- Lead, mentor, and grow a team of information security professionals providing coaching, development, succession, recruitment, and resource management. Regularly contribute to performance and development plans.
- Define, document, and assign information security roles and responsibilities for information security management personnel, asset owners and general users.
- Responsible for the implementation of a holistic information security program based on industry standards.
- Develop and maintain a comprehensive information security strategy, expand upon the roadmap, and budget.
- Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to security threats.
- Establish and enforce information security policies, standards, and best practices across the organization.
- Collaborate internally with cross-functional teams to conduct regular security audits, assessments, and penetration tests to identify and remediate vulnerabilities and risks.
- Coordinate and lead the incident response process, ensuring timely and effective resolution of security breaches.
- Manage a formal business continuity program that includes a business continuity plan and a disaster recovery plan.
- Work closely with vendors providing managed services related to security of the City's infrastructure and environment.
- Implement a formal information security awareness training program for all users.
- Identify relevant information security Key Performance Indicators (KPI).
- Research and evaluate emerging security trends, threats, and technologies, and recommend appropriate solutions.
- Liaise with internal staff, external partners, and vendors on security-related matters.
- Report on the status and performance of the information security program to senior management, executive leadership team, and city council as required.
- Bachelor's degree in technology-related discipline including computer science, information systems, cybersecurity or equivalent.
- A Minimum of six (6) years of progressive experience in information security, preferably in a managerial or leadership role.
- Information Security Certification / Accreditation such as CISSP, CISM, CISA or equivalent are preferred.
- In-depth knowledge of security frameworks, incident response, risk management methodologies, standards, and best practices, such as NIST, ISO, and MFIPAA.
- Knowledge of security best practices to protect Azure and M365 services.
- Understanding of operating systems, networking, firewalls, and the TCP/IP protocol suite.
- Excellent communication, presentation, and interpersonal skills.
- Proven ability to work under pressure and handle multiple tasks and priorities.
- Strong analytical, problem-solving, and decision-making skills.
- IMS 200 Certification or equivalent (ICS200) is considered an asset. Subject to course availability, certification must be achieved within the first year of employment.
Manager of Information Security - Brantford, Canada - The City of Brantford
Description
Position Summary
Situated on the picturesque Grand River, the City of Brantford is a rapidly growing community of over 100,000 residents, located in the heart of Southern Ontario with direct access to Hwy. 403 and is in close proximity to the GTHA, Waterloo and Niagara regions. As a single-tier municipality, Brantford is responsible for the full spectrum of municipal service areas. We invite you to join our #TeamBrantford corporate culture with many progressive initiatives, including our Work from Home arrangement. The City is committed to the professional development of our staff and invite you to come, grow with us
Reporting to the Director of Information Technology Services, the Manager of Information Security is responsible for overseeing the security of the City of Brantford's information systems and data. The Manager of Information Security will lead a team of security professionals, oversee risk management activities, develop, and implement security policies and procedures, monitor, and respond to security incidents, internal/external audit activities, ensure compliance with relevant standards and regulations, and collection and analysis of key performance indicators. Duties include but are not limited to:
Qualifications
As a condition of employment, proof of current and valid certificate(s) and/or educational qualifications will be required.
What We Offer
The City of Brantford is an equal opportunity employer that values equity, diversity and inclusion. At the City of Brantford, people are our priority. #TeamBrantford employees are our most valuable resource and we believe it's important to offer a competitive total rewards package.
Paid training and professional development, the flexibility to work from home in some positions and wellness and work life balance are just some of the great things the City of Brantford has to offer. When you work with us, you'll know you're doing important work that matters and helps build a better Brantford. Come grow with us.
Learn more about working for the City of Brantford