Manager, Information Security Strategic Execution

Date Posted: 07/03/2025
Req ID: 43493
Faculty/Division: Ofc of the Chief Information Officer
Department: Information Security
Campus: St. George (Downtown Toronto)

Description:

Under the general supervision of the Associate Director, Information Security Strategic Initiatives, the Manager, Information Security Strategic Execution is the University of Toronto lead for driving delivery of institutional top priority information security projects.

Supervising a team of professionals and project-specific contractors & third-party services, the Manager oversees a portfolio of strategic initiatives, establishes project governance structures such as steering committees and advisory boards, manages project budgets, and ensures matrix teams follow standard project delivery and management processes. The Manager is responsible for ensuring University of Toronto divisions and departments are properly engaged, informed, and actively collaborating on institutional information security strategic initiatives.

As a member of the ITS management team, the Manager works with others to continuously review and enhance standardized project management process, refine divisional engagement models, and defines appropriate project metrics and consistent reporting workflow, formatting, and tracking technology.

With a strong business-oriented focus, the Manager, Information Security Strategic Execution is responsible for working with Information Technology staff and resources at the University of Toronto to develop and deliver coordinated and strategic efforts to minimize risk of compromise of servers, and server-based applications. Work is done in the context of existing policy, guidelines and applicable legislation in a fluid, consultative environment. The Manager, Information Security Strategic Execution leads analysis of complex projects or business practices to directly identify and mitigate privacy and security risks. They are responsible for escalating timely and emerging information risks to the university.

Qualifications:

EDUCATION:

University degree in Computer Science, Engineering, or an equivalent combination of education and experience.

EXPERIENCE:

• Ten-plus years working in an Information Technology environment.
• Five-plus years in a team lead or senior/supervisory role in an IT environment. Five-plus years working with Information Security as a prime focus of activity. Five-plus year experience with project and portfolio management.
• Experience in software and hardware project delivery in a high-volume, large, strategic enterprise IT environment.
• Experience as a Technical Lead focused on designing and delivering solutions and systems integrations.
• Experience with Agile and/or Waterfall Project/Program delivery DevOps, or DevSecOps experience.
• Experience with service development and service management. Managerial experience over highly skilled staff.
• Project management experience of complex strategic projects, particularly using an Agile Scrum development methodology .
• Strong experience of delivering digital transformation initiatives, working with business analysts, developers, developing user stories and personas, and product roadmaps.
• Strong experience with systems architecture, development and design, SaaS/PaaS processes, database management, capacity management, virtualization technologies and cloud computing. Strong experience with writing and refining user stories, test cases and acceptance criteria and owns their quality.
• Knowledgeable across multiple functional areas such as product management, software engineering, UX/UI, and customer support.
• Proven experience in translating technical requirements into business language and client requirements into technical language.
• Experience negotiating with service providers, establishing and monitoring service level agreements.
• Understanding of client and server application deployment and support. Understanding of client and server activity tracking.
• Experience in platform  migration. Experience in software / service deployment.
• Understanding of IT Architecture concepts and security methodologies. Experience developing information security standards and guidelines. Expert knowledge of information security risk and risk mitigation concepts. Experience configuring high availability solutions.
• Experience compiling and installing software packages from source. Knowledge of TCP/IP networking and client-server architecture and protocols.
• Experience with intrusion detection and prevention – host and network, active and passive. Experience in selecting, configuring and deploying service mis-use detection and prevention technologies (Anti-Spam, Anti-Virus, Anti-DDOS, etc.).
• Extensive experience developing, using and evaluating risk assessment procedures such as questionnaires and survey.
• Experience with Network-available storage / Storage Area Network security.

SKILLS:

Strong communication skills, both oral and written. Strong technical and business solutions design and systems planning skills. Excellent knowledge of services development, systems analysis, specifications techniques and implementation strategies. Excellent staff management, project management, technical lead and facilitation skills. Adept at conforming to shifting priorities, demands and timelines through analytical and problem-solving capabilities. Ability to master new technology quickly. Ability to quickly assess security incidents based on limited, often incomplete information, and rapidly interpret server / network diagnostic logs. Strong understanding of change and configuration management processes. Excellent oral and written communication skills and ability to produce high-quality, comprehensive communications materials. Ability to work both independently and in a team-oriented, collaborative environment. Strong ability to elicit cooperation and collaboration from a wide variety of sources, including upper management, stakeholders, and other departments. Excellent conflict resolution skills with strong ability to exercise judgement, tact, discretion and determination. Adept at conducting research into technical or project-related issues and products, to continually improve processes and solutions as technology changes. Strong organization skills with the ability to effectively prioritize and execute tasks in a high- pressure environment. Ability to translate and leverage data into a story that drives business opportunity, project objectives and prioritization. Ability to track and evaluate product analytics post launch leveraging data to provide relevant optimizations for improved performance. Adept at conforming to shifting priorities, demands and timelines through analytical and problem-solving capabilities. Adept at quickly learning, understanding, and applying new technologies and process frameworks.

OTHER:

Both broad and in-depth knowledge of industry innovations and state-of-the-art technology in both computing and networking arenas. Strong organizational and interpersonal skills. Familiarity with financial requirements of project management a plus. IT Security certifications held or in progress a plus. Familiarity with database administration and operation a plus. Exposure to e-commerce and other net-centric business models highly desirable, as is experience with, and ability to provide support outside of normal working hours, as needed.

Closing Date: 07/18/2025, 11:59PM ET
Employee Group: Salaried
Appointment Type: Budget - Continuing
Schedule: Full-Time
Pay Scale Group & Hiring Zone: PM 5 -- Hiring Zone: $118,368 - $138,097 -- Broadband Salary Range: $118,368 - $197,280
Job Category: Information Technology (IT)