Sr. Cybersecurity Global Portfolio Architect

Pay Band: J 

At Nutrien, our purpose is Feeding the Future and we do so with safety, inclusion, integrity and results as our core values. Nothing is more important than sending our people home safe, every day.

Nutrien is a leading provider of agricultural products, services, and solutions. With nearly 25,000 employees world-wide, we are the largest producer of potash (by capacity) and one of the world’s largest producers of nitrogen and phosphate. We also operate a leading agriculture retail network that services over 500,000 growers globally.

We harvest the best. Diverse views and experience make us strong. We look for people who have a safety-first mindset, who are collaborative team players, who deliver on their commitments, act with integrity, and who support inclusion.

Working at Nutrien will provide you an opportunity to help us raise the expectation of what an agriculture company can be and grow your career.

The Senior Cybersecurity Global Portfolio Architect reports to Nutrien’s Chief Information Security Officer. 

This role works in a dynamic and fast-paced environment and with cross-functional teams (cyber security, business projects, and IT). The Sr. Cybersecurity Global Portfolio Architect will engage in an internal threat risk service focused on assessing and managing cyber security risks with new technology solutions being considered, developed, bought, or implemented. Key duties will be to identify and expedite requests when business opportunities require accelerated assurance to cyber security safely deliver cutting edge technology and innovation.

The role is a key participant in global enterprise projects seeking to further automate, globalize and standardize. You’ll forge strong working relationships with other teams and individuals including security analysts, senior enterprise architects, risk assessors, project managers and business leads. The role will allow teams/individuals to understand their information and cyber risk and manage them within Nutrien’s risk appetite.

Additionally, the position will be responsible for providing the appropriate teams with guidance on cyber security issues that need to be remediated. The individual must be able to work with and leverage Nutrien global cybersecurity support teams and architecture to provide superior solutions and advice to multiple layers of the Nutrien business teams.

What you will do:
•    Cyber Security Architecture Consultant for Nutrien working in close collaboration with the Nutrien Cyber Security Architecture team •    Primary for performing Nutrien Threat and Risk Assessments on new initiatives
•    Responsible to create and communicate a risk treatment plan to stakeholders highlighting any key risks that their initiative has and consulting with them as they work to remediate those risks
•    Working as key team member on the Nutrien threat and risk teams to promote Nutrien’s cyber security architecture across the enterprise
•    Maintain a strong understanding of current Cyber Security risks and vulnerabilities. Keep abreast of new behaviours by adversaries to ensure Nutrien has strong detection and prevention capabilities in place
•    Leads client engagement interviews to frame & size engagements (Triage) and develops/defines risks & opportunities for risk reduction for engagements
•    Conduct peer reviews within the Cybersecurity Architecture team, client communication and risk assessments to ensure consistency
•    Leads the development of new Cyber Security patterns, templates, processes, and documentation
•    Keep in tune with respect to new techniques and approaches to mitigating threats
•    The role is the senior cybersecurity position in North America and is part of the Global Nutrien Cybersecurity Team

What you will bring:
•    Core Competencies/Experience:

•     Previous Cybersecurity role at a medium to large organization 
•     Previous incident response, automation, and threat modelling experience
•     A thorough knowledge of networking, security awareness, awareness of malicious activities on the internet
•     Attention to detail and strong ability to determine root cause
•     Experience in creating cyber security architecture documentation with primary focus on cloud capabilities and devops integration
•     Experience in assessing solutions, across multiple technology stacks
•     Ability to assess designs and identifying where potential risks exists within a proposed solution and provide control objectives that address the risk to a business acceptable level
•     Must have an understanding of basic enterprise project management fundamentals
•     The candidate needs to be able to read situational context and must be able to lead the cyber security architecture conversations with multiple layers of the business
•     Must have an understanding of basic enterprise project management fundamentals
•     Must have the ability to work as part of a larger global team while self-managing local workloads and priorities
•     Must have extensive experience working with agile software development teams
•     Must have the consistent attitude of having cyber security be an enabler for achieving business objectives
•     Someone with ideas to help drive security architecture left in the SDLC with a focus on self-serve and automation
•     A customer focused attitude that enables the business to operate effectively in a secure manner

•    Post-secondary Degree or Technical Diploma is preferred and eight or more years of related experience
•    Comprehensive and practical experience in performing security architecture and risk assessment roles
•    Cyber security-related certifications like CISSP or CRISC are considered an asset but not mandatory •    Knowledge and experience of agile software development practices within a global organization
•    Knowledge and experience of DevSecOps practices, tools, and culture
•    Knowledge and experience implementing OWASP frameworks such as SAMM and DSOMM
•    Experience in ISO 31000 and or other risk management frameworks
•    Experience in ISO 27001/27002, SOC2 Type II control frameworks
•    Knowledge of privacy compliance frameworks such as CCPA, LGPD, GDPR
•    Knowledge and experience of cloud services such as serverless, containers, CICD pipelines, secure code management, security benchmarks, identity services etc
•    Fluent in written and conversational English, and experience working as part of global team and time zones
•    Ability to work independently within a global team & frameworks

Compensation & Benefits:

$117,920 - $162,140.This range is estimated for a Sr. Cybersecurity Global Portfolio Architect in Loveland, CO. Actual salary and benefits may differ based upon location.

We provide an attractive benefits package that includes comprehensive medical, dental, vision coverage, and life insurance and well as disability coverage for positions working more than 30 hours per week. In addition, we have a retirement program that encourages our employees to save for the longer term, with generous matching employer contributions.  Our benefit package also demonstrates our culture of care with paid vacation, sick days and holidays as well as paid personal and maternity/parental leaves and an Employee and Family Assistance Program.  Details of the benefits package will be shared in the application process. 

In addition to base pay, this role is also eligible to participate in our annual incentive plan and long-term incentive plan consistent with the terms of our plan(s), which provide discretionary award opportunities reflecting components such as performance of the company and the employee.  Details will be discussed through the application process.

This information is provided in compliance with applicable state equal pay and pay equity legislation and is the company's good faith and reasonable estimate of the compensation range and benefits offered for this position.  The compensation offered to the successful applicant may vary based on factors including experience, skills, education, location, and other job-related reasons.  Nutrien also makes internal equity a consideration in all pay decisions. 

Are you a good match? Apply today!

Nutrien is an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.

This job will remain posted until filled.  While we appreciate all applications we receive, only candidates under consideration will be contacted.

To stay connected to us and for the latest job postings and news, follow us on:  LinkedIn, Facebook and Twitter