, IT/OT operations, and external vendors.

Cybersecurity Operations and Monitoring

Work with the CyberSOC team to monitor Threat Intelligence feeds, news, and indicators of compromise, providing advisory on risk treatment and response actions.
Work with internal and external stakeholders/customers to implement security initiatives and provide security advisory on different projects.
Assist in cybersecurity incident response activities as part of the incident management plan.
Assist in the management and enhancement of our cloud security services and infrastructure. (e.g., Microsoft 365, Azure).
Run cybersecurity training and awareness campaigns across the business, while developing new and innovative ways to improve the overall security awareness program.
Participate in ongoing internal and external audits and coordinate required compliance activities along with evidence collection.
Assist in the development and maintenance of cyber security metrics and Key Performance Indicators to demonstrate the progress and value proposition of cyber security.
Participate in the enterprise patch and vulnerability management process to ensure security patches and vulnerabilities identified within the organization, are appropriately managed and treated.
Participate in the performance of technical vulnerability scanning, assessments, analysis and assist in the determination of risk treatment options in collaboration with the patch and vulnerability management team.
Participate in all reasonable work activities as may be deemed suitable and assigned by management.

Read the full posting.

Contact

TransAlta Corporation

110 Twelfth Ave SW

Calgary

Alberta Canada

www.transalta.com

From the same organization

Development M&A Manager - TransAlta Corporation

2 Jul, 2025

Analyst, Corporate Financial Planning & Analysis - TransAlta Corporation

2 Jul, 2025

Risk Analyst, Commodities - TransAlta Corporation

2 Jul, 2025

MORE

Specialist, Cybersecurity & Risk

DIVERSIFIED ENERGY
Diversified Energy Demonstrates Innovation, Collaboration, and Responsibility in 2024 Sustainability Report

IBERDROLA
Iberdrola receives planning approval for Windanker offshore wind farm

TOTALENERGIES
Integrated Power: TotalEnergies Closes Three International Acquisitions of Renewable Portfolios

INTERNATIONAL RENEWABLE ENERGY AGENCY
The Success of Global Energy Transitions Starts with Early-Stage Project Financing

NORTHWEST TERRITORIES POWER CORPORATION
Taltson Hydro Unit Returns to Service Following Overhaul

2025 CGA CONFERENCE & EXPO

2025 SUMMIT “THE FUTURE OF HYDROPOWER – NAVIGATING RISKS, UNLOCKING POTENTIAL”

23RD EDITION OUTAGE RESILIENCE, RESPONSE AND RESTORATION MANAGEMENT CONFERENCE

2025 API PIPELINE CONFERENCE AND EXPO: PIPELINE, CONTROL ROOM AND CYBERNETICS

WORLD AI TECHNOLOGY EXPO 2025 DUBAI

Private zone

Privacy

Press

Subscription

Specialist, Cybersecurity & Risk

Private zone

Privacy

This website uses cookies