Cyber Security Specialist – Onsite

About Compugen Compugen is Canada's largest privately-owned Technology Ally. To innovate industries, transform businesses, connect communities, and drive meaningful change, we must think bigger, reach broader, and act bolder. Through knowledge, curiosity, and collaboration, Compugen helps organizations delivering experience by design. This is what it means to be human-centered and technology-enabled.

Dreaming, designing, and delivering isn't just a mantra for us — it's a way of life. We believe that technology is the conduit, but our people – they are the connection that truly makes the magic happen!

Our Culture We are a human-centered culture where we prioritize your well-being and are invested in helping you reach your fullest potential. We're not only focused on achieving our goals — we're dedicated to helping you achieve yours.

If you're relentlessly curious, driven to make a difference, and collaborative at the core, then you belong with us.

Position Overview: Compugen is seeking a Cyber Security Specialist for a 1 year contract working on site.

Key Responsibilities: The Cyber Security Specialist is responsible for the support to strengthen our overall cyber security posture through implementation and monitoring of advanced security controls across on prem and cloud environments. This role will ensure compliance with industry specific security frameworks and standards while proactively identifying and mitigating cybersecurity risks.

Incident Reports and Analysis: Detailed security incident investigation reports and post-incident lessons-learned documentation for any cybersecurity incidents.

• Vulnerability Assessment Reports: Regular vulnerability scan results and remediation tracking reports (utilizing Tenable One) to communicate risk levels and progress to stakeholders.
• Security Posture Metrics: Periodic security posture and compliance reports, including Azure Secure Score dashboards and other metrics, to inform management of the current state and improvements over time.
• Compliance Documentation: Documentation demonstrating alignment of security controls with NIST CSF, ISO 27001, and applicable CSA standards, to support regulatory audits and internal compliance requirements.
• Updated Security Artifacts: Up-to-date cybersecurity artifacts such as security policy documents, standard operating procedures, network diagrams, and system security plans for nuclear-related projects and systems.
  
  
  

Skills & Qualifications:

• University degree in Computer Science, Computer Engineering, Information Security or a related field; an equivalent combination of education and extensive professional experience in cybersecurity will be considered. At least 5 years of hands-on experience in IT security or cybersecurity operations, including involvement in security monitoring and incident response.
• One or more relevant professional security certifications are strongly desired – for example, CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), GIAC certifications (SANS Institute), or vendor-specific credentials such as Microsoft Certified: Azure Security Engineer Associate. These certifications demonstrate a depth of knowledge and commitment to ongoing professional development.
• Technical Expertise: Proven experience with cloud and enterprise security technologies – specifically Microsoft Azure, Microsoft Defender suite, Microsoft Sentinel (SIEM), and vulnerability management platforms (such as Tenable One). Demonstrated ability to configure and use these tools for threat detection, analysis, and automated response. Proficiency in PowerShell, JSON, Kusto Query (KQL), Logic Apps, or a similar language.
• Frameworks & Methodologies: Strong familiarity with industry cybersecurity frameworks and standards (e.g. NIST Cybersecurity Framework, ISO/IEC 27001/27002, and relevant CSA security standards). Knowledge of incident response methodologies and best practices for handling and managing cybersecurity incidents.
• Analytical Skills: Excellent analytical and problem-solving skills with the ability to assess complex systems for security risks. Capable of analyzing system logs, alerts, and forensic data across various sources (network, endpoint, cloud) to identify and resolve security issues.
• Communication & Teamwork: Strong verbal and written communication skills with an ability to articulate cybersecurity risks and strategies to both technical and non-technical stakeholders. Proven ability to work effectively in a collaborative team environment, contributing to collective goals and mentoring others in best practices.
• Industry Experience: Experience working in highly regulated or critical infrastructure environments (energy utilities, nuclear industry, etc.) is an asset. Familiarity with the unique cybersecurity challenges and regulatory requirements of industrial or power systems (including SCADA/ICS environments) will be beneficial.
• Security Clearance: Must be eligible to obtain and maintain a Government of Canada Level II (Secret) Security Clearance. This requires a comprehensive background check; the candidate must possess the personal reliability and integrity to meet federal security screening requirements. (Ref: Levels of security - Canada.ca)
  
  
  

Equity Statement At Compugen, we're committed to diversity, equity and inclusion, actively recruiting from all groups. We provide accommodation upon request to all applicants during the recruitment process. At Compugen, we believe that everyone deserves a seat at the table. If you require an accommodation, our People & Culture representative will work with you to meet your needs.

#ITR