Systematix

We’re currently seeking an experienced GRC and BCP ANALYST to support our client, a large public utility in Saskatchewan’s natural gas sector.

This is a full-time, onsite contract position based in Regina, Saskatchewan, playing a critical role in strengthening enterprise cybersecurity governance and resilience. You’ll be embedded within SaskEnergy’s Enterprise Security team, helping shape policy, drive compliance, and enhance the organization’s business continuity planning framework.

The ideal candidate brings a minimum of three years of demonstrated experience in Governance, Risk, and Compliance (GRC), Business Continuity and Disaster Recovery Planning, and security awareness training. Security certification (e.g., CISSP, CISA, CISM, MBCP) is mandatory. A strong grasp of audit and regulatory monitoring, and comfort working across IT and ICS/SCADA environments, is essential.

Location & Work Hours

Location: Onsite – Regina, Saskatchewan
Start Date: August 1, 2025
Duration: Through March 31, 2027, with up to four optional one-year renewals
Work Hours: Monday to Friday, 8:00 AM – 5:00 PM CST

Functional Area
Enterprise Security Department – supporting cyber, physical, and personnel security across corporate IT and ICS/SCADA systems.

Requirements

Mandatory Requirements (Pass/Fail)

• Minimum 3 years’ experience in Cybersecurity Governance, Risk & Compliance
• Minimum 3 years’ experience in Business Continuity & Disaster Recovery Planning
• Minimum 3 years’ experience developing security policies, standards, and guidelines
• Minimum 3 years’ experience in audit and regulatory compliance monitoring
• Minimum 3 years managing cybersecurity awareness and training programs
• Current security certification (CISSP, CISM, CISA, ABCP, or MBCP)
• Must be able to work full-time onsite in Regina, SK

Desired Experience & Skills

• Governance frameworks creation and maintenance
• ICS/SCADA and corporate IT knowledge
• Third-party security risk assessments
• Threat and risk assessments; vulnerability analysis
• Security documentation and audit readiness
• GRC tools and change management compliance
• Strong communication and stakeholder collaboration
• Familiarity with industry standards and regulatory requirements

Deliverables
• Support and evolve enterprise GRC and BCP initiatives
• Conduct and document third-party and internal risk assessments
• Prepare for and support audits and compliance activities
• Build and maintain GRC policies, procedures, and documentation
• Lead or support training and awareness programs
• Track and report change management and risk activities
• Collaborate with stakeholders across IT and operational teams
• Act as subject matter expert in GRC frameworks and tools

About the Role
This position reports to the Enterprise Security team. The initial term runs through March 31, 2027, with the potential for four (4) additional one-year renewals (20 months). The role is 100% onsite in Regina, and the selected candidate must be available for in-person interviews.

Apply Now

If you’re interested in this opportunity, please reach out or submit your resume for consideration. Know someone perfect for the role? Feel free to share this post.

About Systematix

Systematix is one of Canada’s largest privately owned National Consulting and Resourcing firms. With offices across the country, we provide high-impact consulting services to both public and private sector clients. We are committed to building a diverse and inclusive workplace and strongly encourage applications from equity-deserving communities.

BH 21241