Analyste​/spécialiste principal ou principale en cybersécurité

Ontario region pay information

This job posting is available in English only due to the location of publication.

The salary range for this position in Ontario is $100,000 to $150,000. The determination of an applicant’s base salary within this range is based on the individual’s location, skills and competencies, and unique qualifications.

To ensure our hiring process is transparent, we want to inform all applicants that we utilize Artificial Intelligence (AI) technologies, including those integrated into our recruitment vendors’ platforms. We are committed to an equitable process where applicants are evaluated based on job‑related knowledge, skills, and abilities. AI technologies do not replace human judgment in the candidate selection process. All final hiring decisions are made by our hiring managers and recruitment teams.

As a Senior OT Cyber Security Analyst/Specialist, you’ll lead cyber security Governance Risk and Compliance (GRC) activities for our clients. You’ll be responsible for gap analyses, risk assessments and management, creating standards and procedures, developing cyber security training materials and delivering organizational training as a Subject Matter Expert (SME). You’ll also have the opportunity to mentor junior team members, support business development and R&D efforts, and contribute to the ongoing refinement of cyber security processes and procedures.

• Mentor junior staff and coach them to follow Alithya processes and procedures (e.g., cyber forms, gap analyses, risk assessments);
• Review technical documentation (e.g., assessment, reports) prepared by other junior staff;
• Prepare cyber security documentation based on product/system-specific engineering documentation (e.g., manufacturing manuals, instrumentation and control (I&C), specifications, and network drawings);
• Contribute to improving processes and procedures of Alithya’s cyber practice;
• Contribute to sales initiatives, including attending conferences, writing proposals, estimating, and meeting with potential clients;
• Participate in cyber security research and development (R&D) activities, including software and hardware development;
• Perform Factory Acceptance Testing (FAT) and Site Acceptance Testing (SAT) as required with the ability to diagnose issues and communicate solutions effectively.

• Post‑secondary degree in Computer Science, Engineering, Information Security, or any related field;
• Cyber security‑specific certifications (e.g., GICSP, CISSP, ISA/IEC 62443);
• Minimum 8 years of experience working in the field of cyber security in operational technology (OT) environments in the industrial sector;
• Experience implementing CSA N290.7 standard, ISA/IEC 62443, NIST SP 800‑82, or NIST SP 800‑53;
• Experience with network architecture (e.g., network segmentation, security controls);
• Experience preparing client deliverables in the form of technical documentation;
• Ability to pass Level 2 Secret Security Clearance by the Government of Canada (Standard on Security Screening -  );
• Comfortable in client‑facing environments;
• High level of attention to detail.

• Experience in critical infrastructure sectors;
• Professional Engineering (P.Eng.) designation;
• Working knowledge of any of the following:
  • Harmonized Threat and Risk Assessment (HTRA) methodology;
  • Industrial Control Systems (ICS), computer Operating Systems (OS) and Virtual Machine (VM) technologies;
  • Purdue model;
  • ICS communication protocols, IC security components, physical and logical hardening controls.

• English:
  Proficient

If you need measures of adaptation, we encourage you to contact us at for more details.