CYBER SECURITY SPECIALIST

---

If you are looking for a new challenge, then the Cyber Security Branch with the Treasury Board Secretariat is looking for IT&T professionals with Cyber Security skills to provide technical consulting and expertise in the area of security design.

Please note: Less qualified applicants may be considered on an underfill basis.

---

About the job

As a Cyber Security Specialsit, you will:

• Lead the establishment and implementation of comprehensive security programs such as providing detailed guidance, consultation and advice on security controls, policies and standards.
• Develop and implement operational policies, strategies and procedures for security programs such as providing cyber security design reviews of architecture documentation, cyber security assessments against security standards, applicable policies and industry best practices.
• Develop communication materials and protocols to ensure prompt collection and dissemination of cyber security information, advice and conduct of security awareness and education.
• Provide leadership to project teams in mission critical cyber security risk assessments and business continuity planning.
• Prepare research, evaluation and statistical reports for client management and cyber security.

---

What you bring to the team

CYBER SECURITY, PROJECT MANAGEMENT AND LEADERSHIP SKILLS:

• You have knowledge and experience with cyber security control methods, techniques, tools, current software, best practices, project life cycle methodologies, standards such as GO-ITS 25.x Standards and policies to lead, coordinate, assist and support cyber security practices on medium-large I&IT projects and project components
• You can implement and monitor operational cyber security policies and procedures.

TECHNICAL KNOWLEDGE:

• You have knowledge of Quality Assurance and Quality Control processes, policies, techniques, tools, best practices, and standards such as CISSP, CISM, CRISK
• You are familiar with common infrastructure architectural policies, procedures and standards
• You have knowledge of information handling technology such as information processing, storage, and accessibility, industry-wide standards, protocols and functionality for I&IT products (cyber threats such as OWASP top 10, security best practices such as SANS top 20, frameworks such as ISP, COBIT, NIST, knowledge of cyber security practices such as cryptography and key management as well as identity and access management, hardware, software, networks, middleware, and business intelligence tools).

COMMUNICATION AND RELATIONSHIP MANAGEMENT SKILLS:

• You have written and oral communication techniques to prepare and present reports, business cases and submissions, project plans, status reports and planning documents, system models and artifacts, and operational policies.
• You can consult with internal staff and stakeholders on security practices and program options.
• You can present information, options and recommendations to diverse audiences.
• You have persuasion and negotiating skills to elicit support from multiple levels of the organization for new initiatives.

ANALYTICAL AND PROBLEM SOLVING SKILLS:

• You can evaluate incident management scenarios, operational policy requirements, identify options and make recommendations on both general and specific security matters.
• You can conduct security reviews, provide risk assessments and options to manage risks within program budgets.
• You can assess differing security needs and business requirements, and conduct forensic reviews.

---

Additional information:

Note:

• In accordance with the Ontario Public Service Employment Screening Checks Policy, the top candidate(s) may be required to undergo a security screening check. Please refer to the Additional Information / Address section above to determine the screening checks that are required for this position.
  
  You will be responsible for obtaining the criminal record check at your own expense and provide it, along with your written consent, to the Transition and Security Office (TSO), HR Service Delivery Division to evaluate the results. If applicable, the TSO, with your written consent, will request and obtain any additional screening checks as indicated in the Additional Information / Address section above that were not obtained directly by you. (Note: If a Vulnerable Sector Screening/Check is required, it must also be obtained in person at your local police service.)
  
  A record under the Criminal Code and/or other federal offence record(s) does not automatically mean you will be ineligible for the position. The screening check(s) will only be reviewed and evaluated by the TSO for the purpose of making a security clearance decision. The details of an individual's screening check(s) will be considered in specific relation to the duties and responsibilities of the position being filled. Screening check records will be maintained by the TSO and kept strictly confidential.
• Less qualified applicants may be considered on an underfill basis.
• T-TB-99950/16

---

Language requirements and assessment:
All external Ontario Public Service (OPS) job ads are posted in English and French. Check the "position(s) language" section at the top of each job ad for the language requirements. For all roles, candidates are assessed in English, the business language of the OPS. If the position is bilingual (English/French), you'll also need to pass a French-language proficiency test.

Exigences en matière de langue et évaluation:
Toutes les offres d'emploi externes de la fonction publique de l'Ontario (FPO) sont affichées en français et en anglais. Consultez la section « Langue du ou des postes » en haut de chaque offre d'emploi pour connaître les exigences linguistiques. Pour tous les postes, les candidats sont évalués en anglais, la langue d'affaires de la FPO. Si le poste est bilingue (anglais/français), vous devrez également passer un test de compétences linguistiques en français.