Cybersecurity Architect (Hybrid)

Job ID : 3186

Closing Date : 12/27/2024

This position could be located in the following location(s): NOVA Head Office - Calgary, AB; Manufacturing East Region - Sarnia, ON; Pittsburgh Corporate Admin - Pittsburgh, PA; Red Deer Executive Place - Red Deer, AB

• This position provides the option to work from home on Mondays and Fridays each week, with the requirement to report to the primary NOVA Chemicals work location on Tuesdays through Thursdays. Employees can opt out of the hybrid schedule and will be expected to work Monday-Friday from the primary work location.

Who We Are:

At NOVA Chemicals we are reshaping plastics for a better, more sustainable world. Our dedicated team of talented individuals works collaboratively to create circular plastic solutions that make everyday life safer, healthier and better. With a focus on safety, social responsibility, and environmental stewardship, we strive to constantly improve and shape the future of our industry. Join our team of talented professionals who are passionate about making a difference and be a part of our journey towards sustainability leadership. Together we can create a better, more circular tomorrow.

NOVA Chemicals, headquartered in Calgary, Alberta, Canada, is wholly-owned by Mubadala Investment Company of the Emirate of Abu Dhabi, United Arab Emirates.

We are seeking a Cybersecurity Architect to join our Cybersecurity department. In this role you will play an integral role in defining and assessing NOVA Chemicals' security strategy, architecture and practices. You will be responsible for effectively translating business objectives and risk management strategies into specific security processes enabled by security technologies and services.

You Will Use Your Expertise To:

• Develop and maintain security architecture aligned with business, technology, and threat drivers.
• Create security strategy plans and roadmaps for cloud and on-premise infrastructure.
• Develop and maintain security artifacts (models, templates, standards, procedures).
• Set baseline security standards for OS, network segmentation, and IAM.
• Draft security procedures and standards for executive approval.
• Conduct security reviews, identify gaps, and develop risk management plans.
• Stay updated on security technologies, trends, and best practices.
• Validate IT infrastructure for security best practices and recommend improvements.
• Facilitate threat modeling for services and applications.
• Coordinate with DevOps for secure coding practices.
• Review network segmentation for least privilege access.
• Evaluate security technologies, tools, and services, and make recommendations.
• Document the impact of new systems on current security posture.
• Conduct security assessments of vendors with the vendor management team.
• Share best practices with other architects and security practitioners.
• Validate security practices with the business continuity management team during failovers.
• Provide security planning and system integration advice for projects.
• Review and evaluate security-related controls with the internal audit team.

What We Are Looking For:

• Bachelor's degree in computer science, information systems, cybersecurity or equivalent with typically 10+ years related experience and continued professional development.
• Certifications: ISC2's CISSP, ISACA's CISA, The Open Group's TOGAF, SANS' GAIC.
• Experience with architecture methodologies: SABSA, Zachman, TOGAF.
• Hands-on experience with security infrastructure: firewalls, IPSs, WAFs, endpoint protection, SIEM, log management.
• Knowledge of vulnerability management tools and practices.
• Experience in threat modeling for new applications and services.
• Experience securing the deployment of applications and infrastructure into cloud.
• Full-stack IT infrastructure knowledge: applications, databases, OS (Windows, Unix, Linux), hypervisors, IP networks (WAN, LAN), storage networks (Fibre Channel, iSCSI, NAS), backup networks, containers.
• Experience with IAM technologies and services.
• Knowledge of OT/ICS is a plus.
• IT service management skills: change, security, configuration, asset, incident, problem management.
• Strategic planning to develop security roadmaps.
• Communication skills to translate security matters into business terms.
• Financial analysis for evaluating security technologies.
• Project management for security service and technology deployments.

​​​​​​​

You Can Stand Out If:

• You are passionate about your work and put care and thought into all that you do.
• You are responsible and follow through with your commitments to others and to safety.
• You are innovative and are willing to challenge your biases when problem solving.
• You are collaborative, inclusive, and work well with others towards team goals.

Additional Information:

• Relocation will be considered to the nearest geographical NOVA Chemicals' location for this position
• Compensation will be commensurate with education and experience
• This role requires up to 25% travel and the successful candidate must be eligible to travel easily between Canada and the United States
• The successful candidate is required to provide proof of a valid driver's license

Why NOVA Chemicals?

NOVA Chemicals' flexible benefit programs are designed to meet the diverse needs of our employees, because when it comes to benefits, everyone has different priorities. Our benefits offerings will vary based on your work location, and are an element of the "Total Rewards" package used to reward employees.

Check Us Out Online:

• Visit our NOVA Chemicals' website
• Follow us on X, YouTube, and Instagram for company news.
• Follow us on LinkedIn and Glassdoor for job updates.

All qualified applicants will receive consideration for employment without regard to age race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.

Accommodations for job applicants with disabilities are available on request.