Cyber Security Incident Coordinator

At Suncor, we produce and provide energy.

When you join Suncor, you become part of a company that has built a solid foundation for both business and employee success. We are a place where talented people thrive. As part of our team, you play a vital role in delivering energy we all rely on, and you'll make a meaningful impact in the communities where we live and work.

We are seeking a highly skilled and detail-oriented Cyber Security Incident Coordinator to join our security operations team. In this critical role, you will serve as the central point of contact for managing and orchestrating the organization's response to cyber security incidents, from initial detection through resolution and post-incident review. You will work closely with cross-functional teams—including IT operations, legal, compliance, communications, and executive leadership—to ensure that security events are triaged, escalated, and resolved efficiently and in accordance with established frameworks and regulatory requirements. The ideal candidate thrives under pressure, possesses excellent communication skills, and has a deep understanding of the evolving cyber threat landscape.

What we offer:

We recognize your contribution and offer a range of rewards and development opportunities designed to support your success. Benefits/perks listed below may vary depending on the nature of your employment with Suncor and the region where you work.

• Strong compensation: we offer competitive compensation, regional-based uplifts, annual bonuses, and long-term financial rewards. We also help you save for your future by offering pension programs, and savings plans with company matching

• Benefits: utilize an employee assistance program and comprehensive company-paid health, dental, and vision benefits for you and your family to support your mental, physical, and financial well-being

• Generous time-off: enjoy generous paid vacation time and personal time-off to recharge and maintain a healthy work-life balance

• Talent development programs: Internal mobility, succession planning, and employee training and development programs are just a few ways we’re dedicated to your development

Minimum Requirements:

• 3-5 years of experience in incident response, security operations, or a closely related discipline

• Hands-on experience with incident detection, triage, containment, eradication, recovery, and digital forensic analysis techniques

• Bachelor's degree in cyber security, information technology, computer science, or a related field

• Experience with SIEM platforms, EDR tools, forensic analysis techniques, and incident management frameworks such as NIST SP 800-61

• Ability to remain calm, focused, and decisive under high-pressure situations during active security incidents

• GCIH, GCFA, CISSP, CISM or CSIH certifications are preferred

Don’t have all the qualifications listed? That’s ok! Apply anyway. We acknowledge the value of transferable skills.

Responsibilities:

• Developing, maintaining, and continuously improving the organization's incident response plans, playbooks, and standard operating procedures

• Lead tabletop exercises and simulations to test organizational readiness

• Coordinate real-time response efforts during active incidents, and ensure accurate documentation and chain-of-custody procedures are followed throughout the incident lifecycle

• Conduct thorough post-incident analyses to identify root causes, capture lessons learned, and recommend actionable improvements to strengthen the organization's overall security posture

• Monitoring threat intelligence feeds and collaborating with external partners, such as law enforcement and industry ISACs

• Ability to leverage threat intelligence feeds, indicators of compromise (IOCs), and frameworks such as MITRE ATT&CK to inform response efforts

Location and other Key Details:

• This is an office-based role. You will work out of our Calgary head office, located in the Suncor Energy Centre at 150 – 6th Ave S.W

• Hours of work are a regular 40-hour work week, Monday to Friday with occasional site visits

• Our business professional roles follow internal compensation guidelines, and the pay band will generally be based on years of experience and scope of work

Think we are a fit? Apply now!

Suncor is committed to providing equal opportunities for employment and building an inclusive, results-oriented and high-performance culture where all members of our team feel safe, valued and respected.