Apply now »

Security Analyst (Cyber Threat Intelligence)

 

Date: February 20, 2026

Location: Mississauga, ON – Hybrid

Requisition ID: 20830

Status: Regular

Business Unit: Information and Technology Services

Grade/Band: MP2

Shift Work: N/A

Annual Pay Range: For standard 35-hour work week

Pay Range: $97,708.00 - $139,568.00

 

The successful candidate will be placed at the appropriate step within the salary grade/band, based on relevant years of experience and other applicable considerations.

 

Why join us?

 

The IESO is committed to ensuring Ontario’s electricity system meets the province’s needs today and into the future. We are charged with purpose, delivering reliable, affordable, and sustainable electricity for homes, businesses, and communities across the province. We are energized to grow, embracing opportunities to shape the future of a dynamic and evolving energy sector while advancing our careers. We are powered by teamwork, supported by diverse and passionate colleagues who foster respect, celebrate successes, and thrive on shared achievements. At the IESO, it’s not just what we do—it’s who we are! 

 

Who we are

 

Our central role includes managing the provincial power grid in real-time, overseeing and evolving Ontario’s electricity market, engaging with government, municipalities and Indigenous communities, and planning for Ontario’s future electricity needs. Our employees play a key role in driving grid innovation, protecting the system from threats, advancing the province’s energy conservation programs, and forecasting and procuring the electricity resources we’ll need in the decades to come. 

 

This is a unionized position that falls within the Information Security Division in the Information and Technology Services.

 

What makes this role exciting

 

The energy sector is rapidly evolving, offering exciting new opportunities for those who want to make a difference.

 

  • Coordinate, plan and/or organize the response to a detected cybersecurity issue within the IESO and the Ontario electricity industry. This function will work with the Security Operations Management Analyst and the Security Technology Lead, and other security operations providers including our government security partners. This function is the first point of technical contact in the organization around cyber security operations. This is a critical role in the identification of cyber incidents.

 

What you’ll do

 

In this role, you’ll make a meaningful impact by contributing to the IESO team and supporting the electricity needs of the province through:

  • Oversee/monitor access logs and privileges.
  • Contribute to the development of Information Security standards and procedures for business units consistent with corporate security objectives and generally accepted and leading edge Information Security practices and professional security standards and in coordination with IT Process Development Leaders and the Information Security Manager.
  • Support the delivery of the Information Security Operations and Technology programs for applications, tools, anti-virus, encryption and fire walls, implementation support, identification of system vulnerabilities, system assessments, Information Security advice and consultation, business resumption planning and disaster recovery planning.
  • Provide input to supervision on all areas of Information Security.
  • Contribute to the development/delivery of awareness training and general Information Security education.
  • Provide strategic, operational, and technical insight to ensure the IESO Security program is adequately prepared to detect current and future threats
  • Review and modify, in conjunction with the Threat Intelligence & Analysis Advisor, the security technology rules and filters to better detect and prevent security incidents. As part of this change, formal review and documentation of the change will need to take place to prevent outages or detrimental system impact
  • Create and Implement the automation routines and information collection and identification tools for security correlation purposes
  • The identification and formal review of redundant monitoring tasks, redundant security event analysis or data duplication on collection tasks to streamline and free up system resources. Where “Reduction” occurs documentation will need to be developed explaining the proposed solution
  • Monitor and ensure Service Provider is empowered to review the security data feeds among the various servers, applications and networks within relevant processes
  • Document and review with other SOC analysts at the Service Provider the interactions of the filters, rules and matching routines and security applications within the deployed security technologies.
  • Assist, through strong documentation and communications skills, the Service Provider SOC analysts in explaining the solutions that were developed, designed and implemented to security operations and non-security operations personnel
  • Keep up-to-date on the latest security information pertaining to the SOC technology in order to validate the security capabilities of the SOC

 

In a typical day, you will

 

  • Review, assess and analyze intelligence to support the IESO’s Cyber Threat Intelligence team and cyber security programs.
  • Deliver and support information security technologies and programs.
  • Review and update deliverables to ensure they meet the highest standards.
  • Work with business units to identify opportunities for collaboration and growth of the cyber security and cyber intelligence programs.
  • Collaborate internally with technology, cyber security, and other business units to support and enhance job functions.
  • Perform other duties/tasks/projects as required or assigned. 

 

Role Requirements

 

Our team consists of experts from diverse backgrounds, each bringing their unique perspectives and skills. 


To succeed in this role, you’ll need: 

 

Education:

  • Requires a sound knowledge of computer science, information technology and telecommunications systems.
  • Good written and oral communication skills, in order to deal with end-users, review/input on procedures, standards and/or methods; and design/deliver training.
  • Bachelor's Degree in Computer Science, Information Technology, or a degree in an intelligence-related field (Political Science, Public Safety, Law Enforcement, etc.).

 

Experience:

  • Requires experience coordinating/analyzing enterprise security systems on a diverse set of computing platforms, operating systems and applications, especially Windows NT and UNIX.
  • Experience with networking products, large package and systems implementation.  Previous experience as part of a large multi-disciplined project, and with systems vendors, which requires having sound project management skills.
  • A period of over 4 years, up to and including 6 years is considered necessary to gain this experience.

 

 

How We Support You

 

From a comprehensive total rewards program to dynamic learning and development opportunities—including job rotations to broaden your expertise—we empower you to define and shape your own success. When you join the IESO, here’s what you can expect:

 

  • Best-in-class benefits and long-term support in the form of a defined benefit pension plan. 
  • Work in a dynamic and evolving sector that offers exciting opportunities and the chance to explore new career paths.
  • Leadership that values meaningful discussions, welcomes feedback, and prioritizes career development. 
  • A strong, inclusive culture and a collaborative team environment with a shared passion for impactful work.
  • Compensation packages that are regularly reviewed to remain competitive and to best accommodate the diverse needs of our employees. 

 

Deadline: March 9, 2026 at 11:59PM

 

For future reference, please save a copy of the job posting as it will no longer be available once the posting closes.

 

Thank you for your interest in a career at the IESO. Only candidates selected for an interview will be contacted. Please note that the successful candidate must be legally eligible to work in Canada and will be subject to applicable background checks. 

 

IESO will not conduct interviews or offer positions via online, text, chat or social media platforms. We will not gather personal information directly from candidates or potential candidates. Selected candidates will work with our Talent Acquisition team to ensure their application is processed.

 

The IESO currently has a 3-day in-office work week for applicable roles. Over the course of 2026, the IESO will advance plans to acquire additional office space to accommodate more in-office time. While the timeline for moving to a full 5-day in-office model has not yet been established, we are committed to keeping employees and candidates informed as plans progress and give them as much advance notice as possible to prepare for any changes. 

 

We believe in opportunities for everyone. 

 

At the IESO, we know that achieving great results depends on embracing diversity by attracting, developing, and retaining people from a wide variety of backgrounds. We do this by ensuring our recruitment and advancement policies are fair and equitable, and by creating an accessible and inclusive environment—one that values every team member’s unique skills and experiences and ensures they have the support they need to achieve their potential. If you require accommodation during the recruitment process, please let us know. We’re proud to say we’ve been recognized as a supportive, inclusive employer. 

 

Be sure to follow us on LinkedIn.

 

Apply now »