$122,852.35–$149,328.45 a year
Full-time
350 City Hall Sq W, Windsor, ON N9A 6S1
JOB POSTING #: 2024-0521
POSTING PERIOD: Wednesday, December 11, 2024 at 8:30 AM to Friday, December 20, 2024 at 4:30 PM
DEPARTMENT: Information Technology
UNION: Non-union
JOB CODE: NU0683
POSITION STATUS: Regular Full-Time
GRADE/CLASS: NU14
# OF POSITIONS: 1
RATE OF PAY: $122,852.35 to $149,328.45 annually
SHIFT WORK REQ'D: No
DUTIES:
The Manager, Cybersecurity & Risk will create and lead a team to effectively implement and support innovative, secure, reliable and efficient technical solutions based on business requirements of the City of Windsor. As a member of the management team, the Manager, Cybersecurity & Risk contributes to excellence in information technology service delivery and collaborates in the planning and decision making to enhance IT and related services.
The Manager, Cybersecurity & Risk, is a leader for the Municipality in understanding and guiding the municipality in the development of an Enterprise Risk Framework to help align policies, IT controls and security services with corporate objectives. This role involves leading a team responsible for cybersecurity initiatives, including business continuity and disaster recovery, incident detection and response, vulnerability management, and ongoing risk assessments. The Manager will develop partnerships at all levels of government and industry to ensure the Municipality adheres to best practices related to the protection of personal, health and financial information for staff, residents and clients. This position plays a pivotal role in enhancing the Municipalities resilience, ensuring operational continuity, and advancing its overall cybersecurity posture.
Reporting to the Chief Information Officer (CIO) the Manager, Cybersecurity & Risk, will play a pivotal role in leading the development and maintenance of the City's technology security solutions through strategy and planning, acquisition and deployment of technology security solutions and operational management of technology security compliance and investigations.
Your primary responsibility will be to oversee the operations of the Corporation's technology security solutions, including threat intelligence, by management of a Cybersecurity Strategy and Enterprise Risk Framework.
You will oversee a team of IT security professionals dedicated to preventing, responding, investigating, mitigating and resolving security vulnerabilities and cyber incidents.
You will also be responsible for establishing an enterprise security stance through policy, architecture, processes and procedures.
You will also develop training and employee awareness on cybersecurity best practices.
Secondary tasks will include the selection of appropriate security solutions and an oversight of any vulnerability audits and assessments.
You will oversee and guide the implementation of audit and vulnerability assessments recommendations, define acceptable use of technology, and establish responsibilities of stakeholders.
The Cybersecurity & Risk Manager is expected to interface with internal and external stakeholders as well as with leaders of business units to share the corporate security vision and to solicit their involvement in achieving higher levels of enterprise security and continuity management through information sharing and co-operation.
Will be required to perform Occupational Health & Safety duties as outlined in the Corporation's Health and Safety Program.
QUALIFICATIONS:
Must have a Master's degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (4) years of experience in a technology security services position;
OR Must have a university degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (6) years of experience in a technology security services position,
OR Must have an Ontario Secondary School Graduation diploma combined with a 3 year Community College diploma in Computer Sciences or relevant discipline or Ontario Ministry of Education equivalencies and over ten (10) years of experience in a technology security services position;
Must have one or more of the following certifications:
GIAC Security Essentials Certification
GIAC Security Leadership Certification
ISACA Certified Information Security Manager
Microsoft Certified Systems Engineer: Security
(ISC)2 SCCP
(ISC)2 CISSP (preferred)
(ISC)2 ISSAP
Must have knowledge of IT cyber security and cloud technology principles, methodologies, mechanisms and techniques with specialized knowledge of infrastructure products, services and troubleshooting methods.
Must have knowledge of cyber security technologies, governance processes and practices, cyber threat risk concepts, protocols and principles.
Must be able to provide strategic advice, problem solve, and input into the cyber security program and solutions to address complex challenges.
Must be able to conceptualize, interpret, and evaluate security exposures across business units throughout the Corporation;
Have demonstrated knowledge and experience in project management methodology, principles and practices.
Able to provide leadership, advice and direction on business risk planning and co-ordination.
Able to create and manage a team in responding, investigating, mitigating and resolving incidents across the Corporation;
Must possess superior oral and written communication skills with experience; executing reports aimed at both the executive/non-technical management level and technical analyst level.
Must have the capacity to initiate and develop strong working relationships with internal and external colleagues and stakeholders;
Experience in assessing financial needs within cybersecurity & risk portfolio and participate in the development of IT operating and capital budgets;
Proven experience managing both union and non-union direct reports.
In-depth knowledge and hands-on experience with the grievance process.
Must have the ability to travel to offsite locations in a timely and expedient manner as required. If method of travel is by vehicle, a current valid and lawful Driver's License is required in accordance with the Highway Traffic Act and must provide a driver's abstract as a condition of employment;
Must have proficiency in Windows based software including Word, Excel and graphic software;
Should have knowledge of the Occupational Health and Safety Act, its regulations and knowledge of the hazards associated with the work.
Will be required to complete and remain current as per the requirements of the Corporation's Management Certificate Program.
Progression through the Art of Supervision Program Certificate or a supervisory program of a similar nature is considered an asset.
Given that this job is a new position a Physical Demands analysis will be completed with the incumbent after approximately six months of occupying the position.
NOTE:
Only those applicants selected for an interview will be acknowledged.
We offer a smoke-free office environment.
Personal information is collected under the authority of the Municipal Act, c. 25 as amended, and will be used to determine eligibility for employment.
The Corporation of the City of Windsor is an Equal Opportunity Employer.
In accordance with the Accessibility for Ontarians Act, 2005 and the Ontario Human Rights Code, the City of Windsor will provide accommodations throughout the recruitment, selection and/or assessment process to applicants with disabilities. If selected to participate in the recruitment, selection and/or assessment process, please inform the City of Windsor Human Resources staff of the nature of any accommodation(s) that you may require in respect of any materials or processes used to ensure your equal participation.