Sr. Cybersecurity Global Portfolio Architect
Saskatoon, SK, CA, S7K 5R6
Nutrien
As the world’s largest provider of crop inputs, services and solutions, Nutrien helps growers to increase food production in a sustainable manner.
At Nutrien, our purpose is Feeding the Future and we do so with safety, inclusion, integrity and results as our core values. Nothing is more important than sending our people home safe, every day.
Nutrien is a leading provider of agricultural products, services, and solutions. With over 26,000 employees world-wide, we are the largest producer of potash (by capacity) and one of the world’s largest producers of nitrogen and phosphate. We also operate a leading agriculture retail network that services over 500,000 growers globally.
We harvest the best. Diverse views and experience make us strong. We look for people who have a safety-first mindset, who are collaborative team players, who deliver on their commitments, act with integrity, and who support inclusion.
Working at Nutrien will provide you an opportunity to help us raise the expectation of what an agriculture company can be and grow your career.
The Senior Cybersecurity Global Portfolio Architect reports to Nutrien’s Chief Information Security Officer.
This role works in a dynamic and fast-paced environment and with cross-functional teams (cyber security, business projects, and IT). The Sr. Cybersecurity Global Portfolio Architect will engage in an internal threat risk service focused on assessing and managing cyber security risks with new technology solutions being considered, developed, bought, or implemented. Key duties will be to identify and expedite requests when business opportunities require accelerated assurance to cyber security safely deliver cutting edge technology and innovation.
The role is a key participant in global enterprise projects seeking to further automate, globalize and standardize. You’ll forge strong working relationships with other teams and individuals including security analysts, senior enterprise architects, risk assessors, project managers and business leads. The role will allow teams/individuals to understand their information and cyber risk and manage them within Nutrien’s risk appetite.
Additionally, the position will be responsible for providing the appropriate teams with guidance on cyber security issues that need to be remediated. The individual must be able to work with and leverage Nutrien global cybersecurity support teams and architecture to provide superior solutions and advice to multiple layers of the Nutrien business teams.
What you will do:
• Cyber Security Architecture Consultant for Nutrien working in close collaboration with the Nutrien Cyber Security Architecture team
• Primary for performing Nutrien Threat and Risk Assessments on new initiatives
• Responsible to create and communicate a risk treatment plan to stakeholders highlighting any key risks that their initiative has and consulting with them as they work to remediate those risks
• Working as key team member on the Nutrien threat and risk teams to promote Nutrien’s cyber security architecture across the enterprise
• Maintain a strong understanding of current Cyber Security risks and vulnerabilities. Keep abreast of new behaviours by adversaries to ensure Nutrien has strong detection and prevention capabilities in place
• Leads client engagement interviews to frame & size engagements (Triage) and develops/defines risks & opportunities for risk reduction for engagements
• Conduct peer reviews within the Cybersecurity Architecture team, client communication and risk assessments to ensure consistency
• Leads the development of new Cyber Security patterns, templates, processes, and documentation
• Keep in tune with respect to new techniques and approaches to mitigating threats
• The role is the senior cybersecurity position in North America and is part of the Global Nutrien Cybersecurity Team
What you will bring:
• Core Competencies/Experience:
- Previous Cybersecurity role at a medium to large organization
- Previous incident response, automation, and threat modelling experience
- A thorough knowledge of networking, security awareness, awareness of malicious activities on the internet
- Attention to detail and strong ability to determine root cause
- Experience in creating cyber security architecture documentation with primary focus on cloud capabilities and devops integration
- Experience in assessing solutions, across multiple technology stacks
- Ability to assess designs and identifying where potential risks exists within a proposed solution and provide control objectives that address the risk to a business acceptable level
- Must have an understanding of basic enterprise project management fundamentals
- The candidate needs to be able to read situational context and must be able to lead the cyber security architecture conversations with multiple layers of the business
- Must have an understanding of basic enterprise project management fundamentals
- Must have the ability to work as part of a larger global team while self-managing local workloads and priorities
- Must have extensive experience working with agile software development teams
- Must have the consistent attitude of having cyber security be an enabler for achieving business objectives
- Someone with ideas to help drive security architecture left in the SDLC with a focus on self-serve and automation
- A customer focused attitude that enables the business to operate effectively in a secure manner
• Post-secondary Degree or Technical Diploma is preferred and eight or more years of related experience
• Comprehensive and practical experience in performing security architecture and risk assessment roles
• Cyber security-related certifications like CISSP or CRISC are considered an asset but not mandatory
• Knowledge and experience of agile software development practices within a global organization
• Knowledge and experience of DevSecOps practices, tools, and culture
• Knowledge and experience implementing OWASP frameworks such as SAMM and DSOMM
• Experience in ISO 31000 and or other risk management frameworks
• Experience in ISO 27001/27002, SOC2 Type II control frameworks
• Knowledge of privacy compliance frameworks such as CCPA, LGPD, GDPR
• Knowledge and experience of cloud services such as serverless, containers, CICD pipelines, secure code management, security benchmarks, identity services etc
• Fluent in written and conversational English, and experience working as part of global team and time zones
• Ability to work independently within a global team & frameworks
Are you a good match? Apply today!
The estimated salary that Indeed, Glassdoor and LinkedIn suggested does not represent Nutrien's compensation structure.
Nutrien is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.
This job will remain posted until filled. While we appreciate all applications we receive, only candidates under consideration will be contacted.
To stay connected to us and for the latest job postings and news, follow us on: LinkedIn, Facebook and Twitter
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation CCPA CISO CISSP Cloud Compliance CRISC DevOps DevSecOps GDPR Incident response ISO 27001 OWASP Privacy Risk assessment Risk management SAMM SDLC SOC 2 Vulnerabilities
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs