Director, Cyber Security Defence & Resilience

Pour obtenir une traduction en franais de loffre demploi suivante veuillez envoyer un courriel . Les demandes seront traites dans un dlai de trois jours ouvrables et la priode de dpt des demandes sera prolonge de trois jours.

To obtain a French translation of the following job posting please email . Requests will be addressed within three business days and the application window will be extended by three business days.

At Ontario Health we are committed to developing a strong organizational culture that connects and inspires all team members across the province. Our vision is that together we will be a leader in health and wellness for all. Our mission is to connect the health system to drive improved and equitable health outcomes experiences and value. How we work together is reflected through our five values: integrity inspiration tenacity humility and care.

• Fully paid medical dental and vision coverage from your first day

• a health care spending or wellness spending account

• a premium defined benefit pension plan

• three personal days and two float days annually

• three weeks vacation to start (for individual contributors) increasing to four weeks after two years

• career development opportunities

• a collaborative values-based team culture

• a wellness program

• a hybrid working model

• participation in Communities of Inclusion

Want to make a difference in your career Consider this opportunity.

The Director Cyber Security Defence & Resilience holds a pivotal strategic role within Cyber Security operations and reports directly to the Vice President Cyber Security & Foundational Services. This position is accountable for leading a team of 30 to 35 Cyber Security professionals as well as overseeing an external Managed Security Service Provider (MSSP) all tasked with safeguarding Ontario Health Information Assets. These efforts support organizational objectives and ensure compliance with Ontario Health policies.

Under the leadership of the Director this team serves as the organizations first line of defense committed to continuously enhancing its cybersecurity posture. This is accomplished through in-depth analysis of vulnerability and threat data effective incident response and the strategic selection implementation and management of cutting-edge security technologies. The role also includes oversight of digital resilience operations ensuring the organization can recover swiftly and effectively in the event of a cybersecurity incident.

Here is what you will be doing:

Specific Accountabilities

• Oversees the Security Operations Centre and manages threat and vulnerability activities ensuring Ontario Health remains protected as risks evolve. Collaborates with system owners to address vulnerabilities and streamline information security processes.

• Lead and manage the end point security process and technologies that includes Endpoint Detection and Response (EDR) and Security Service Edge (SSE).

• Continuously expand the usage of security monitoring tools to improve defences including detection prevention and policy enforcement.

• Serve as subject matter expert for security monitoring and incident response related knowledge domain and tools.

• Effectively operate sustain and mature the Agencys cryptography solutions.

• Stay up to date on latest information security controls technologies practices techniques and capabilities in the marketplace. Select and acquire new security technologies to ensure Ontario Health is well positioned against the threat landscape.

• Manage continued effectiveness of the Security Information and Event Management (SIEM) platform and lead the efforts to fine tune its capabilities and enhance the scope of the platform. Effectively lead the Identity Governance and Administration (IGA) function to strengthen the defence of systems and data.

• Maintain and continually improve security incident response capability within Ontario Health to drive consistent incident response escalation and reporting.

• Coordinate and support external healthcare incidents involving Ontario Health services while liaising with provincial bodies like MPBSDP law enforcement agencies (RCMP OPP local authorities) and the Ministry of Health.

• Oversight and management of external MSSPs providing support on threat intelligence vulnerability management Security Information and Event Management Incident Response services and other protection services to Ontario Health.

• Manage the relationship and ongoing engagement with MSSPs to ensure valued delivery and effective execution of committed security services in accordance with the service level agreements.

• Build strong cross-functional relationships with key business partners to fully understand all business project requirements to apply the needed information security controls.

• Responsible to support the development and management of the Information Security program in conjunction with the Information Security Office (ISO).

• Work closely with the Ontario Health Cyber Security Centre to support the Provincial Cyber Security Operating Model and collaborate on external incident reporting and management.

• Support cyber resilience functions across the organization that ensure product groups are able to recover from disruptive incidents and maintain business throughout.

• Able to participate support and host tabletop exercises to test and refine processes accountabilities and plans.

• Manage a staff of cyber security professionals hire and train new staff and consultants conduct performance reviews and provide management and coaching.

• Provide fiscal and budgetary management.

Technical Requirements

• Information Security Management -- Knowledge of processes tools techniques and practices for assuring adherence to standards associated with accessing altering and protecting organizational data. Strong knowledge of NIST CSF 2.0 ISO 27002 and MITRE ATT&CK Frameworks for Information Security.

• Experience with contract and vendor negotiations management

• Understanding of cyber resilience functions such as secure backups Business Impact Assessments Business Continuity Planning Disaster Recovery Planning and readiness testing through Tabletop Exercises.

• Provide subject matter expertise and feedback into development of a DevSecOps framework

• Ability in dealing with security capabilities in multi-cloud environments (Azure & AWS) including virtualization platforms such as VMware and Red Hat Open Shift container security platforms

• Experience with Security operation center technologies such as:

  • SIEM

  • EDR

  • DLP

  • Microsoft and AWS cloud native tooling

  • Firewalls

  • WAFs

  • Vulnerability management tooling

  • IGA including IAM and PAM

  • Cryptographic tools and standards

Here is what you will need to be successful:

Education and Experience

• Bachelors degree or equivalent in a specialized field in computer science health administration cybersecurity and/or relevant education

• 10 years of experience in Technology and 5 years of experience in Security considered strong asset

• 5 years people leadership experience considered an asset

• Thorough understanding of theoretical principles and their practical application to job responsibilities

• Proven ability to work independently with a strong commitment to continuous learning and professional growth

• Works with clear objectives with minimal supervision relying on personal expertise judgment and experience

Knowledge and Skills

• Connects: Builds trust with diverse colleagues and customers by listening understanding needs and encouraging inclusive collaboration.

• Teamwork: Works effectively with others communicates clearly and strengthens team connections to achieve goals.

• Inspires: Creates shared vision communicates it positively and fosters engagement by valuing all perspectives.

• Self-Awareness: Seeks feedback for growth understands emotional impact and applies insights to improve collaboration.

• Delivers: Focuses on timely results adapts to changing demands and aligns resources for optimal outcomes.

• Transforms: Leads change through innovation encourages creativity and commits to continuous improvement.

• Accountability: Takes responsibility for decisions clarifies expectations and pursues better results.

• Integrity: Maintains ethical standards builds trust addresses unfairness and ensures unbiased decision-making.

Location: Ontario Health supports a hybrid work environment and has office locations across the province. We welcome applications from candidates residing anywhere in the province of Ontario.

Employment Type:

Contract Length:

Salary Band:

External Application Deadline Date: