Senior Cybersecurity Specialist (Whitby)

The Region of Durham is committed to advancing equity, diversity and inclusion within our organization and the communities we serve. We welcome and encourage applications from people who are Indigenous, racialized persons, women, persons with disabilities, members of LGBTQ2S+ communities, and others who may contribute to the further diversification of our workforce, including those who experience systemic barriers. In accordance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code, accommodation will be provided throughout the recruitment process upon request, based on any Code-protected ground. Number of Available positions: Vacancies: one (1) Senior Cybersecurity Specialist Reporting to the Supervisor, Information Security, The incumbent will: - Ensure that disaster recovery plans are in place and aligned with business continuity plans, lead technical teams in the implementation and testing of plans, and advise business units of roles and responsibilities to enact approved plans - Lead project teams ensuring stakeholder expectations, scope, plans, timelines, individual responsibilities, materials, equipment, and budgets are met or exceeded to ensure financial and operational risks are mitigated - Lead cybersecurity incident response and post-mortems, ensuring proactive protection plans are in place to avoid similar situations and to proactively identify other threats that may be present in the environment - Ensure that the cybersecurity incident response plan is up to date and conduct exercises to ensure roles and responsibilities are understood - Assist with the vision and roadmap for IT Security and Networking that supports the Departmental Operational Plans and the Organizational Strategic Plan - Create dashboards, assist with determining KPIs, and gather metrics to communicate organizational security posture to key stakeholders - Assist with operational and capital budget requests to fund program activities - Assist with reviews of organizational security policies, recommending changes - Collaborate on enterprise initiatives as a subject matter expert to identify risk associated with technology and provide advice/guidance for complex situations - Address functional, monitoring, operational, quality, performance, recovery, and security requirements in an efficient and productive manner - Review security risk assessments and recommend risk mitigation strategies - Identify design gaps in existing and proposed architectures or projects and recommend changes or enhancements, update disaster recovery as appropriate - Ensure ongoing alignment of IT standards, processes, practices, and security controls with audit, compliance, and policy requirements The successful incumbent will possess: - A university degree in Computer Science, Computer Engineering, Software Engineering Computer Security, Network Technology, Informatics and Security, Cyber Security or Information Systems Security, or a related discipline, or equivalent combination of education and experience - Certified Information Systems Security Skilled (CISSP) or Certified Cloud Security Professional (CCSP) Certification required - 5 years' experience in the areas of security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment and testing, security operations - Solid knowledge of cloud concepts, architecture, design, data security, platform security, infrastructure security, application security, and compliance. - Understanding of IT architecture, OT architecture, networks, operating systems, cryptography, telecommunications, and associated cybersecurity technologies - Knowledge of information security governance, risk management, security principles, best/good practices, and industry standards - Experience with complex projects involving integration of technologies/platforms across technical teams and maintaining relationships with stakeholders - Experience with business continuity planning, disaster recovery planning, cyber incident response planning, and risk management - Familiarity with the tools and techniques commonly used by malicious actors - Ability to translate complex technical language and communicate business risks - Excellent communication and interpersonal skills - Effective leadership and coaching skills - Strong project and time management skills - Strong analytical and troubleshooting skills with the ability to generate and implement innovative and creative solutions - Ability to multi-task and manage competing priorities, to influence and lead change - Capacity to maintain tactfulness, integrity, and confidentiality - Creativity in developing equitable, accessible, and sustainable solutions CUPE 1764 Salary Grade 9 This position is with Salary Grade 9 and will be paid at the following hourly rates: - Start: $55.63 - Six Month: $58.72 - Job: $61.81 Conditions of Employment All applicants are expected to comply with the Region of Durham's Code of Ethics and Code of Conduct Policies throughout the recruitment process. Proof of education, qualifications and any other job bona fide requirements will be required prior to start date. External Application Process Come find a home where exciting and rewarding careers are balanced with your lifestyle. We thank all applicants; however, only those being considered will be contacted. Please apply online () no later than midnight (Eastern Standard Time) on the closing date indicated on the Job Posting. The Region of Durham is an equal opportunity employer committed to an inclusive, barrier-free recruitment and selection process. If contacted for an employment opportunity and you require accommodation, or if this information is required in an accessible format, please contact us at: and a Recruiter will provide appropriate assistance pursuant to the Region's Accommodation and Accessibility policies. Please note that resumes should not be sent to . Follow us on social media @RegionofDurham The Region of Durham may utilize artificial intelligence to assist in the preliminary assessment of applicant qualifications and submitted materials. These tools are used for the purpose of supporting and enhancing an evaluation by a human decision-maker and any information provided by AI to a human decision-maker is not determinative. Final decisions are made solely by authorized human decision-makers. Apply on Kit Job: kitjob.ca/job/2p8ncl