Intermediate Enterprise Security Compliance Specialist to ensure secure operations, enable robust cyber compliance, and align with industry standards (1952

Our large, enterprise Oil & Gas industry client is seeking an Intermediate Enterprise Security Compliance Specialist to ensure secure operations, enable robust cyber compliance, and align with industry standards.

This is an initial 1-year contract with a possibility of extension (January start). The successful candidate will be based in Calgary and agreeable to a hybrid working model in downtown Calgary (3 days in office/week).

Must-Haves:

• 4+ years' of Cybersecurity experience within compliance and governance
• Experience managing a Governance, Risk and Compliance (GRC) tool, ideally ServiceNow GRC
• Demonstrated experience evaluating cloud security posture by assessing adherence to secure configuration best practices (Azure, AWS)
• Familiar with TCP/IP, WAN/LAN concepts, operating systems, and firewall security policies

Nice-to-Haves:

• ICS/ SCADA experience
• Oil and Gas sector industry experience
• Cybersecurity compliance certifications

Responsibilities Overview:

• Assess and report on cybersecurity compliance across the enterprise organization
• Conduct internal cybersecurity audits
• Evaluate security controls for design and operating effectiveness
• Lead compliance attestation processes by assessing requirements against business portfolios and integrating conformance data from security tools
• Manage non-conformance by triaging new issues, coordinating follow-up for updates, and validating remediation actions prior to closure
• Drive automation of security controls with a focus on continuous monitoring
• Develop scripts to automate manual tasks and processes
• Enhance ServiceNow GRC Compliance features, including integration with Governance and Risk areas and management of non-conformances