Cyber Security Specialist

Status:

Regular Full Time

Working Conditions:

Hybrid

Education Level:

Four (4) years of university in an appropriate field such as Computer Science or Software Engineering, plus one (1) year of further concentrated study in cybersecurity programs

Base Location:

Oshawa, ON

Shift(s):

Days

Travel:

10%

Deadline to Apply:

May 18, 2026

Salary Range:

$1,704.68 - $2,751.93 Per Week

Job Overview Ontario Power Generation (OPG) is seeking a dynamic and results‑driven professional to join our team in the role of

Cyber Security Specialist , with a focus on

Vulnerability Management and Threat Exposure .

Reporting to the Manager, Cyber Security IT/OT, this position supports vulnerability management activities across OPG’s IT environment. The role contributes to vulnerability identification, analysis, prioritization, remediation coordination, and reporting, leveraging approved vulnerability management tools and threat intelligence to inform risk‑based decision‑making.

This position operates within the Cyber Security Specialist classification and contributes to Cyber Security Operations by providing vulnerability analysis and cyber threat exposure management support. The role works collaboratively with internal stakeholders to support alignment with organizational objectives, risk management practices, and compliance requirements.

Key Accountabilities

Support internal and external vulnerability scanning activities for operating systems and applications using approved vulnerability management platforms.

Analyze vulnerability findings to assess severity, exploitability, exposure, and potential business impact beyond raw scan results.

Incorporate threat intelligence, active exploitation trends, and known attack techniques to inform vulnerability prioritization and triage decisions.

Correlate vulnerability findings with asset criticality, exposure (internet‑facing versus internal), environment (SaaS versus on‑premises), threat advisories, and sector‑relevant threat activity to support exposure‑based risk assessment.

Triage vulnerability findings, including validation of results, identification of false positives, and clarification of remediation context.

Engage with application, infrastructure, and service owners to support remediation planning and timelines by providing technical insight and risk rationale.

Track vulnerability remediation status and maintain accurate records to support reporting, audit, and assurance requirements.

Prepare vulnerability and exposure posture reports and dashboards covering trends, remediation progress, backlog aging, and risk exposure for technical and management stakeholders.

Support the effectiveness of integrations between vulnerability management tools and enterprise systems (e.g., service management, asset inventory, security monitoring) by validating data quality and workflow outcomes.

Contribute to the continuous improvement of vulnerability and threat exposure management processes, metrics, and operating practices.

Provide technical input to support audits, risk assessments, and incident response activities, as required.

Qualifications

Bachelor’s degree in Computer Science, Software Engineering, or a related field, with additional focused study in cybersecurity.

Progressive experience supporting vulnerability management, threat analysis, or security operations within an enterprise IT environment.

Working knowledge of vulnerability assessment methodologies, CVSS scoring concepts, threat exploitation patterns, and risk analysis.

Demonstrated experience analyzing and validating vulnerability scan results and applying threat context to prioritize response actions.

Strong analytical, collaboration, and documentation skills, with the ability to communicate technical and exposure‑based risk clearly to both technical teams and management.

The successful candidate will exhibit uncompromising integrity and a strong commitment to upholding corporate values and the OPG Code of Business Conduct.

OPG is committed to fostering an inclusive, equitable, and accessible environment. If you require accommodation during the selection process, please contact

AODA@opg.com .

OPG is committed to employment equity. As such, we encourage applicants from equity‑seeking communities (Indigenous Peoples, racialized persons, persons with disabilities, and women). We strongly believe that alleviating the under‑representation of equity‑seeking individuals will create a stronger OPG team and allow us to better serve the needs of our diverse communities.

In order to fulfill the above‑mentioned purpose, priority in hiring may be given to qualified persons who self‑identify as a member of equity‑seeking groups as identified in the application process. This initiative constitutes a special program under the Human Rights Code/Canadian Human Rights Act.

#J-18808-Ljbffr