IT Analyst (Hybrid: Calgary, AB)Hybrid

• 1 Year Contract 
• Hybrid: 200, 425 - 1st Street SW, Calgary, Alberta, T2P 3L8

At Enbridge, our goal is to be the first-choice energy delivery company in North America and beyond—for customers, communities, investors, regulators and policymakers, and employees. 

To meet that goal, Enbridge is partnering with Raise—a leading recruitment firm that specializes in IT, Technical, and Engineering staffing.  

Together, Raise and Enbridge are building teams that are rising to meet the growing energy needs of North America. If you’re looking for a challenging role that will make the most of your skills while allowing you to make an impact, this is it.  

Enbridge is hiring a IT Analyst right now—when you apply, Raise will review your application within 48 hours and contact qualified applicants for interviews.  

About the Role:

We are seeking a highly skilled IT Analyst to join our team. With an in-depth knowledge of technology governance, risk, and compliance, you will support the Supervisor of TIS GRC in areas related to governance, risk management, and compliance activities. Your primary focus will include liaising and coordinating TIS risk and assurance engagements, monitoring the status of management action plans, and supporting risk assurance activities within GRC.

Key Responsibilities:

Governance:

• Configure and maintain governance, risk, and compliance capabilities within the team’s GRC application.
• Collect metrics, provide data assurance, and report related to the Cybersecurity Governance Program, including the Cybersecurity Control Framework and CISO exception reporting.
• Conduct control gap analysis and recommend improvements.
• Oversee and participate in the development and review of cybersecurity policies and standards.
• Update and track changes to policies and standards as identified by external requirements.
• Recommend and lead the creation of new controls or metrics to address specific security threats and regulatory requirements.

Risk:

• Ensure the Enterprise Risk Management process is followed for identifying, risk ranking, and tracking technology and cyber-related risks.
• Collaborate with the Security Advisory team to ensure risks are appropriately ranked and reviewed.
• Present GRC metrics to Cybersecurity and Business Unit Leadership.
• Track risks regularly and manage items efficiently with minimal overdue.
• Liaise with vendor SMEs to track application-related threats and risks.

Compliance:

• Support the Supervisor of Governance Risk and Compliance in key compliance areas, including Internal Audit, SOX, and Policy Compliance.
• Contribute to establishing common approaches for monitoring compliance efforts and remediation of control gaps.
• Act as a liaison and SME for managing technology-focused audits.
• Track audit remediation and management action plans with no overdue items.

Relationship Management:

• Engage with TIS control owners and SMEs to drive value and compliance within Enbridge.
• Serve as a key point of contact within TIS on risk remediation and propose/discuss risk responses.

Continuous Improvement:

• Provide recommendations for improving existing processes related to policies, standards, cybersecurity controls, and metrics.

Scope/Dimensions:

• Participate in providing recommendations for team objectives and measure success in accordance with TIS goals and Enbridge’s strategic direction.
• Work closely with TIS GRC staff to deliver consistent Governance, Risk, and Compliance functions.
• Independently execute processes and procedures to deliver GRC services within TIS.
• Contribute as part of a multi-disciplinary team ensuring Enbridge compliance goals are achieved.
• Develop and implement recommendations impacting critical TIS GRC matters.
• Convey specialized compliance knowledge across TIS and be recognized as an expert in governance and risk management.

Knowledge, Skills & Abilities:

Required:

• University degree in Computer Sciences, Engineering, Business, or related disciplines.
• Minimum of 5+ years of progressive hands-on experience in information security, IT governance, compliance, cybersecurity, audit/assurance, and risk management.
• Working knowledge of cybersecurity and risk management best practices.
• Ability to manage concurrent initiatives and conflicting priorities.
• Highly disciplined and professional in handling confidential information.
• Understanding of various compliance and quality assurance roles.
• Ability to interact effectively with personnel involved in policy, technical, operational, and program management work.
• Excellent communication skills, including technical and business writing, documentation, and presentation skills.

Preferred:

• Working knowledge of cyber policies and procedures.
• Familiarity with cybersecurity standards, frameworks, and regulations such as NIST, ISO 27001 and 27002, NERC, and SOX.
• Possession or pursuit of professional qualifications such as CISSP, CRISC, or CISA.

Working Conditions:

• Primarily office-based work environment.
• Occasional travel, approximately once every 6 months, usually to other Enbridge locations.
• High workload level due to the scope and breadth of the organization.
• Fast-paced environment demanding a high degree of accuracy within tight deadlines.

Please note: Successful applicants will be employees of Raise, working at Enbridge facilities with both Enbridge and contract employees.   

Applying with Raise  

Raise is an established IT and engineering hiring firm with over 60 years’ experience connecting talented candidates with meaningful work. When you apply, you’ll get more than just a chance at a great job—you’ll become part of a vast network of employers that are always changing. 

We value diversity and inclusion and encourage all qualified people to apply. If we can make this easier through accommodation in the recruitment process, please contact us at +1 800-567-9675 or ECTC@raiserecruiting.com

#ENBC