Manager, Cybersecurity & Risk
Windsor, ON
Full Time Mid-level / Intermediate USD 122K - 149K
City of Windsor
JOB POSTING #: 2024-0521
POSTING PERIOD: Wednesday, December 11, 2024 at 8:30 AM to Friday, December 20, 2024 at 4:30 PM
DEPARTMENT: Information Technology
UNION: Non-union
JOB CODE: NU0683
POSITION STATUS: Regular Full-Time
GRADE/CLASS: NU14
# OF POSITIONS: 1
RATE OF PAY: $122,852.35 to $149,328.45 annually
SHIFT WORK REQ'D: No
DUTIES:
The Manager, Cybersecurity & Risk will create and lead a team to effectively implement and support innovative, secure, reliable and efficient technical solutions based on business requirements of the City of Windsor. As a member of the management team, the Manager, Cybersecurity & Risk contributes to excellence in information technology service delivery and collaborates in the planning and decision making to enhance IT and related services.
The Manager, Cybersecurity & Risk, is a leader for the Municipality in understanding and guiding the municipality in the development of an Enterprise Risk Framework to help align policies, IT controls and security services with corporate objectives. This role involves leading a team responsible for cybersecurity initiatives, including business continuity and disaster recovery, incident detection and response, vulnerability management, and ongoing risk assessments. The Manager will develop partnerships at all levels of government and industry to ensure the Municipality adheres to best practices related to the protection of personal, health and financial information for staff, residents and clients. This position plays a pivotal role in enhancing the Municipalities resilience, ensuring operational continuity, and advancing its overall cybersecurity posture.
POSTING PERIOD: Wednesday, December 11, 2024 at 8:30 AM to Friday, December 20, 2024 at 4:30 PM
DEPARTMENT: Information Technology
UNION: Non-union
JOB CODE: NU0683
POSITION STATUS: Regular Full-Time
GRADE/CLASS: NU14
# OF POSITIONS: 1
RATE OF PAY: $122,852.35 to $149,328.45 annually
SHIFT WORK REQ'D: No
DUTIES:
The Manager, Cybersecurity & Risk will create and lead a team to effectively implement and support innovative, secure, reliable and efficient technical solutions based on business requirements of the City of Windsor. As a member of the management team, the Manager, Cybersecurity & Risk contributes to excellence in information technology service delivery and collaborates in the planning and decision making to enhance IT and related services.
The Manager, Cybersecurity & Risk, is a leader for the Municipality in understanding and guiding the municipality in the development of an Enterprise Risk Framework to help align policies, IT controls and security services with corporate objectives. This role involves leading a team responsible for cybersecurity initiatives, including business continuity and disaster recovery, incident detection and response, vulnerability management, and ongoing risk assessments. The Manager will develop partnerships at all levels of government and industry to ensure the Municipality adheres to best practices related to the protection of personal, health and financial information for staff, residents and clients. This position plays a pivotal role in enhancing the Municipalities resilience, ensuring operational continuity, and advancing its overall cybersecurity posture.
- Reporting to the Chief Information Officer (CIO) the Manager, Cybersecurity & Risk, will play a pivotal role in leading the development and maintenance of the City’s technology security solutions through strategy and planning, acquisition and deployment of technology security solutions and operational management of technology security compliance and investigations.
- Your primary responsibility will be to oversee the operations of the Corporation’s technology security solutions, including threat intelligence, by management of a Cybersecurity Strategy and Enterprise Risk Framework.
- You will oversee a team of IT security professionals dedicated to preventing, responding, investigating, mitigating and resolving security vulnerabilities and cyber incidents.
- You will also be responsible for establishing an enterprise security stance through policy, architecture, processes and procedures.
- You will also develop training and employee awareness on cybersecurity best practices.
- Secondary tasks will include the selection of appropriate security solutions and an oversight of any vulnerability audits and assessments.
- You will oversee and guide the implementation of audit and vulnerability assessments recommendations, define acceptable use of technology, and establish responsibilities of stakeholders
- The Cybersecurity & Risk Manager is expected to interface with internal and external stakeholders as well as with leaders of business units to share the corporate security vision and to solicit their involvement in achieving higher levels of enterprise security and continuity management through information sharing and co-operation.
- Will be required to perform Occupational Health & Safety duties as outlined in the Corporation’s Health and Safety Program.
- Must have a Master’s degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (4) years of experience in a technology security services position;
- OR Must have a university degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (6) years of experience in a technology security services position,
- OR Must have an Ontario Secondary School Graduation diploma combined with a 3 year Community College diploma in Computer Sciences or relevant discipline or Ontario Ministry of Education equivalencies and over ten (10) years of experience in a technology security services position;
- Must have one or more of the following certifications:
- GIAC Security Essentials Certification
- GIAC Security Leadership Certification
- ISACA Certified Information Security Manager
- Microsoft Certified Systems Engineer: Security
- (ISC)2 SCCP
- (ISC)2 CISSP (preferred)
- (ISC)2 ISSAP
- Must have knowledge of IT cyber security and cloud technology principles, methodologies, mechanisms and techniques with specialized knowledge of infrastructure products, services and troubleshooting methods
- Must have knowledge of cyber security technologies, governance processes and practices, cyber threat risk concepts, protocols and principles
- Must be able to provide strategic advice, problem solve, and input into the cyber security program and solutions to address complex challenges
- Must be able to conceptualize, interpret, and evaluate security exposures across business units throughout the Corporation;
- Have demonstrated knowledge and experience in project management methodology, principles and practices
- Able to provide leadership, advice and direction on business risk planning and co-ordination
- Able to create and manage a team in responding, investigating, mitigating and resolving incidents across the Corporation;
- Must possess superior oral and written communication skills with experience; executing reports aimed at both the executive/non-technical management level and technical analyst level.
- Must have the capacity to initiate and develop strong working relationships with internal and external colleagues and stakeholders;
- Experience in assessing financial needs within cybersecurity & risk portfolio and participate in the development of IT operating and capital budgets;
- Proven experience managing both union and non-union direct reports.
- In-depth knowledge and hands-on experience with the grievance process
- Must have the ability to travel to offsite locations in a timely and expedient manner as required. If method of travel is by vehicle, a current valid and lawful Driver's License is required in accordance with the Highway Traffic Act and must provide a driver’s abstract as a condition of employment;
- Must have proficiency in Windows based software including Word, Excel and graphic software;
- Should have knowledge of the Occupational Health and Safety Act, its regulations and knowledge of the hazards associated with the work.
- Will be required to complete and remain current as per the requirements of the Corporation’s Management Certificate Program.
- Progression through the Art of Supervision Program Certificate or a supervisory program of a similar nature is considered an asset.
- Given that this job is a new position a Physical Demands analysis will be completed with the incumbent after approximately six months of occupying the position.
- Only those applicants selected for an interview will be acknowledged
- We offer a smoke-free office environment
- Personal information is collected under the authority of the Municipal Act, c. 25 as amended, and will be used to determine eligibility for employment.
- The Corporation of the City of Windsor is an Equal Opportunity Employer
Job stats:
0
0
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits C CISSP Cloud Compliance Computer Science E-commerce GIAC Governance GSLC ISACA Risk assessment Strategy Threat intelligence Travel Vulnerabilities Vulnerability management Windows
Perks/benefits: Career development
Region:
North America
Country:
Canada
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Security Analyst jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Penetration Tester jobsIT Security Engineer jobsSenior Information Security Analyst jobsSecurity Specialist jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsStaff Security Engineer jobsSystems Engineer jobsSystems Administrator jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Product Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
CI/CD jobsMalware jobsSaaS jobsForensics jobsEDR jobsEncryption jobsSDLC jobsIDS jobsSplunk jobsBash jobsIPS jobsTop Secret jobsRMF jobsOWASP jobsIntrusion detection jobsSQL jobsThreat detection jobsFinance jobsCompTIA jobsDocker jobsDoDD 8570 jobsITIL jobsCRISC jobsActive Directory jobsGIAC jobs
HIPAA jobsTCP/IP jobsVPN jobsBanking jobsMITRE ATT&CK jobsUNIX jobsTerraform jobsOSCP jobsIT infrastructure jobsClearance Required jobsSANS jobsCISO jobsSOX jobsSOC 2 jobsPolygraph jobsDNS jobsJavaScript jobsCCSP jobsAnsible jobsIndustrial jobsSOAR jobsJira jobsCyber defense jobsCryptography jobsGCIH jobs