Cyber Security Specialist - Toronto, Canada - Toronto Hydro

Toronto Hydro

Verified Company

Toronto, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Reporting to the Senior Manager, Enterprise Architecture & Cyber Security, the Cyber Security Specialist will assist in designing, implementing, and maintaining the organization's data protection infrastructure.

The person in this role implements processes, systems or projects that contribute to the confidentiality, integrity, and availability of Toronto Hydro data, information technology and operational technology assets.

S/he responsible for identifying, implementing and maintaining security controls in accordance with Toronto Hydro's policies and standards in addition to discreetly monitoring, detecting, and responding to cyber incidents.

The incumbent is expected to behave ethically and follow the established code of business conduct, policies, and internal control procedures, laws, and regulations governing Toronto Hydro.

_Toronto Hydro has implemented a mandatory vaccination requirement for all its employees. Proof of full vaccination will be required upon receiving a conditional offer of employment. Toronto Hydro will provide reasonable accommodation to individuals who cannot be vaccinated due to disability or any other ground protected by the Ontario Human Rights Code._

KEY RESPONSIBILITIES:

Identifies, develops, and implements cyber security controls, and data governance processes to support cyber security operations. Proactively identifies problems and opportunities for improvement of cyber security systems or processes, including security architecture advancement, data security controls, threat and risk mitigation, service level improvements, and identity and access management improvements
Provides cyber security services and solutions to support IT&S project delivery. As an SME, provide technical expertise and advice on data securityrelated risks, recommend and implement tailored recommendations leveraging existing technologies to remediate risks, and meet business requirements.
Act as a liaison between IT Security Operations and broader internal IT stakeholders to gather, understand the business, technical requirements and contribute to various IT projects from a security standpoint to ensure compliance with security standards and enhancing the overall security posture of the organization.
Troubleshoots and maintains IT assets (i.e. hardware, software, infrastructure like servers, computers, networks, mobile devices, etc.) to improve reliability, response to complex cyber security incidents and issue resolution, life cycle management/refresh
Identifies opportunities and improves productivity of cybersecurity services, which may include reengineering current processes and finding automation and efficiency
Researches and identifies industry trends (relative to scope of responsibility), leveraging best practices to improve and align cybersecurity services to quickly respond to emerging cyber security threats and risks across our IT environments (onpremise & cloud).

REQUIREMENTS:

University Degree (Science or Computer Engineering Preferred)
At least 6+ years of handson experience in Cyber Security and 3+ years in designing security solution architecture, implementation, and administration of the enterprise Data protection solutions such as Data Security and Management, Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), Data Encryption and Key Management solutions.
Endpoint Security
Cloud Security
Key management/Public Key Infrastructure (PKI)
Data Encryption/Tokenization
Digital Rights Management (DRM)
Data Privacy and regulations
Active Directory (On-Prem/Cloud)]
One or more Cybersecurity certifications:(CISSP, CISA, CISM, GCIH, OCSP) and vendor security certification (Microsoft AZ500, Microsoft Cybersecurity Architect Expert SC100) preferred
Demonstrated experience in management and improvement of IT security technologies and process, security architecture, and cyber incident response
Experience with NIST Cybersecurity Framework and Ontario Cybersecurity Framework
Utility Experience is an asset
Knowledge of Information Technology Infrastructure Library (ITIL)
Strong influencing and negotiating skills
Superior verbal and written communication skills; ability to effectively communicate ideas and influence change with people at all levels of the organization
Strong stakeholder engagement and project management skills
Strong problemsolving, decisionmaking and analytical skills
Strong organizational and time management skills, with the ability to multitask and meet deadlines.
Strong strategic business focus and commitment to partnering with business units to enable them to meet their objectives.

Toronto Hydro has introduced a Hybrid Work Arrangement. This position allows for remote work up to three days per week, based on business needs.

Employees will be required to come onsite on those days when they are involved in activities that they or their leader feel are better conducted in person.

You are expected