HM Note : This hybrid role isthree (3) days inoffice
Description : Responsibilities :
Responsibilities :
Defines evaluates andassesses security architecture requirements for systemsenvironments and IT projects.
Ensures theincorporation of IT security and contingency measures in thedevelopment of systems.
Advises on theidentification analysis and resolution of specific security factorsrisks vulnerabilities; protection of personal privacy issues;
andappropriate industry and international security standards.
Carry out informationand information technology (I and amp;IT) security projects andtasks in the Ontario Public Service as assigned by CorporateSecurity or cluster I and amp;IT management
GeneralSkills :
Strong understandingand expertise in security architecture
Knowledge of techniquesto secure information assets and the planning design andimplementation of security technologies
Proven techniques todiscover gaps or weaknesses in security architecture to identifyand mitigate known security threats or inherent weaknesses
Knowledge andunderstanding of relevant legislation and corporate directivesrelated to the security and confidentiality of information (e.
g.Freedom of Information and Protection of Privacy Act) in order toidentify and assess areas of concern and risk
Solid knowledge ofcurrent security and contingency technology and techniques (e.g.digital signature encryption access controls firewallsauthentication virus protection etc.
and a proven workingknowledge of security audit procedures and protocols
Experience indeveloping enterprise architecture deliverables (e.g. models)
Experience in providingspecialized security support at the specified experience level
Experience inestablishing secure environments at a network operating system orapplication level
Experience withimplementing security on complex and distributed systems.
Awareness of emergingIT trends and directions especially as related to security
Excellent analyticalproblemsolving and decisionmaking skills; written and verbalcommunication skills; interpersonal and negotiation skills
A team player with atrack record for meeting deadlines managing competing prioritiesand client relationship management experience
DesirableSkills :
Experience indeveloping enterprise architecture deliverables (e.g. models) basedon Ontario Government Enterprise Architecture processes andpractice
Experience inThreat Risk Assessment methods
Knowledge andunderstanding of Information Management principles conceptspolicies and practices
Experience in businessrecovery and disaster recovery planning.
Experience inperforming threat and risk assessment.
Experience in publickey infrastructure development and operation.
Experience in securitydesign as part of systems development projects.
Experience in intrusiondetection systems. Experience in mitigation tools for malicioussoftware.
Experience invulnerability analysis and penetration testing.
Experience in networkmonitoring.
Experiencein security policy development.
Experience indeveloping and delivering security education.
Experience in forensicinvestigation.
Knowledgeand understanding of Information Management principles conceptspolicies andpractices
Skills
Experienceand Skill SetRequirements
Description :
TheCyber Security Centre of Excellence (COE) is seeking one SeniorCyber Security Specialists to support in strengthening Ontarioscyber security infrastructure as the province collectively movesmore government programs and servicesonline :
1)and nbsp; DigitalTransformation : and nbsp;Transforming througha digital first approach to lower the cost of delivery and makeservices simpler faster and better for people businesses and OPSemployeespriority
2)and nbsp; Service DeliveryExcellence : and nbsp;Driving operationalexcellence and continuous improvement in the delivery of servicesand transforming and streamlining delivery models across governmentwith private sectorpartners.
3)and nbsp; Supporting Businesses : andnbsp;Simplifying Ontarios regulatory framework and reducing theadministrative burden on businesses to make it easier to engagewith all of governmentpriority
Therole requires the followingcompetencies :
TechnicalSecurity Architecture Design andnbsp;25%
Provides security designexpertise and advice to internal stakeholders on design principlesand best practices and the development and implementation ofsecurity mechanisms to ensure the protection of information assetsof client ministries and compliance with legal requirements andindustry bestpractices.
2.Security Liaison and Advice and nbsp; andnbsp; 25%
Maintains ongoing liaison with IT cyber security staff and seniorclient ministry program management to facilitate workingrelationships on all security planning implementation andmanagement matters by assessing security needs and assisting assetcustodians in the identification design and implementation ofsecurityarchitecture.
3.Project Management and nbsp; andnbsp; 25%
Leads and / or carries out large scale and sensitive securityarchitecture design projects and / or significant components of otherprojects with security design elements to mitigate identified riskto an acceptable level ensuring compliance and integration with theEnterprise Information Architecture and Cluster architectures;
provide supervision / technical direction to teams coordinatedevelopment of design specifications prepare reports estimates andfeasibilitystudies.
4.Communication and Relationship Management Skills andnbsp; 25%
Demonstrated communication consultative and advisory skills to actas a lead technical resource and provide expertise to ongoingcontacts.
Musthaves :
- Public SectorExperience
- Security and ProjectManagement
- StakeholderManagement