Manager IT Security

Website Georgian College

Job Description:

Reporting to the Manager, IT Infrastructure, the incumbent is responsible for ensuring appropriate controls are in place for the security of information assets and hardware relied upon by the college’s staff. The incumbent ensures procedures and activities comply with all regulatory requirements and internal policies, procedures, guidelines and standards. The incumbent provides leadership to the college community on information security trends and activities. The position also oversees the privacy function for the college ensuring compliance with appropriate legislation

Job Responsibilities:

  • Developing and delivering security awareness and training programs
  • Developing security architectures for cloud cloud/hybrid systems.
  • Human resources management duties include performance review, hiring, team building and conflict resolution
  • Managing numerous complex Cybersecurity projects with various priorities and stakeholders
  • Participates in and supervises the preparation and recommendation of detailed budgets with cost estimates. Establishes and maintains budgetary control for the security function including procurement
  • Creating thorough and accurate reports and providing status updates on projects; presenting findings to senior leadership regarding threat identified and recommended security action
  • Manages staff through review and evaluation of work-in-progress, development of work plans and development of skills and professional currency plans
  • Responsible for Auditing & Reporting, email search, discovery and destroying, and phishing attack simulation
  • Working closely with the Operation team to provide input and guidance on identity security, zero-day threats, exchange online protection, SharePoint protection, email security, retention policies, device security, MS Teams and other O365 components
  • Acting as the College’s subject matter expert on Georgian’s response to Information Security trends, vulnerabilities and threats
  • Developing and executing action plans for completing projects related to the enterprise InfoSec priorities
  • Developing data privacy requirements and safeguards to aid various college-wide programs, projects and initiatives
  • Developing, implementing and administering policies, procedures, standards and guidelines
  • Assessing information security risk through qualitative risk analysis on a regular basis
  • Conducting first level investigations to resolve disputes involving staff; uses collective agreements, college policies and documents to assist in the dispute resolution process
  • Assessing and continuously improving service delivery within cybersecurity program thru effective communications, lessons learned and risk mitigation
  • Evaluating and recommending new information security technologies and counter-measures against threats to information or privacy
  • Developing vulnerability assessments and penetration testing for the college’s networks and sensitive information systems
  • Leading regular security and data privacy reviews, assessments and audits. Identifying, introducing and implementing appropriate procedures including checks and balances, and tests these safeguards on a regular basis
  • Leading and developing education and awareness programs, and simulated campaigns to ensure workforce are aware of cyber threats, cybersecurity policies, procedures and practices and appropriately informed of their responsibilities
  • Providing leadership and supervision to staff by determining work priorities/assignments and approval of staff scheduling
  • Creating and implementing Cloud Security Strategy extending governance, control and data leakage prevention, making sure that college’s data is protected on SaaS, PaaS and Cloud
  • Application Architecture subprograms
  • Overseeing data analysis of incident and threat response; developing and implementing plans to improve procedures
  • Providing IT security guidance in the deployment of IT applications and system development projects
  • Leading security scanning/ testing, controls testing, document results, and provide detailed updates to internal stakeholders

Job Requirements:

  • Proven experience managing staff and/or leading diverse people through project management
  • Successfully completed a four-year degree in computer science, information security or a related discipline
  • Practical experience in the Information Security Architecture field
  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
  • Strong understanding of security architecture best practices, standards and frameworks
  • Experience with vulnerability scanning and mitigation utilizing Nessus or similar tool
  • Completion of a recognized industry certification such as CISSP, CCSP, OSCP, GIAC or other security certifications at a similar level (completed or in progress) is an asset
  • Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols and application security
  • A minimum of 7 years progressive IT experience
  • Possess outstanding communication skills, both oral and written; understand the value of and use persuasive techniques
  • Strong understanding of nextgen Firewall software, IDS, IPS, virus protection, encryption
  • Strong understanding of enterprise computing environments including MS Server 2012, 2016 and 2019, Linux, distributed applications, networking, VMWare, Hyper-V, DNS, DHCP, Active Directory

Job Details:

Company:  Georgian College

Job Category: Education

Vacancy Type: Full Time

Job Location: Orillia, Ontario, CA

Application Deadline: N/A

Apply Here