Systems Security Analyst

Reporting to the Manager Cybersecurity the Systems Security Analyst will support program functions including awareness training process engineering policy/standard/guideline/procedure/assessment and architecture documentation secure systems architecture risk assessments vulnerability assessments and audits of information systems. The successful candidate will act as operational support for existing and future security technologies and facilitate the adoption of good security practices by technical clinical and administrative staff. Build and maintain relationships with internal/external clients and stakeholders. Provide leadership and general advisory to junior team members and subject matter expertise to the greater Information Systems team.

Accountabilities:

• Protect and defend Oslers network through standards assessments and administration
• Plan schedule and facilitate/execute the activities around various types of security assessments (e.g. threat risk assessments) and IT audits coordinating remediation efforts including the development of project plans and timetables
• Recommend architect and implement security best practices related to network technologies switches routers appliances/devices content filters and firewalls
• Coordinate the installation configuration administration trouble shooting and deinstall of supported cyber and network products on the required platforms
• Monitor product vulnerabilities reporting findings to appropriate teams for remediation
• Oversee security monitoring activities and provide appropriate reporting to support systems security program performance indicators
• Research evaluate and recommend technical security solutions new policies standards guidelines and procedures to improve IT governance and meet business requirements
• Work with internal and external stakeholders to review changes recommend security controls related to the current environment and new initiatives
• Act as the IS security representative for Request for Proposal review
• Create and deliver systems security awareness material through the use of various types of media (e.g. presentations posters emails etc.)
• Develop document and implement security processes
• Respond to systems security incidents isolating threats and determining remediation
• Capture and quantify risks and manage the enterprise risk register
• Work closely with privacy teams to ensure new solutions comply with privacy standards

Qualifications :

• University degree or College diploma in information technology computer science business administration or engineering
• Minimum three years of network or information systems security in large user environments (5000 users)
• Experience in a health care environment is considered an asset
• Certified Information Systems Security Professional Certified Information System Auditor certification or MCSA; security certification is an asset
• Tangible experience with and knowledge of firewalls switches routers intrusion detection systems Internet content filters data encryption VPN network and other industrystandard technologies
• Experience in Microsoft and Cisco infrastructure environments
• Familiarity with IDS IPS Antivirus web filtering and encryption
• Strong ability to communicate with nontechnical audiences
• Strong relationship management written and verbal communication and organizational skills
• Familiarity with PHIPA FIPPA an asset
• May be required to travel and work between multiple Osler sites
• Must demonstrate Oslers Values of Respect Excellence Service Compassion Innovation and Collaboration

Additional Information :

Hours: Currently days with rotating oncall requirements (subject to change in accordance with operational requirements)

This is a Hybrid: Roles that function remotely but require essential regular onsite weekly work.

Salary:
Minimum:  $  85839.00
Maximum: $107308.50

Application deadline: March 6 2025

#LILM1

Osler values inclusivity and diversity in the workplace. We welcome and encourage applicants from diverse backgrounds. We are committed to providing accessible employment practices that are in compliance with the Accessibility for Ontarians with Disabilities Act. If you require an accommodation at any stage of the recruitment process please notify Human Resources at .

While we thank all applicants only those selected for an interview will be contacted. Any information obtained during the course of recruitment will be used for employment recruitment purposes only and not for any other purpose.