Vp, Cyber

**Location**:Pickering, ON, CA, L1W 3J2**Req ID**:46570**Status**: Full Time, Permanent**Education Level**: Bachelor’s degree in Computer Science, Engineering, Mathematics, Statistics or related field, or equivalent work experience.**Location(s)**:Pickering, On**Shifts(s)**: Days**Travel**: Yes 25% - As required**Deadline to Apply**:May 2, 2024**Electrify your career and help build a brighter tomorrow.**
- Every generation has a challenge that defines them. At OPG, we are calling on all innovators, disruptors, thought leaders and change-makers. Join us to electrify life in one generation and build a sustainable future powered by our electricity, our ideas, and our people. Join OPG and make history.- Whether you work in the skilled trades or are a business professional, a career at OPG is an opportunity to electrify your life on - and off - the job.**ACCOMMODATIONS**-
**NEW CAMPUS: This position is moving to OPG Corporate Headquarters**: In Summer 2025, OPG will officially welcome employees to our new Corporate Headquarters located at 1908 Colonel Sam Drive, Oshawa, Ontario. This new space will enable teamwork, collaboration and innovation that will help us to achieve our mission to _electrify life in one generation_.**BE THE GENERATION to help build a brighter tomorrow.**

**JOB OVERVIEW**
- Reporting to the Chief Information Officer (CIO), the Vice President of Cyber Security is accountable for providing strategic leadership in safeguarding OPG's information assets across its digital ecosystem. The VP of Cyber Security will oversee the establishment and maintenance of robust cyber security programs encompassing both Information Technology (IT) and Operational Technology (OT), ensuring alignment with business objectives while mitigating risks.- The VP position requires a visionary leader with sound knowledge of business management and a working knowledge of cybersecurity technologies covering the business (IT) and Real Time / Process control / Operational Technology (OT) systems areas. The VP will proactively work with the CIO, IT/OT organizations (Nuclear and Renewable Generation (RG)), and Line of Business representatives to implement practices that meet agreed-on policies and standards for information security, while ensuring that OPG maintains a corporate cyber security vision. Working with these teams, Information Management (IM), Enterprise Risk Management, Security & Emergency Services (SES), Legal, Regulatory Affairs and others, the VP will solicit their involvement in achieving higher levels of enterprise cyber security. The VP should understand IT and must oversee a variety of cybersecurity and risk management activities related to IT to ensure the achievement of business outcomes where the business process is dependent on technology.**KEY ACCOUNTABILITIES**
- Strategy, Governance & Planning:

- Lead the information security division and act as the senior advisor to the organization to provide the overall corporate strategy with respect to cyber security for IT and OT.
- Develop an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensure senior stakeholder buy-in and mandate.
- Develop, implement, and monitor a strategic, comprehensive information security program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy, and recovery of information assets owned, controlled or/and processed by the organization. This strategy must appropriately manage the risks associated in cyber-IT/OT while balancing fiscal responsibility.
- Provide regular reporting on the status of the information security program to enterprise risk teams, senior business leaders and the board of directors as a key component of the strategic enterprise risk management program, thus supporting business outcomes.
- Create and manage a targeted information security awareness training program for all employees, contractors, and approved system users, and establish metrics to measure the effectiveness of this security training program for the different audiences.
- Create and maintain the enterprise's cyber security documents (policies, standards, baselines, guidelines, and procedures) that meet or exceed regulatory and compliance requirements.
- Create, maintain and assist in the execution of the enterprise's Business Continuity Plan and Disaster Recovery Plan, where appropriate.
- Create and maintain the IT Emergency Response Plan and Governance, where appropriate.
- Liaise with Supply Chain to ensure that information security requirements are included in vendor contracts.
- Operational Management & Regulatory Compliance:

- Keep abreast of developments in the areas of legal, regulatory, market, corporate requirements, technology developments and best practices in the IT/OT cyber security field. Ensure that OPG is compliant with regulation changes by analyzing and providing advice on cyber s