Senior Cyber Security Policy and Implementation Oversight Officer

Ottawa, ON, CA

Apply now Apply later

 

 

Requisition ID: 15716  
Department: Finance and Corporate Services Dept.  
Service: Chief Information Security Office  
Branch: Cyber Risk Mngmnt Governance CmplnceUnit 
Employment Type: 1 Full-time Permanent  
Work Hours: 35.00 hours per week
Affiliation: CIPP 
Salary Information: $101,426.78 - $114,097.62  annually (2025 rates of pay)
Location: 100 Constellation, Nepean  
City: Ottawa, ON 
Job Category: Cybersecurity 
Application Close: 24/01/2025

JOB SUMMARY

The Chief Information Security Office is responsible for delivering and overseeing cybersecurity and digital risk management programs across all City business lines, including strategic enablement and emerging threats identification, policy and implementation oversight, digital risk management, and security governance and culture transformation. The Service directly impacts operations across 14 unique business lines, $ 9 billion revenue generation processes, enables the delivery of critical services to more than a million constituents, as well provides vital support for governmental continuity across federal and provincial partners.  

The Cybersecurity Policy and Implementation Oversight Unit is responsible for the development, approval, and implementation of cybersecurity policies and standards.

You are responsible for developing and coordinating the implementation and approval of new cybersecurity policies and standards. You assess the effectiveness of the established technical security programs and cybersecurity controls base on the adopted operational model. You also build partnerships with all departments to ensure policy compliance and that the City meets set cybersecurity maturity objectives.

EDUCATION AND EXPERIENCE

Completion of a 4 year university degree in Information Security, Computer Science, Computer Engineering or related field.

Minimum of 7 years of progressively responsible experience in technology administration, information security, or risk management.

CERTIFICATIONS AND LICENCES

Related Information/Technology Security certification is desirable (e.g. CISSP, CISM, CISA, CRISC, SABSA, CAP, EC-Council)

KNOWLEDGE

  • Deep subject matter expertise in Information Security, Compliance and/or Risk Management programs and best practices, preferably within the Tech and Public Administration Sectors.
  • Experience in developing or maintaining secuurity policies across a wide variety of regulatory and compliance frameworks 
  • In depth knowledge of least two of the following: the NIST Cybersecurity Framework, ISO 2700x, SOC1 & 2 (SSAE18), PCI DSS, NIST-800-53, FFIEC Cybersecurity Assessment Tool, SANS Top 20, etc.
  • Sufficient technical knowledge of the cutting edge concepts, principles, and trends relevant to a technology and cybersecurity domains
  • Understanding of the global cybersecurity threat landscape and   politiclaly, social, or financially motivated cyber crime  
  • Knowledge of applicable health and safety legislation, including the rights and duties of workers
     

COMPETENCIES, SKILLS AND ABILITIES

  • Ability to work well in fast paced team environment with a wide range of technical and non-technical teams.
  • Excellent writing, communication, and organizational skills - strong attention to detail.
  • Ability to confidently convey nuanced information to a variety of audiences, including senior leaders.

 

Core Behaviours
Core behaviours define the City's expectations of the behaviours employees should demonstrate in performing their work.  They are reflective of the City's culture and values and guide all our present and future activities.  Every employee is encouraged to learn, embody, and demonstrate these core behaviours.

Review the Core Behaviours.

WHAT YOU NEED TO KNOW

  • Language Requirement: English oral, reading, writing       
  • Police Record Check: The successful candidate will be required to complete a Criminal Records and Judicial Matters Check with the Police Services detachment in their jurisdiction to the City of Ottawa’s satisfaction.; Police record checks completed by a third-party company will not be accepted.  (Under Review)
  • Experience and formal training combined with demonstrated performance and ability may substitute for stipulated academic requirements. 
  • Please save a copy of the job poster. Once the closing date has passed, it will no longer be available. 

 

We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted. 

 

The City of Ottawa promotes the principles of diversity and inclusion and adheres to the tenets of the Canadian Human Rights Act and the Ontario Human Rights Code. We encourage applications from members of Indigenous, Black and other racialized communities, persons with disabilities, women and non-binary persons, persons of all ethnic origins, religions, sexual orientations, classes, gender identities and expressions. 
Candidates are encouraged to self-identify as a member of one or more designated employment equity groups in the self-identification questionnaire.

 

The City of Ottawa provides accommodation during all parts of the hiring process, upon request, to applicants with disabilities. If contacted to proceed to the selection process, please advise us if you require any accommodation.

 

Accessible formats and communication supports are available upon request. Please contact the HR Service Centre at 613-580-2424, extension 47411.

Apply now Apply later
Job stats:  0  0  0

Tags: CIPP CISA CISM CISSP Compliance Computer Science CRISC Cyber crime FFIEC Finance Governance NIST NIST 800-53 PCI DSS Risk management SANS SOC 1

Perks/benefits: Equity / stock options

Region: North America
Country: Canada

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.