- Leads the strategy, roadmap, development and ongoing management of the vulnerability management program for IT and OT.
- Engages with internal teams and stakeholders to architect quality solutions that are performant and resilient.
- Prioritizes vulnerabilities discovered along with remediation timeline(s).
- Monitors and reports on compliance with the related policies and standards.
- Proposes changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.
- Prepares and deliver metrics, reports for senior management to show efficiency and compliance of security functions.
- Provide support to security operation investigations, and indirect operational availability to support peers when necessary.
- Post-secondary degree in Business or Technology or a related discipline.
- Over 7 years of senior level experience in Information Security.
- In-depth knowledge of enterprise-level information security and vulnerability management
- In-depth knowledge of common vulnerabilities and exposure (CVE) databases and vulnerability scoring systems (e.g., CVSS).
- Strong understanding of multiple information security platforms and able to solve complex issues.
- Extensive knowledge of security industry standards and best practices such as ISO 27001 and NIST standards.
- Strong understanding of security risks, threats, and vulnerabilities and the judgment to assess and articulate risk effectively.
- Preferred Certifications (any in the list): CISSP, CRISC, CSIM, CISA
- Ability to work in transformative programs.
- Excellent leadership and organizational skills and the ability to work effectively with all level of stakeholders.
- Motivated self-starter demonstrating integrity, initiative and innovation qualities.
- Strong analytical ability where problems are typically unusual and difficult.
- Strong analytical skills and ability to prioritise and multitask.
- Excellent problem-solving skills with capability to identify solutions to unusual and complex problems.
- Ability to make quick decision.
- Strong business acumen with budgeting experience.
- Excellent understanding of audit and compliance standards.
- Experience with the audit process and performing risk-based audits.
- Ability to work with the broader IT organization and business management to align priorities and plans with key business objectives.
- Demonstrated capacity to lead under pressure, make decisions in ambiguous situations and drive cross functional collaboration in a short period of time.
- Demonstrated influence and persuasion skills, able to present to senior levels.
- Strong understanding of the business impact of security tools, technologies and policies.
- Ability to handle ambiguity and make decisions and recommendations with limited data
- Ability to prioritize and effectively manage competing priorities and projects.
- Ability to manage multiple initiatives while adhering to strict deadlines.
- Excellent communication and active listening skills with an aptitude for extracting and synthesizing complex information.
- Exceptional written and oral communication skills.
- Transferable skills, like communication and decision-making, are equally important.
- Being able to think on your feet and show good judgment are especially valuable in this field. "Security pros should always be ready to react to cyber-related incidents quickly.
- Must be able to travel to all City of Toronto's office locations and outside city/country for conferences if required.
- Subject to a police check, background check, psychological assessment and/or any other checks on a regular basis as the Office of the CISO handles highly sensitive and confidential information.
-
Manager Vulnerability Management
3 weeks ago
ipss inc. Old Toronto, Canada InternshipSHIPJob Title: Manager Vulnerability ManagementDivision: Office of the Chief Information Security OfficerReports To: Director Cyber AdvisorySalary Range: $140,350.00 to $182,614.00Work Location: 55 John Street, TorontoJob Type: Permanent Full TimeShift Information: Monday to Frida ...
-
Manager Vulnerability Management
3 days ago
David Joseph & Company Toronto, Canada CDIJOB SUMMARY: · To provide senior level strategic and tactical guidance to the Director Cyber Advisory as well as the Deputy Chief Information Security Office (CISO) in the execution of its mandate to establish and maintain a City-wide cyber program to ensure the City is adequatel ...
-
Manager-Vulnerability Management
3 weeks ago
Teema Old Toronto, CanadaJob Description - Manager-Vulnerability Management · To provide senior level strategic and tactical guidance to the Director Cyber Advisory as well as the Deputy Chief Information Security Office (CISO) in the execution of its mandate to establish and maintain a City-wide cyber p ...
-
Manager-Vulnerability Management
3 weeks ago
TEEMA Toronto, ON, CanadaTo provide senior level strategic and tactical guidance to the Director Cyber Advisory as well as the Deputy Chief Information Security Office (CISO) in the execution of its mandate to establish and maintain a City-wide cyber program to ensure the City is adequately protected.To ...
-
Scotiabank Toronto, CanadaIs this role right for you? · The candidate must have an understanding of vulnerability management and patch management processes. · This role will work with application, infrastructure, and governance teams to inform them of discovered vulnerability and compliance issues. · The ...
-
Manager - Vulnerability & Threat Intelligence
1 month ago
Canadian Tire Corporation Toronto, Canada Full timeWhat you'll do · The Manager Vulnerability & Threat Intelligence within Cyber Threat Management (CTM) is a key member of a fast-paced team responsible for defending Canadian Tire's technology infrastructure and web assets against a complex cyber threat environment. Working indepe ...
-
Vulnerable Management Triage Analyst
4 weeks ago
TD Bank Toronto, Canada**TD Description** · Stay current and competitive. Carve out a career for yourself. Grow with us. · **Department Overview** · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. Th ...
-
Procom Toronto, CanadaInformation Security Consultant - IT Vulnerability Management Project Planning On behalf of our client in the Banking Sector, PROCOM is looking for a Information Security Consultant - IT Vulnerability Management Project Planning. Information Security Consultant - IT Vulnerability ...
-
IT Senior Analyst, Vulnerability Management
1 week ago
SAPINC Saputo Inc. Halton Hills, Canada Full timeAt Saputo, our best comes from our people. We're a talented and caring team with a longstanding history of excellence. Since our first days delivering cheese on a bicycle, we've grown into a leading global dairy processor by staying true to the culture that defines us. Each of ou ...
-
Scotiabank Toronto, ON, CanadaPress Tab to Move to Skip to Content Link · Select how often (in days) to receive an alert: · Title: Senior Analyst, Vulnerability Management Operations Reporting · Requisition ID: 196343 · Join a purpose driven winning team, committed to results, in an inclusive and high-perf ...
-
Toronto District School Board Toronto, CanadaNo. CUPE C UE · POSTED: February 7, 2023 · DEADLINE: 4:30 p.m: February 21, 2023 · **Analyst l, Cyber Threat and Vulnerability Management** · 1 - Permanent Position · **Information Technology Services** · **CUPE Local 4400, Unit C - Grade O (12 Months)** · **$ $51.10 per hour · * ...
-
S&P Global Toronto, Canada Paid WorkAbout the Role: · Grade Level (for internal use): · 12 · The Role : Lead II Security Engineer, Vulnerability Management · The Team : · S&P Ratings Security team focuses on protecting our clients and users from all aspects of modern-day security threats. The mission of our team is ...
-
Information Technology Security Analyst
2 weeks ago
Delpath Old Toronto, CanadaLocation Address: Scarborough (1-2 day a month in office flexible on which days) · Contract Duration: 4 months with possible extension · Schedule Hours: 9am-5pm · Reason: Additional support needed during a migration process. · Typical Day in the Role: · • The incumbent is respons ...
-
Java Developer – Security
3 weeks ago
Nexus Systems Group Inc. Old Toronto, CanadaTypical Day in Role: · The incumbent is responsible for supporting the Senior Manager, Director, VP, SVP and CISO in achieving IS&C Strategic goals through various processes, including: · • Build and support within the lower environments and supporting the deployment of applicati ...
-
IT Security Analyst
2 weeks ago
Security Bank & Trust Co. Old Toronto, CanadaMust Have Skills/Requirements: · 1) 10+ years of Experience as an IT Security Analyst · 2) A strong understanding of multi-tier Web Applications, web API, and related vulnerabilities and potentials threats. Staying abreast of information provided by recognized organizations such ...
-
Security Analyst – IT
3 weeks ago
Nexus Systems Group Inc. Old Toronto, CanadaSecurity Analyst · Typical Day in Role: · • Focused individual on driving remediation of End Of Life (EOL)/Vulnerability within all Bank assets and assist with active engagements around Active Directory Clean up. · • Security Risk Index – Chasing Global Technology (GTEP) for plan ...
-
Security Analyst
13 hours ago
Informa Group Plc. Old Toronto, CanadaCurinos is the leading provider of data, technologies and insights that enable financial institutions to make better and more profitable data-driven decisions faster. Born out of the combination of two familiar industry powerhouses, Novantas and Informa's FBX business, Curinos br ...
-
Technical Specialist Cybersecurity
3 weeks ago
University Health Network Old Toronto, CanadaUniversity Health Network · The University Health Network (UHN), consisting of Princess Margaret Cancer Centre, Toronto General Hospital, Toronto Western Hospital and Toronto Rehabilitation Institute, is a recognized leader in patient care, research and education. View company p ...
-
Senior Security Analyst @ OANDA
5 days ago
Cyber Crime Old Toronto, CanadaEveryone at OANDA is focused on our vision to transform how our customers can meet all their currency needs. We are revolutionising the world of currency trading by providing innovative trading experiences, currency data and analytics solutions. Dare to be open, bold, focused - o ...
-
Senior IT Network Engineer
3 weeks ago
Greenwin Inc. Old Toronto, CanadaSummary: The Senior IT Network Engineer holds a pivotal position in the upkeep and enhancement of our network infrastructure, crucial for realizing our goal of fostering sustainable communities. We seek an adept professional with extensive experience in network management and adm ...
Manager, Vulnerability Management - Old Toronto, Canada - Tundra Technical Solutions Inc.
Description
Job SummaryTo provide senior level strategic and tactical guidance to the Director Cyber Advisory as well as the Deputy Chief Information Security Office (CISO) in the execution of its mandate to establish and maintain a City-wide cyber program to ensure the City is adequately protected.
To provide leadership, guidance and manage the design, integration and implementation of cyber solutions that support the organization and the CISO's strategic objectives.
To lead the development, deployment, and management of a vulnerability management program for information technology (IT) and operational technology (OT) to mitigate existing and future security gaps within the organization.
To lead the remediation of vulnerabilities and the creation of solutions that couples business continuity with information and cyber security regulatory requirements.
To administer the unit's financial and administrative responsibilities including the operating budget process, monitoring spending and revenues and directing the unit's cyber information technology program services, communications, human resources planning and decisions, quality assurance and staff training.
To collaborate with other segments of the organization to manage City-wide cyber initiatives.
Major Responsibilities
A normal work week is 35 hours; however, unforeseen situation may require extended hours of work with little or no prior notice. In case of a cyber incident or breach, rotation shift, continuous extended hours may be required with little or no prior notice.
The City is an equal opportunity employer, dedicated to creating a workplace culture of inclusiveness that reflects the diverse residents that we serve. Learn more about the City's commitment to employment equity.
ACCOMODATION
The City of Toronto is committed to creating an accessible and inclusive organization. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities Act (AODA). Should you require Code-protected accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs. Disability-related accommodation during the application process is available upon request. Learn more about the City's Hiring Policies and Accommodation Process.
Job 70742
#J-18808-Ljbffr
