Manager, Information Security

Company Bio
IMAGINE a hospital where everyone is committed to excellence. We did. We are. From boardroom to bedside, we go above and beyond to offer the best and safest patient care. At North York General Hospital (NYGH), we put our patients first in everything we do. We are achieving a new standard of excellence in integrated patient-centered care and as one of Canada's leading community academic hospitals, we are building on our academic foundation through enhanced education, research and innovation. North York General Hospital is part of North York Toronto Health Partners, a collaborative partnership with patients, primary care, and community partners, a first
- generation Ontario Health Team, driving the development of a locally integrated health system to serve the community. As part of our dynamic team, you too can stand out and be amazing At North York General, our team is making a world of difference.
Position Summary
Manager, IT Security Services
This Position assumes the overall responsibility for the Information Security Management System for the organization across all clinical and non-clinical departments. This includes managing the risk assessments, compliance, and governance of all Information Security assets in the organization. You will be accountable for the creation and management of policies regarding all information security of the organization and work closely with all IS leads to assist in defining standards and architecture that supports security best practices. You will also be responsible for managing audits, penetration tests and vulnerability scans across the organization, as well as managing security incidents. Your goal in this position is to manage all the operational and strategic aspects of the IS networking group and oversee daily network operations as well as plan network direction, with security as a focus.
On a practical level, you will

Responsible for the recruitment, mentoring, coaching and assistance with career development for network and security technical support resources.

Design and manage resources in supporting onsite and on-call support and capital projects as they relate to Information Security and Networks.

Under the direction of the Director, Information Services and CISO, provide tactical direction and solutions as they pertain to Information Security in support of the hospital's goals and supports the hospital's security governance, strategy, and roadmap as established by its stated policies, standards, and processes.

responding to cybersecurity incidents and potential threats.

Manage the day-to-day network operations ensuring that NYGH networks remain reliable
and secure.

Responsible for the hospital vulnerability management program which conducts

Manage and negotiate information security related sourcing processes, RFP, RFQ, RFI etc.

Manage and negotiate the Hospital’s information security related contracts with vendors and ensure terms are consistent with the Hospital financial
guidelines and approval policies

Collaborate with other stakeholders to provide leadership in preparing detailed technical requirements, request for proposals (RFPs), evaluation of proposals for new information security systems as required.

**Qualifications**:
Bachelor’s degree in technology or related fields combined with a minimum of 5 years’ management or progressive leadership experience preferably within healthcare required.

Experience in network and information systems for 5 years or more

At least one of Certified Information Security Auditor, Certified Information Systems Security Professional, Certified Information Security Manager and/or equivalent industry certifications are required.

Hands on experience (at least 3 years) with information security, governance, standards,
compliance, privacy management.

Working experience and familiarity with common security and privacy industry standards (example: ISO/IEC 27001, National Institute of Standards and Technology, Payment Card Industry Data Security Standard etc.). II

Ability to work independently and with multiple and diverse contacts, including external
organizations, other IT staff, and different levels of management within the organization.

Ability to communicate the value of compliance and information security with audience-appropriate language to different levels of the organization.

Ability to handle multiple concurrent tasks while demonstrating urgency and ownership to drive projects to completion.

ITIL Foundations Certification or PMP Certification preferred.

Healthcare experience preferred

Bilingualism in English and French is an asset
What We Offer
Working at NYGH means working with a dynamic team of fellow healthcare providers, staff, and volunteers in one of Canada’s leading hospitals. This is a Full-Time Position, with required days, 8 hours shift, in the Information Services department. We offer a highly competitive total compensation package that includes benefits, pension, and