Information Security Program Manager - Toronto, Canada - University of Toronto

University of Toronto

Verified Company

Toronto, Canada

3 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Date Posted:12/13/2023

Req ID:35383

Faculty/Division:
Faculty of Applied Science & Engineering

Department:
Faculty Information Technology Office

Campus:
St. George (Downtown Toronto)

ABOUT US

The Faculty of Applied Science & Engineering is a world-renowned community of researchers and students dedicated to solving some of the world's most pressing challenges through collaborative and multidisciplinary research and experiential education.

Through rigorous technical training, and unparalleled extracurricular and professional experience opportunities, we prepare the next generation of engineering leaders and changemakers to unlock the future's boundless potential.

The Faculty's Information Technology Office provides the vision and leadership for the development and implementation of technological information systems, processes, and associated technology to support Faculty of Applied Science and Engineering academic mission and administrative operations.

The Faculty Information Technology Office is comprised of a team of highly motivated IT professionals who work collaboratively with colleagues in administrative units and academic departments across the Faculty to provide timely, quality service and innovative technological solutions.

YOUR OPPORTUNITY

Faculty of Applied Science and Engineering is distributed and complex, serving the needs of teaching, research and administration in academic units and institutes.

Divisional and departmental IT teams are responsible for ensuring that technology is delivered and stewarded with security and risk focus and in alignment with institutional guidelines and direction.

Reporting to the Director, Information Technology and with input, as required, from a dotted line reporting relationship to the Chief Information Security Officer (CISO) of the University, the Information Security Program Manager provides strategic leadership and tactical planning, evaluation, design, development, implementation, and overall management and support of the Faculty's Information Security and Risk Management Program.

The Manager is responsible for working with Information Technology staff and resources at the Faculty of Applied Science and Engineering and across the University to efficiently and effectively address the management, control, and protection of Digital Assets in support of Faculty's education and research mission.

The Manager is also responsible for conducting and facilitating risk and privacy assessments, overseeing maintenance of the data asset inventory, leading incident response and investigations, and ensuring on-going cybersecurity outreach.

Work is done in the context of existing policy, guidelines and applicable legislation in a fluid, consultative environment.

The Manager works with academic departments and units across the Faculty with the aim of minimizing the risk of compromise to all Faculty's IT services and resources, analyzing gaps and vulnerabilities, effectively solving security and privacy risk issues, integrating new systems with current systems, and initiating projects to augment and improve service delivery.

The Manager oversees the monitoring of cyber threats and works to ensure systems, servers and computing solutions administered by the Faculty and academic units are secure, available, and that appropriate disaster recovery and business continuity plans are in place and regularly tested.

The Manager collaborates with departmental and faculty-wide groups (ISTEP, Engineering Computing Facility, Engineering Career Center, Office of the Registrar, Recruitment, etc.) to ensure that all projects containing confidential and restricted information follow the information security standards and best practices for Identity and Access Management, Information Disclosure, Information Integrity, Business Continuity and Protection of Privacy.

As the key senior project team member for major security initiatives and solutions, the Manager provides expertise at all stages of each project, from design to delivery, ensuring current, high-quality innovative and advanced solutions are being applied in accordance with service best practices, and evaluating appropriateness for final use to effectively achieve and optimize the security of services to the Faculty.

The Manager establishes and manages strong relationships with all levels of the FASE community including executive leadership, project teams, clients, stakeholders, and academic departments across the Faculty and the University of Toronto to promote cybersecurity awareness.

Work is done in collaboration with institutional partners including other academic Divisions, IT&S, FIPP office and others.

As a member of the FASE management team, the incumbent tables proposals to augment and/or improve services delivered and participates in reviewing proposals from others.

The incumbent's in-depth technical expertise and teamwork approach to organizational issues are called upon not onl