Specialist Information Security

Specialist Information Security (Governance) Join to apply for the Specialist Information Security (Governance) role at Independent Electricity System Operator (IESO). Requisition ID: 20401Location: Mississauga, ON (Hybrid)Status: RegularBusiness Unit: Information & Technology Services Why Join Us You’ve got great skills. And you want to use them in an organization where you know what you do every day matters. We get that. Ensuring Ontarians have access to affordable and reliable power doesn’t happen by accident, so we give you the tools, flexibility and support you need to achieve your goals, and development opportunities to help you grow. Who We Are The Independent Electricity System Operator (IESO) works at the centre of the province’s power system, ensuring Ontarians have access to reliable and cost‑effective electricity when and where they need it. We operate the province’s electricity grid 24/7, design, run and oversee the wholesale electricity markets, and plan and prepare to meet Ontario’s electricity needs now and into the future. Opportunity The Specialist, Information Security will coordinate, plan and/or organize the development and delivery of Information Security services to business units in order to maintain the integrity of vital computer applications and information systems across IESO and to support executives and managers in fulfilling their due diligence responsibilities regarding Information Technology Security. What You’ll Do Contribute to the development of Information Security Policy, Program and procedures for business units consistent with corporate security objectives and generally accepted leading‑edge Information Security practices. Support the development and delivery of Identity and Access Management roadmap and IAM program governance, providing advice and consultation to key business stakeholders. Design and deliver simulated phishing campaigns and cybersecurity training, ensuring configuration of the tool continues to deliver on the program and required metrics are generated. Collect performance metrics for information security and create presentations to show trends over time, focusing on areas of improvement and degradation of security controls. Contribute to the development of cybersecurity awareness training materials and general cybersecurity education, including in‑person presentations to staff. Support internal and external audit activities through information collection, participation in interviews and retention of audit evidence. Report results of Information Security assessments with conclusions, recommendations for improvement, planned management actions and follow‑up status to the Information Security Leadership Team. Participate and coordinate the fulfillment of regulatory compliance requirements, collecting evidence from stakeholders and communicating audit evidence to support audits. Lead or support projects, continuous improvement initiatives, perform assigned work, resolve problems and assess performance. Work with business units to determine data classification and ownership/custodianship. Ensure adequate security tools are available for system reviews. Stay abreast of developments in legal, regulatory, corporate requirements, technological developments and best practices in IT and corporate security. Maintain high level of trust and integrity in handling confidentiality issues and information. Review and assess all requests for exception or exemption to policy. Perform other duties, tasks or projects as required or assigned. Education Sound knowledge of computer science, information technology systems and MS Office productivity tools. Excellent written and oral communication skills, ability to collaborate with peers and cross‑functional teams, review/input on procedures, standards and methods and design/deliver training materials. Normally acquired through a university degree in Computer Science or related discipline or equivalent. Experience Experience coordinating/analysing enterprise security systems on diverse computing platforms, operating systems and applications, especially Windows NT and UNIX. Experience with systems implementation, identity and access management programs and processes, cybersecurity risks and controls. Experience as part of a large multi‑disciplined project with systems vendors, requiring sound project management skills. A period of over 5 years, up to and including 10 years, is considered necessary to gain this experience. What’s In It For You A comprehensive total rewards program, including best‑in‑class benefits and a flexible workplace. A challenging, fast‑paced, collaborative team environment where your perspectives and experiences matter. Leaders who support your growth and success through regular feedback and coaching. The opportunity to work with some of the brightest minds in the industry. Commitment to Diversity and Inclusion At the IESO, we know that achieving great results depends on embracing diversity by attracting, developing and retaining people from a wide variety of backgrounds. We do this by ensuring our recruitment and advancement policies are fair and equitable, and by creating an accessible and inclusive environment – one that values every team member’s unique skills and experiences and ensures they have the support they need to achieve their potential. If you require accommodation during the recruitment process, please let us know. Next Steps We thank you for your interest in a career at the IESO, but we will only contact those candidates selected for an interview. The successful candidate must be eligible to work in Canada and will be subject to a background check. The IESO offers a hybrid work model program to most of our employees, based on business needs. Individuals participating can work an average of three days per week remotely within Ontario. When working in the office, you will be located at our Mississauga, ON location. #J-18808-Ljbffr