Manager, Cyber Security - Barrie, Canada - Royal Victoria Regional Health Centre

Royal Victoria Regional Health Centre
Royal Victoria Regional Health Centre
Verified Company
Barrie, Canada

2 weeks ago

Sophia Lee

Posted by:

Sophia Lee

beBee Recruiter
Description

Job Description:

This role contributes to development of cyber security roadmap and related implementation strategies. Provides input to strategic leadership, management, and oversight of cyber security program activities of the Regional Digital Health team.

In addition, the role develops and carries out cyber security risk evaluations utilizing best practices while employing solutions to mitigate risks.

The Manager, Cyber Security is required to provide mentorship to program staff and other stakeholders, both internal and external.

The Manager, Cyber Security is focused on projects / programs / operational areas that are large and broad in scope, have complex mandates and objectives, and related to more than one focused area of expertise.

This role requires an adept leader who is action oriented, with a record of accomplishment with motivating team members to achieve higher goals and improving the impact of technology initiatives.

The Manager, Cyber Security must be comfortable with presenting materials to large audiences and demonstrate ability to understand and discuss technical concepts, manage trade-offs, and evaluate opportunistic innovative ideas with internal and external partners.


Education:

  • Bachelor's or Master's degree in Computer Science, Information Technology, Cyber Security, Systems or other related field, or equivalent work experience.

Experience:

  • 5+ years experience in various security domains including thirdparty risk management, IT audits and/or Security Governance, Risk and Compliance (GRC)
  • 5+ years experience leading cyber security or technical teams.
  • Professional certifications in information/cyber security (e.g. CISSP, CCSP, CISA, CISM, CRISC) is required.
  • Knowledge of prevalent industry standards (ISO 27001/27002, NIST, CIS, COBIT).

Competencies:

  • An understanding of risk assessment methodologies such as HTRA and CSF, and frameworks such as ISO 27001/2and NIST.
  • Knowledge and experience developing and working with security architecture, and IT management frameworks such as SABSA, and COBIT.
  • Strong understanding and ability to interpret and communicate risk management concepts.
  • Working knowledge of TRA methodologies and other risk assessment methodologies and tools, and familiarity with related security tests and test methodologies
  • Experience and working knowledge of risk management lifecycle, processes, and concepts.
  • Working knowledge and expertise in the Personal Health Information Protection Act (PHIPA) is an asset.

Key Responsibilities:

  • Lead various security governance and risk management initiatives and providing security expertise, facilitating collaboration, and furthering the organization's objectives.
  • Lead and coach a team of security professionals to deliver timely service to internal and external stakeholders to support organizational cyber security goals and objectives.
  • Review solution architectures, technology, design, and technical development processes to identify potential threats and vulnerabilities, and to manage the implementation of solutions that enhance the security of solutions and business processes. Identify, analyze, and recommend options for risk management at appropriate levels within the enterprise and the healthcare partners.
  • Lead teams to implement security policies and related controls.
  • Lead the security control implementation and remediation activities across the organization.
  • Work with members and organizations in the healthcare community to onboard them to regional LDG services.
  • Lead the ongoing development and maturing of the RVH security program.
  • Lead the development of security policies and strategic planning initiatives to ensure compliance with industry standards and best practices.
  • Demonstrate the ability to effectively negotiate and resolve conflicts with individuals or teams in a professional and collaborative manner.
  • Utilize strong communication and negotiation skills to effectively persuade individuals with differing perspectives and conflicting interests towards a mutually beneficial resolution on a regular basis.
  • Develop processes to manage workflow and materials related to the information security risk management.
  • Manage the organization's security awareness education program.
  • Manage multiple clients and security related projects simultaneously, and present status updates to leadership.
  • Work with technical teams to establish appropriate security processes, controls and ensure compliance with security policies.
  • Lead various RVH security initiatives providing security expertise, facilitating collaboration, and furthering RVH's security objectives.
  • Stay abreast of any changes to industry best practices or legislative regulations and assess the resulting impact to the organization.
  • Lead endtoend planning, architecture, solution development, and execution of program activities.
  • Support the ongoing development & maintenance of RVH's risk management processes to c
More jobs from Royal Victoria Regional Health Centre
See all jobs of Royal Victoria Regional Health Centre