Manager, Cybersecurity

Job Description

Competition #24 / 150

Internal / External Posting

Closing date : July 16, 2024

Manager, Cybersecurity (Continuous)

Information Technology Department

Victoria is a vibrant, diverse, and sustainably focused leading-edge capital city where human well-being and the environment are priorities and where the community feels valued, heard, and understood.

At the City of Victoria, we offer a modern hybrid working environment with flex time and cutting-edge tools. We are keen to attract creative, solution-oriented talent who are passionate about delivering value to our city.

The City of Victoria is recruiting a Cybersecurity Manager to join our IT Leadership Team. In this exciting new position, which reports directly to the CIO, you will run the City’s cybersecurity program and navigate the ever-changing cybersecurity landscape in local government.

You will work with stakeholders in all departments across the City to define, improve, and deliver industry best practices for our Cybersecurity processes and goals.

You will also use cutting edge hyperscale cloud applications including the M365 suite of productivity tools and MS Copilot to help you with your day-to-day.

This position includes fantastic, comprehensive extended benefits; a defined benefits pension plan with employer matched contributions;

and a competitive vacation allowance. Our successful candidate will also be eligible for participation in a hybrid, work from home arrangement in alignment with the City’s Work from Home Policy.

Such arrangements are determined with each employee and subject to change based on operational needs.

If you are passionate about what you do and excited to deliver value across a hybrid working environment we would like to hear from you!

Position Summary :

Under the general direction of the Chief Information Officer, Information Technology, the Cybersecurity Manager is responsible for the ongoing development and administration of the City of Victoria’s cybersecurity program.

The Cybersecurity Manager oversees the City’s cybersecurity policies and standards and ensures compliance with cybersecurity frameworks and applicable legislation.

Major Accountabilities :

The Cybersecurity Manager is responsible for leading security assessments, audits, risk management, and incident response initiatives, serving as the primary liaison for these critical functions within the organization.

Strategic Planning and Execution

The Cybersecurity Manager drives the strategic planning and execution of long-term security initiatives, including :

• Developing, communicating and monitoring the IT security vision, goals, objectives, and plans for the City of Victoria, aligning with the IT strategic plan and the corporate business plan.
• Developing, implementing, and enforcing the City’s IT security policies, procedures, and standards, while ensuring compliance with relevant legislation and industry best practices.
• Developing and maintaining the City’s IT security incident response plan and procedures while coordinating the response to security incidents and breaches.
• Delivering comprehensive security status reports and recommendations to senior management and stakeholders, ensuring proactive communication and actionable insights.

Continuous Improvement and Innovation

The Cybersecurity Manager collaborates to ensure proactive and adaptive strategies to address evolving cyber threats, including :

• Collaborating with IT division leadership and other City leaders to communicate the corporate security vision and foster enhanced levels of enterprise security through information sharing and cooperation.
• Developing and implementing the IT security awareness and training program for City staff and providing guidance and advice on security best practices and requirements.
• Researching, evaluating, and recommending current and emerging security technologies, solutions, and best practices to enhance the City's security posture while staying abreast of the latest security trends, threats, and developments through active participation in professional networks and associations.
• Works closely with the City’s external contracted Security Operations Centre (SOC) and acts as the point of contact between both organizations, working collaboratively with SOC analysts.

Leadership, Relationship Management and Administration

In addition to technical expertise, the Cybersecurity Manager will demonstrate strong leadership and adept relationship management capabilities, including :

• Directing and leading the City’s IT security personnel, including recruiting, training, performance management, and fostering continuous professional growth.
• Establishing and maintaining effective working relationships with internal and external stakeholders, including other IT divisions, business units, vendors, contractors, consultants, auditors, regulators, and various government agencies.
• Manage the IT security budget and resources, ensuring optimal allocation and efficient utilization of funds and assets.

The Cybersecurity Manager may perform other related activities as required.

Qualifications :

• Post-Secondary Diploma in computer science, information systems, computer engineering or related field.
• At least 5 years of progressively responsible experience in information technology, including 2 years of supervisory / management experience, including mentoring, performance management, and training.
• Certified Information Security Manager (CISM) certification or equivalent.
• An equivalent combination of education and experience may be considered.

The following are considered assets :

• Certified Information Systems Security Professional (CISSP) certification or equivalent.
• Experience with implementing and maintaining compliance with key security standards (NIST, ISO, CIS CSC, PCI DSS).
• Additional Post-Secondary education in cybersecurity or a related field

Work schedule : Monday to Friday, (35 hour work week)

Pay Band 6 ($120,912.20 - $142,250.20)

Job Code #3265

This is an exempt position