Job Title | Senior Specialist Enterprise Resilience & Advisory |
Division | Office of the Chief Information Security Officer |
Reports To | Manager Enterprise Resilience & Advisory |
Salary Range | $122,000 to $158,105 |
Work Location | 55 John Street, Toronto |
Job Type | Permanent Full Time |
Shift Information | Monday to Friday, 35 hours work week |
JOB SUMMARY:
To support the execution of the Chief Information Security Officer’s (CISO) mandate, cyber vision and strategy, providing technical and business advice, support and services to all City divisions, agencies and corporations.
To define, develop and support cyber programs and initiatives, engaging with teams across the organization to build alignment on key projects and develop execution roadmaps.
To provide subject matter expertise, strategic advice, senior level guidance and operational support for the Enterprise Resilience & Advisory section.
MAJOR RESPONSIBILITIES:
- Support the Office of the CISO Division, the City and external stakeholders where applicable, by providing cyber security subject matter expertise for enterprise projects and advisory services to City’s Divisions, Agencies and Corporations.
- Develops and implements detailed plans and recommends cyber security policies/procedures regarding program specific requirements.
- Provides subject matter expertise and strategic advice on cyber security issues affecting the organization, identifying potential exposures, and conducting reviews to ensure that undesirable effects are detected, mitigated and/or corrected, and providing pragmatic advice to clients to ensure that cyber risks are managed appropriately.
- Provides leadership to influence employee engagement to the organization, to the team, and to their role.
- Serves as the internal/external point of contact and subject matter expert in business application resilience cyber programs and initiatives, enterprise applications, application architecture and design, and best practices.
- Determines cyber security requirements of business strategies to provide appropriate advice, guidance, and technical solutions.
- Conducts research into assigned area ensuring that such research takes into account developments within the field, corporate policies and practices, legislation and initiatives by other levels of government.
QUALIFICATIONS/CERTIFICATIONS:
- Post-secondary degree in Business or Technology or a related discipline.
- 10+ years of business applications, infrastructure and data protection
- Extensive experience and knowledge of architecture and security is required.
- 10+ years of network design and support including data center, cloud, server and networking
- Extensive experience in SAP, Salesforce or Microsoft Security.
- Extensive experience with security evaluation/analysis within a technical organization
- Extensive experience with a combination of relevant technical disciplines in the field of Information Security and Information Risk Management.
- Extensive experience in conducting risk assessments, required controls definition, control procedure appropriateness, security capabilities identification.
- Extensive experience applying security frameworks (e.g. ISO 27001, COBIT), laws and standards (e.g. NIST, GDPR, etc.)
- Experience in Business Continuity, Crisis Management, Risk Management, Disaster Recovery or a related field.
- Preferred Certifications (any in the list): CISSP, CRISC, Microsoft 365 Security Administration Certification or SAP Certified Technology Professional – System Security Architect
SKILLS:
- Ability to communicate cyber risks and their implications clearly regardless of their complexity, relishes challenges, and projects a collaborative persona.
- Skilled at conveying cyber risks to stakeholders at all levels and translating technical details into language that senior executives can readily grasp.
- Ability to work in transformative programs
- Ability to lead efficient communication between all project stakeholders, including internal teams and clients
- Ability to achieve business objectives through influencing and effectively working with key stakeholders.
- Excellent written & verbal communication skills (comfortable & confident communicating at all levels including business partners, leadership and vendors).
- Excellent problem-solving skills with capability to identify solutions to unusual and complex problems.
- Keen attention to detail and strong organizational skills.
- Highly organized, proactive, self-motivated team player who takes initiative and is able to work independently.
- Ability to work in a fast-paced environment managing multiple priorities with proven time management skills.
- Strong analytical skills and ability to prioritise and multitask.
- Ability to prioritize and effectively manage competing priorities and projects.
- Ability to manage multiple initiatives while adhering to strict deadlines.
- Tenacious and willing to support the team during peak volumes and workloads with various activities.
- Able to work extremely well under pressure while maintaining a high level of professionalism
- Self-motivated team player who takes initiative and can work independently.
- Transferable skills, like communication and decision-making, are equally important.
- Being able to think on your feet and show good judgment are especially valuable in this field. “Security pros should always be ready to react to cyber-related incidents quickly.
ADDITIONAL COMMENTS/INFORMATION:
A normal work week is 35 hours; however, unforeseen situation may require extended hours of work with little or no prior notice. In case of a cyber incident or breach, rotation shift, continuous extended hours may be required with little or no prior notice.
*Subject to a police check, background check, psychological assessment and/or any other checks on a regular basis as the Office of the CISO handles highly sensitive and confidential information.
Equity, DIVERSITY, and Inclusion
The City is an equal opportunity employer, dedicated to creating a workplace culture of inclusiveness that reflects the diverse residents that we serve. Learn more about the City’s commitment to employment equity.
ACCOMMODATION
The City of Toronto is committed to creating an accessible and inclusive organization. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities Act (AODA). Should you require Code-protected accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs. Disability-related accommodation during the application process is available upon request. Learn more about the City’s Hiring Policies and Accommodation Process.
The pay range that the employer reasonably expects to pay for this position is between CA$122,000 and CA$158,105
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures