Current jobs related to Manager, Cybersecurity - Windsor - City of Windsor

**JOB POSTING #**: 2024-0521
**POSTING PERIOD**: Wednesday, December 11, 2024 at 8:30 AM to Friday, December 20, 2024 at 4:30 PM
**DEPARTMENT**: Information Technology
**UNION**: Non-union
**JOB CODE**: NU0683
**POSITION STATUS**: Regular Full-Time
**GRADE/CLASS**: NU14
**# OF POSITIONS**: 1
**RATE OF PAY**: $122,852.35 to $149,328.45 annually
**SHIFT WORK REQ'D**: No
**DUTIES**:
The Manager, Cybersecurity & Risk will create and lead a team to effectively implement and support innovative, secure, reliable and efficient technical solutions based on business requirements of the City of Windsor. As a member of the management team, the Manager, Cybersecurity & Risk contributes to excellence in information technology service delivery and collaborates in the planning and decision making to enhance IT and related services.
The Manager, Cybersecurity & Risk, is a leader for the Municipality in understanding and guiding the municipality in the development of an Enterprise Risk Framework to help align policies, IT controls and security services with corporate objectives. This role involves leading a team responsible for cybersecurity initiatives, including business continuity and disaster recovery, incident detection and response, vulnerability management, and ongoing risk assessments. The Manager will develop partnerships at all levels of government and industry to ensure the Municipality adheres to best practices related to the protection of personal, health and financial information for staff, residents and clients. This position plays a pivotal role in enhancing the Municipalities resilience, ensuring operational continuity, and advancing its overall cybersecurity posture.
Reporting to the Chief Information Officer (CIO) the Manager, Cybersecurity & Risk, will play a pivotal role in leading the development and maintenance of the City's technology security solutions through strategy and planning, acquisition and deployment of technology security solutions and operational management of technology security compliance and investigations.
Your primary responsibility will be to oversee the operations of the Corporation's technology security solutions, including threat intelligence, by management of a Cybersecurity Strategy and Enterprise Risk Framework.
You will oversee a team of IT security professionals dedicated to preventing, responding, investigating, mitigating and resolving security vulnerabilities and cyber incidents.
You will also be responsible for establishing an enterprise security stance through policy, architecture, processes and procedures.
You will also develop training and employee awareness on cybersecurity best practices.
Secondary tasks will include the selection of appropriate security solutions and an oversight of any vulnerability audits and assessments.
You will oversee and guide the implementation of audit and vulnerability assessments recommendations, define acceptable use of technology, and establish responsibilities of stakeholders
The Cybersecurity & Risk Manager is expected to interface with internal and external stakeholders as well as with leaders of business units to share the corporate security vision and to solicit their involvement in achieving higher levels of enterprise security and continuity management through information sharing and co-operation.
Will be required to perform Occupational Health & Safety duties as outlined in the Corporation's Health and Safety Program.

**QUALIFICATIONS**:
Must have a Master's degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (4) years of experience in a technology security services position;
OR Must have a university degree in a relevant discipline, such as Computer Science, Information Technology, Engineering, E-Commerce, Business Administration or related programs and a minimum of (6) years of experience in a technology security services position,
OR Must have an Ontario Secondary School Graduation diploma combined with a 3 year Community College diploma in Computer Sciences or relevant discipline or Ontario Ministry of Education equivalencies and over ten (10) years of experience in a technology security services position;
**Must have one or more of the following certifications**:
GIAC Security Essentials Certification
GIAC Security Leadership Certification
ISACA Certified Information Security Manager
**Microsoft Certified Systems Engineer**: Security
(ISC)2 SCCP
(ISC)2 CISSP (preferred)
(ISC)2 ISSAP
Must have knowledge of IT cyber security and cloud technology principles, methodologies, mechanisms and techniques with specialized knowledge of infrastructure products, services and troubleshooting methods
Must have knowledge of cyber security technologies, governance processes and practices, cyber threat risk concepts, protocols and principles
Must be able to provide strategic advice, problem solve, and input into the cyber sec