Apply now »

Cybersecurity Analyst

Date:  Aug 12, 2025
Job Category:  Information Services

Cybersecurity Analyst
Location: Calgary Head Office 
Job status: Full Time Permanent
Department:Information Services 

Is this position safety sensitive: No 

 

At Gibson, we believe our competitive advantage lies in the strength and talents of our employees. That means connecting our employees to rewarding careers, building a high-performance culture where collaboration and creativity are rewarded, and providing real growth opportunities for employees to take on new challenges.  

 

 

The Role 
The Information Services Cybersecurity Analyst will be responsible for supporting the development and implementation of a comprehensive cybersecurity program for the enterprise. This includes conducting security assessments, managing cybersecurity-related regulatory compliance activities, developing and maintaining security policies and procedures, and coordinating security awareness initiatives such as phishing campaigns and training. The analyst will also support security projects including penetration testing, security architecture reviews, and the adoption of emerging technologies like AI tools and data protection solutions.

 

What You Will Do

The Information Services Cybersecurity Analyst will: 

  • Conduct security assessments including risk evaluations and regulatory compliance reviews to support the cybersecurity program.
  • Develop, update, and enforce cybersecurity policies, standards, and procedures aligned with industry best practices.
  • Lead and coordinate cybersecurity awareness efforts such as phishing simulations, quarterly training, and role-based education.
  • Support third-party penetration testing engagements and track remediation progress.
  • Participate in security architecture reviews to provide recommendations for secure design and implementation.
  • Assist with the deployment and governance of emerging technologies, including AI tools (e.g., Microsoft Copilot, ChatGPT) and data protection solutions (e.g., Microsoft Purview, DLP).
  • Track vulnerabilities and remediation activities, ensuring timely resolution in collaboration with IT and operational teams.
  • Communicate cybersecurity concepts and risks effectively to technical and non-technical stakeholders.
  • Performs other duties as assigned, adaptable to the evolving cybersecurity landscape.

 

What You'll Bring to the Role 

  • 5+ years of professional experience in cybersecurity or related IT fields, with demonstrated ability to conduct risk and security assessments and support compliance activities.
  • Post-secondary degree/diploma in Computer Science, Information Technology, Cybersecurity, or a related field is preferred. Equivalent professional experience will be considered.
  • CISSP certification is required.
  • Solid understanding of cybersecurity frameworks such as NIST CSF and familiarity with regulatory requirements in oil and gas or critical infrastructure sectors.
  • Proven experience developing, implementing, and enforcing security policies, standards, and procedures.
  • Proven experience managing or supporting security awareness programs, including phishing campaigns and role-based training.
  • Strong background in vulnerability management, including identification, prioritization, and remediation tracking.
  • Experience supporting or managing security projects such as third-party penetration testing and security architecture reviews.
  • Practical knowledge or familiarity with emerging AI tools and data protection technologies is highly desirable.
  • Self-driven, detail-oriented, and able to operate independently while collaborating across teams in a dynamic environment.
  • Knowledge and understanding of Operational Technology.

 

Preferred Skills & Abilities

  • Experience supporting or working with Microsoft Defender, Sentinel, and Palo Alto security technologies.
  • Familiarity with security solutions such as firewalls, intrusion detection systems, antivirus software, encryption, and authentication protocols.
  • Strong analytical and problem-solving skills, with a proven ability to address complex security challenges and implement effective solutions.
  • Excellent verbal and written communication skills, capable of translating complex cybersecurity concepts for diverse audiences and collaborating effectively across teams

 

Working Conditions 

  • Availability for after-hours and On-Call work as needed and willingness to provide technical support back-up when required.
  • Calgary Head Office based position with occasional field travel.
  • This job is subject to background checks as outlined in Gibson Energy’s Background Checks policy. Background checks may include: employment history verification, reference checks, education and/or credentials verification, credit check and a criminal history check.

 

Why You’ll Love Working at Gibson 

For over 70 years, Gibson has been defined by our people — those who seize opportunities and make exceptional customer service a part of everything we do. Working at Gibson is an opportunity to be part of a place where employees feel valued, supported and motivated to do their best work. Here’s what sets us apart: 

 

  • A competitive Total Rewards package that truly values your contributions. 
  • Employer contributions to your DC Pension because we believe in your future. 
  • Comprehensive health, dental & vision benefits, with industry leading coverage for mental health and family planning — ensuring you and your loved ones thrive. 
  • Generous time off to rest, recharge and live life to the fullest.
  • An incredible work environment and culture where your career development and advancement are prioritized every step of the way. 
  • A flexible hybrid work setup, empowering you to balance work and life seamlessly. 

 

Gibson Energy Inc. (“Gibson” or the “Company”) is a diversified North American energy infrastructure company headquartered in Calgary, Alberta. They have significant terminal assets, including 25 million barrels of storage and over 300 miles (500 kilometres) of crude pipelines across North America. The company has been providing market access to the oil and gas industry for over 70 years and is publicly traded on the Toronto Stock Exchange (TSX:GEI) with a market capitalization of approximately $4 billion. 

Gibson Energy operates through two main segments: 

 

  1. Infrastructure: This includes terminals, marine loading, rail loading and unloading facilities, gathering pipelines, a diluent recovery unit, and a crude oil processing facility. Key facilities within this segment include the Hardisty, Edmonton, and Ingleside Terminals, as well as gathering pipelines in the United States and a crude oil processing facility in Moose Jaw, Saskatchewan. 
  2. Marketing: This involves the purchasing, selling, storing, and optimizing of hydrocarbon products. 

 

Gibson Energy has a strong presence in the United States, due to the acquisition of the Gateway Terminal in Ingleside, Texas. This terminal is a world-class liquids terminal and export facility with very large crude carrier (VLCC) capabilities and direct pipeline connections to key basins like the Permian and Eagle Ford. The acquisition strengthens Gibson's cash flow with over 95% of the revenue under take-or-pay contracts with high-quality counterparties. 

 

Our Values, The Gibson Way 

The Gibson Way is how we succeed together. We believe in the power of both ‘We’ (collectively working together) and “I” (contributing individually) to achieve our shared goals. 

 

The ‘We & I’ play a very important role in our success!  

  • Contribute & Add Value Everyday 
  • Keep Our Edge & Be Resilient  
  • Stay Focused & Open-Minded 
  • Work it Out & Do it Together 

 

This is what we are all about and we encourage you to learn more! Click Here: The Gibson Way  

 

For more information, visit www.gibsonenergy.com.

Apply now »