SR. ANALYST, CYBERSECURITY & INSIDER RISK LEAD

Job Description Job Title: Sr. Analyst, Cybersecurity & Insider Risk Lead Requisition ID: 31304 Location: Calgary, AB, CAN, T2J 7E8
| Saskatoon, SK, CAN, S7K 5R6
Workplace Type: On-Site Experience Level: Mid-Senior Level Job Type: Full Time

Nutrien is a leading provider of crop inputs and services, and our business results make a positive impact on the world. Our purpose, Feeding the Future, is the reason we come to work each day. We're guided by our culture of care and our core values: We put safety first. We act with integrity. We are stronger together. We deliver with excellence.

Through the collective expertise of our nearly 26,000 employees, we operate a world-class network of production, distribution, and ag retail facilities. We efficiently serve growers' needs and strive to provide a more profitable, sustainable, and secure future for all stakeholders. Help us raise the expectation of what an agriculture company can be and grow your career with Nutrien.

We are seeking a Senior Cybersecurity & Insider Risk Lead to join our Cybersecurity team and help safeguard Nutrien from risks originating within the enterprise. In this role, you will proactively identify, investigate, and respond to insider-related risks across our global environment. You will work closely with Cybersecurity, IT, legal, HR, and business stakeholders to reduce risk, strengthen controls, and reinforce a strong culture of security awareness.

This role is well suited to an experienced security professional who combines strong technical depth with sound judgment, collaboration skills, and a practical, business focused mindset. This role reports to Nutrien's Cybersecurity Operations Center Manager.

• Leverage cybersecurity telemetry and enterprise systems to identify potential threats or misuse of access and systems
• Lead investigations into anomalous or suspicious behavior using logs, endpoint data, network traces, and other forensic artifacts to determine root cause and impact
• Triage, investigate, and remediate insider risk related alerts, taking end-to-end ownership of cases and supporting incident response activities as required
• Develop, maintain, and continuously improve insider risk processes, playbooks, and investigative workflows aligned to industry best practices
• Enhance insider risk detection strategies by tuning controls, analytics, and monitoring based on evolving risk, threat intelligence, and regulatory expectations
• Partner with Cybersecurity, IT, HR, Legal, and business teams to implement insider risk awareness initiatives, policies, and preventative controls
• Generate regular reports documenting program trends and metrics
• Provide insider threat risk assessments and intelligence support for acquisitions, including written reports and actionable recommendations
• Engage with acquired entities to understand their unique environments, risks, and gaps, and drive remediation efforts through to completion
• Use AI assisted tooling and automation responsibly to enhance investigations and decision-making while maintaining appropriate human oversight and adherence to Nutrien policies
• Serve as a senior escalation point and mentor for analysts, providing guidance on complex investigations and decision-making
• Participate in the Cybersecurity on-call- rotation, providing 24x7 support for security escalations approximately one week per month

• 4+ years of experience with cybersecurity incident response
• Technical diploma or degree in an IT related field, or equivalent experience
• Fluent in written and conversational English, and experience working as part of global team and time zones
• Ability to work independently within a global team & frameworks

Nice to have:

• 4+ years of experience leading cybersecurity teams and investigations
• Master's degree in cybersecurity related field
• Cybersecurity and Insider Risk related certifications like GCIH or CASP are considered an asset but not mandatory
• Experience operating or tuning UEBA and SIEM platforms in large, complex environments
• Experience using automation, analytics, or AI assisted tools to support security investigations or improve operational efficiency is an asset
• Foundational understanding of cloud platforms and insider or attacker techniques in cloud environments
• Experience managing competing priorities in a fast paced, operational security environment
• Project or initiative leadership experience, including documenting progress and driving improvements to completion