Cyber security Operations Analyst I

ENMAX • Full-time • Calgary, AB, CA • 21h ago

Current ENMAX employees are encouraged to apply through their internal Workday access.

Posted: February 4, 2026

Closing Date: February 15, 2026

Position Type: Permanent

Union: CUPE

Why ENMAX?

We are driven by our purpose of lighting the way to a brighter energy future, a future that includes a workplace where you’ll experience belonging and unlock possibilities. We offer meaningful opportunities, strong collaboration and a career aligned to what matters to you. We’re proud of who we are and the work we do to support our communities and customers who depend on us, because at ENMAX, we’re lighting the way together.

The Cybersecurity Operations Analyst I will play a crucial role as the first line of defense in enhancing cybersecurity posture and protecting ENMAX from emerging cyber threats. This position entails monitoring, identifying, analyzing, and responding to cybersecurity events across the enterprise, ensuring a timely detection and effective containment of suspicious activities.

The analyst will support the development of role-based cybersecurity training and the maintenance of the overall awareness program. Additionally, the analyst will maintain the cybersecurity’s operational and enterprise KPI metrics, develop and/or update Standard Operating Procedures(SOPs), and support the Vulnerability Management program.

Major Responsibilities

Monitor and respond to cyber security events, incidents, and requests through resolution. Ensure that any unresolved issues are escalated promptly.
Conduct timely triage and investigation of unusual system and network activities by utilizing alert data collected from various cybersecurity tools, including EDRs, firewalls, IDS/IPS, and other log sources.
Monitor and maintain cybersecurity defense controls to ensure their effectiveness in providing comprehensive asset visibility and protection.
Utilize insights from emerging threat patterns to design innovative and effective enterprise-wide and targeted cybersecurity awareness initiatives.
Facilitate the development and delivery of role-specific cybersecurity awareness training programs enterprise wide to educate employees and contractors on security best practices for cyber threats prevention.
Assist with evaluating, identifying, recommending, and implementing suitable cyber security countermeasures.
Provide support for the Vulnerability Management (VM) program, encompassing activities such as scanning, risk-based prioritization, and post-remediation validation, in collaboration with IT and business stakeholders.
Support the validation of security controls, update and maintain operational documentation, and provide compliance reports.
Regularly review new trends and emerging technologies to identify and suggest improvements to controls.
Participate in Incident Response preparedness activities, which include updating Incident Plans and playbooks, as well as engaging in cyber technical tabletop exercises (TTXs).
Maintain and provide regular reports on cybersecurity operational and enterprise KPI metrics.
Perform other Security Operations Center (SOC) related duties as assigned.

Education

A university degree with at least 3 years of experience in Information Technology, including at least one year in a Security Operations Center (SOC) environment; or a technical school diploma with a minimum of 5 years of related experience.
Active Infosec certifications including CompTIA Security+, GIAC Security Essentials (GSEC), GIAC Certified Incident Handler (GCIH), Microsoft SC-200, or ISC2 SSCP preferred.

Qualifications & Experience

A solid understanding of TCP/IP networking fundamentals, threat detection, and common cyber-attack techniques.
Knowledge and understanding of best practices for securing cloud environments, such as Azure, AWS, and GCP.
Exposure to a broad set of modern security tools including Endpoint Detection and Response (EDR), E-Mail Security Gateways, Vulnerabilities Management (VM) scanners, Next Gen Network Firewalls (IDS/IPS, Web Filtering etc.), Web Application Firewalls (WAFs), SIEM/SOAR, and Cybersecurity Awareness and training platform(s).
Experience in investigating security incidents, reporting causes and vulnerabilities, and recommending solutions.
Proficient in preparation of reports, dashboards and documentation
Familiarity with Cyber Security Incident Response best practices and process/playbooks documentation.
Exposure to Incident Management using the Incident Command System (ICS 100 & 200 preferred).
Experience in managing ITSM incidents, problems, changes, and service requests in alignment with ITIL framework.
Proficiency in scripting languages such as Python, PowerShell, Bash, or similar considered an asset.

Competencies

Takes ownership of projects and carries them through to completion with limited supervision
Excellent written and verbal communications skills with the ability to communicate technical information to a non-technical audience
Excellent organizational and documentation skills
Refined problem-solving skills
Detail Oriented

Did we mention the ENMAX Advantage?

We offer competitive compensation including a comprehensive flexible benefits program, non-downtown location that includes great building amenities such as free onsite fitness facility with programming geared to employees needs, onsite child care centre (upon availability, offered from our ENMAX Place location 141 – 50 Ave. SE), free parking and much more. If you share our values and would like to make a difference with your career, join the team and see where the ENMAX possibilities can take you.

ENMAX Values – Safety, Integrity, Accountability, Service, Teamwork, Agility, Innovation

Salary: Technical Service Analyst, Level B (Current CUPE rates)

$88,179.91 - $93,694.87 - $99,190.00 - $104,704.96 - $110,219.93

Location: This role will be part of our hybrid (home and office) work force with office workspace located at ENMAX Place (141 - 50th Avenue SE, Calgary, AB). You will work from home on Mondays and Fridays and in the office on Tuesdays, Wednesdays and Thursdays.

Note

If we can provide an accommodation or adjustment to make the process more accessible for you, please let us know. ENMAX welcomes all qualified applicants to apply and is committed to a safe and respectful workplace. It is our aim to have a workplace which is inclusive and values safety, diversity, personal integrity, respect for individual differences, and encourages ownership and accountability for our actions.
Every ENMAX employee is responsible to take reasonable care to protect the health and safety of themselves, of all other workers, and of the public. Each employee must become familiar with safety procedures and rules applicable to their job and are required to follow them while working at ENMAX.
Must be legal to work in Canada and requires the successful completion of a criminal background check. Two pieces of valid Government issued ID will be required.

In the spirit of reconciliation, we respectfully acknowledge that we live and work on the traditional lands of Indigenous Peoples. ENMAX headquarters is in Calgary, Alberta, the traditional territory of the Blackfoot Confederacy, comprised of the Siksika, Kainai, Piikani, and Amskapi Piikuni Nations; the Tsuut’ina Nation; and the îyârhe Nakoda Nations of Chiniki, Bearspaw, and Goodstoney, and home to the Métis Nation of Alberta, as well as many diverse Indigenous people who have made the city their home. We are committed to strengthening relationships with Indigenous Nations and peoples in all communities where we operate, through respect and collaboration.

Please visit our careers page to learn more about other opportunities at ENMAX Corporation.