51640 - Rexdale - Regular .
Hiring Salary Range: $110,500.00-143,000.00 / year
Hydro One is proud to be the largest electricity transmission and distribution provider in Ontario, serving nearly 1.5 million customers. We have a long history in the industry with our roots dating back over 110 years to 1906. Since then, we have worked to grow and evolve to meet the changing needs of our customers and communities across Ontario. Today, we’re focused on providing exceptional customer service and ensuring we are building safe communities where we live, work and play.
It’s an exciting time to join the team at Hydro One!
Job Function
The Manager, Cyber Security Governance is a key resource that will be responsible for contributing and executing a strategy roadmap that matures Acronym cyber security capabilities. The successful candidate will have knowledge of principles in cyber security policies and standards, and modern practices with a good understanding of governance
models that support the review and reporting of organizational risks. As a member a dedicated Cyber Security team, the Sr Manager, Cyber Security Governance works closely with senior leadership, team members and staff across Risk, Audit, Legal, HR, Fraud, Operations, and Infrastructure teams to ensure the organization is operating securely.
Accountabilities
1.Proactively lead the implementation of governance initiatives, providing technical and business advice, as well as insight on governance processes.
2.Preparing and maintaining risk register that identifies risk areas and themes to report on the activities for risks issues and remediation progress.
3.Enhancing and maintaining the security risk assessment framework.
4.Aligning and refining Cyber Security policies and standards with industry best practices, pertinent to regulations and standards bodies (NERC CIP, ISO 27001/2, PCI DSS, CIS, NIST Series)
5.Prepare, track, maintain and report risk acceptances and security exceptions.
6.Leverage expertise in Cyber Security Management to prepare and conduct security assessments for both planned initiatives and unplanned instances as required.
7.Weigh business needs against security concerns to help guide the business to make practical and informed risk decisions.
8.Review technical documents in line with company policies.
9.Report and measure through Metrics, the effectiveness of the technical controls (KPI/KRI) and propose compensating controls accordingly.
10.Proactively contribute to security governance initiatives, providing technical and business advice, as well as insight on management processes.
11.Implement and enforce the Cyber Security policies and standards with industry best practices, pertinent regulations and standards bodies (NERC CIP, ISO 27001/2, PCI DSS, CIS, NIST Series)
12.Support the development and documentation of security processes to support risk management activities across the lifecycle in the SDLC, vendor management office, project management office, risk acceptance.
13.Developing security requirements matrix mapped to organization’s policies and standards.
14.Examine and interpret requirement documents and architecture diagrams and determine security risks to the organization as required.
15.Collaborate with senior leaders and make informed, risk-based recommendations to enhance the security posture of the organization, products and services.
16.Weigh business needs against security concerns to help guide the business to make practical and informed risk decisions.
17.Participate and support security related initiatives and serve as a key interface with external and internal auditors for security compliance related activities.
18.Keep abreast of the cybersecurity threats and assess their potential impact to Hydro One's security posture.
19.Lead and manage a team of [number of people] to achieve business objectives and goals.
20.Provide guidance, support, and mentorship to team members to help them develop their skills and reach their full potential.
21.Set performance expectations and goals for team members, and regularly provide feedback on their progress towards meeting those expectations.
22.Manage the recruitment, onboarding, and training of new team members.
23.Foster a positive and collaborative team environment that encourages open communication and teamwork.
24.Identify and address any issues or conflicts within the team, and work to resolve them in a timely and effective manner.
25.Collaborate with other teams and departments to ensure alignment and efficient execution of company initiatives.
26.Develop and implement strategies to improve team performance, productivity, and engagement.
27.Ensure compliance with company policies, procedures, and regulations.
28.Conduct regular performance reviews and assessments, and make recommendations for promotions, transfers, or disciplinary actions as needed.
Qualifications & Experience
1.Bachelor's degree in computer science, information security, or a related field.
2.Minimum 7 years in Cyber Security leadership/senior management/senior roles, preferably within the electric/energy utility sector or other large/multi-national organization.
3.Security certification of one or more of the following: CISSP, CISA, CISM or other security certification
4.Strong knowledge of industry standards and best practices for cyber risk management, including NIST, ISO, and COBIT.
5.Demonstrated ability to build and implement new processes for governance frameworks and processes.
6.Experience in consulting stakeholders with complex business transformation, technical advisory, and cyber risk strategy underpinned by a deeper subject matter expertise in one or more cybersecurity domains.
7.Consistent record of developing and improving the security posture of enterprise and ICS/OT organization.
8.Strong leadership and analytical skills with a record of people development and technical delivery.
9.Maintain in-depth awareness and understanding of current and emerging cyber security threat, risk and trends.
10.Background in NERC CIP, CSAE3416 SOC 2, PCI DSS, and ITIL is an asset.
11.Excellent communication skills, both verbal and written.
12.Ability to collaborate effectively with cross-functional teams.
At Hydro One we understand that the success and strength of our business rests with our people. When we develop their skills, we are investing in both their success and ours. To secure the best talent, we seek to create a workforce that reflects the diverse populations of the communities where we live and work and to create a culture based on safety, innovation and inclusiveness.
We are honoured to be recognized by Forbes in its list of Canada’s Best Employers for 2026.
Thank you for considering a career with Hydro One, we welcome applications from all qualified candidates. If you are having difficulty using our online application system and you need an accommodation due to a disability, please email careers@hydroone.com. Hydro One will provide reasonable accommodation for qualified individuals with disabilities in the job application process.
Please note this email is only for accommodation requests. Resumes sent to this email address will not be considered.
"Employer of the year 2026"
Deadline: May 26, 2026.
The base salary for this role considers a variety of factors, including candidates' knowledge, skills, experience, education, and any applicable collective agreement requirements for union-represented positions. Hydro One provides an extensive offering of programs to promote a culture of safety, wellbeing, inclusivity, and sustainability to enable our employees to be the best version of themselves. For management roles, compensation is based on the principle of pay-for performance compensation philosophy, and the amount of annual adjustments and incentive payments depends on how well you and the company perform (subject to plan terms). We encourage open dialogue about compensation with our Talent Acquisition Team, who can provide more detailed information specific to this role.
This posting is for an existing vacancy.
Hydro One uses AI tools to assist in the screening and assessing candidates for this role. Our use of AI does not replace human decision-making.
In the event you are experiencing difficulties applying to this job please consult our help page here.
We thank all applicants for their interest in a career at Hydro One; however, only those candidates who are selected for an interview will be contacted.