Industrial Cybersecurity Specialist

Summary

We are currently recruiting for an Industrial Cybersecurity Specialist to join the Industrial Networking & Cybersecurity (INC) practice within our Process Systems & Software Business Unit. This is a hybrid technical role – part advisor, part architect, part hands-on engineer. You will advise clients at the strategy and architecture level, lead the technical delivery of OT cybersecurity solutions in the field, and represent Spartan to client stakeholders from the plant floor to the executive suite.

You will work across our oil & gas, pipeline, power generation, and water/utility clients to design, deploy, and operationalize defensible OT cybersecurity outcomes – from network segmentation and industrial monitoring to data diode deployments and secure remote access. You will be equally comfortable presenting a risk-based business case to an executive sponsor and rolling up your sleeves to configure a threat monitor sensor, harden an industrial firewall, or commission a unidirectional gateway on a Friday night cutover.

This is a career-building opportunity for a pragmatic, customer-focused OT cybersecurity professional who wants to deliver real outcomes for Western Canada’s critical infrastructure operators alongside a leading employee-owned industrial automation partner. The successful candidate can be based out of Burnaby (BC), Calgary (AB), or Edmonton (AB), and will report to the Manager, Lifecycle Services. 

Role and Responsibilities

Business Development & Proposal Support

• Partner with sales and business development teams to identify, qualify, and pursue OT cybersecurity opportunities across Western Canada and the broader Spartan client base.
• Lead the technical components of proposals – scope definition, methodology, level-of-effort, dependencies, risk framing, and competitive differentiation.
• Present technical solutions, demonstrations, and proof-of-concept results to client stakeholders ranging from plant operations to executive sponsors.
• Translate technical risk into business language for non-technical decision-makers; surface deep technical detail credibly when the audience requires it.

Solution Architecture & Advisory

• Architect OT/ICS cybersecurity solutions including Purdue-aligned network segmentation, industrial monitoring, secure remote access, and unidirectional data exchange between OT and corporate IT.
• Develop client-specific security strategies, frameworks, and remediation roadmaps aligned with ISA/IEC 62443, NIST CSF, NERC CIP (for BES operators), and emerging Canadian regulatory frameworks including Bill C-8 (CCSPA), and CSA Z246.1.
• Conduct risk and vulnerability assessments, gap analyses, and threat modelling in industrial environments, with remediation guidance that accounts for operational constraints, legacy assets, and change-management realities.
• Advise clients and Spartan project teams on scope for network segmentation, threat/risk assessments, incident response readiness, and compliance management.

Technical Delivery & Implementation Leadership

• Lead the deployment, configuration, and commissioning of OT cybersecurity tooling – including threat monitoring systems, unidirectional gateways, industrial firewalls, and asset visibility platforms.
• Design and implement OT network architectures: VLAN segmentation, zone-and-conduit design, managed industrial switching, firewall rule sets, and secure data exchange between corporate and process control networks.
• Provide on-site technical leadership during commissioning, factory acceptance testing (FAT), site acceptance testing (SAT), validation, and operational handover.
• Produce client-ready deliverables: as-built drawings, network diagrams, configuration baselines, run books, and operator training material.
• Coordinate with Spartan automation, project, and execution teams to ensure cybersecurity scope is integrated cleanly into broader DCS, SCADA, and migration projects.

Customer Engagement & Industry Presence

• Represent Spartan at industry events, client workshops, lunch-and-learns, Spartan Experience, and partner webinars (Emerson, Dragos, Nozomi, Waterfall, OPSWAT, Fortinet, Cisco, HPE Aruba).
• Comfortable presenting in front of varied audiences – from operators and field technicians through to plant managers, OT/IT leadership, and C-suite stakeholders.
• Build long-term client trust through clear, defensible recommendations and consistent follow-through on delivery.

Mentorship & Practice Building

• Coach and develop more junior engineers and analysts on OT cybersecurity practices, tooling, and customer engagement.
• Contribute to internal methodology, templates, accelerators, and reusable assets that scale the INC practice.

Strategic Alignment

• Align engagements with Spartan’s INC growth strategy and the broader Process Systems & Software business unit objectives.
• Provide input on technical and commercial direction — ensuring Spartan’s OT cybersecurity offerings remain innovative, defensible, and competitive.

Qualifications and Skills

Required:

• Bachelor’s degree in Engineering, Computer Science, Cybersecurity, Applied Information Systems Technology, or related field (or equivalent industry experience).
• 7+ years in cybersecurity, networking, or industrial automation, with a minimum of 3 years hands-on in OT/ICS environments.
• Strong networking foundation — TCP/IP, routing, switching, VLANs, ACLs, firewall rule design, and familiarity with industrial protocols (Modbus TCP, OPC UA, EtherNet/IP, PROFINET, DNP3).
• Hands-on experience with at least one OT visibility or monitoring platform (Nozomi Networks, Dragos, Claroty, Tenable OT, or equivalent).
• Hands-on experience deploying or supporting industrial firewalls (Fortinet, Cisco, Palo Alto) and/or unidirectional gateways (Waterfall Security, OPSWAT or equivalent).
• Working knowledge of the Purdue Reference Model and ISA/IEC 62443 zone-and-conduit design.
• Familiarity with NIST CSF, ISA/IEC 62443, NERC CIP (where applicable to BES operators), and the Canadian OT regulatory landscape (Bill C-8 / CCSPA, Alberta Regulation 84/2024, CSA Z246.1, AER directives).
• Excellent written and verbal communication – proposal writing, technical documentation, executive briefings, and live customer presentations.
• Demonstrated comfort presenting in front of customer audiences (workshops, conferences, training sessions).
• Pragmatic, outcome-focused mindset: able to deliver defensible cybersecurity work within real-world customer constraints – legacy assets, narrow change windows, uptime requirements, and budget realities; without compromising on what matters.
• Strong problem-solving and analytical skills; able to triage ambiguity and define a workable path forward.
• Ability to manage multiple priorities and assignments concurrently across pursuit, delivery, and advisory work.
• Willingness to travel across Western Canada and occasionally to other North American client sites.
• Valid Class 5 driver’s license.
• Spartan is committed to providing a safe workplace for all employees. This position is classified as safety-sensitive, and as such, the successful candidate will be required to pass a pre-employment alcohol & drug test.

Preferred:

• Industry certifications such as GICSP, GRID, GCIP, GCIH, CISSP, ISA/IEC 62443 (Fundamentals or Specialist), Nozomi NCSE, Fortinet NSE, Cisco CCNA/CCNP, or Waterfall deployment training.
• Direct experience in oil & gas, pipelines, midstream, power generation, or municipal water/wastewater sectors.
• Familiarity with DeltaV, or other process control system platforms.
• Prior experience in a systems integrator, consulting firm, or asset owner-operator OT cybersecurity role.
• P.Eng or eligibility for registration in Alberta, BC, or Saskatchewan.

What We’re Really Looking For
Beyond the technical checklist, we want a teammate who:

• Believes security is achievable, not theatre – holds an optimistic but realistic view of what good OT cybersecurity looks like in operating facilities.
• Respects customer constraints and works with them to achieve their security objectives.
• Earns trust by following through and saying the hard thing early, not late.
• Moves comfortably between strategy and the rack; sometimes in the same day.
• Brings the entrepreneurial energy to help us grow the INC practice from a strong base into a category-leading offering.