Pour obtenir une traduction en français de l’offre d’emploi suivante, veuillez envoyer un courriel à
careers@ontariohealth.ca
. Les demandes seront traitées dans un délai de trois jours ouvrables et la période de dépôt des demandes sera prolongée de trois jours.
To obtain a French translation of the following job posting, please email
careers@ontariohealth.ca
. Requests will be addressed within three business days, and the application window will be extended by three business days.
At Ontario Health, we are committed to developing a strong organizational culture that connects and inspires all team members across the province. Our vision is that together, we will be a leader in health and wellness for all. Our mission is to connect the health system to drive improved and equitable health outcomes, experiences and value. How we work together is reflected through our five values: integrity, inspiration, tenacity, humility and care.
What Ontario Health offers:

Achieving your career goals is a priority to us. Benefits of working at Ontario Health may include the following based on employment type:

• Fully paid medical, dental and vision coverage from your first day
• a health care spending or wellness spending account
• a premium defined benefit pension plan
• three personal days and two float days annually
• three weeks’ vacation to start (for individual contributors), increasing to four weeks after two years
• career development opportunities
• a collaborative values-based team culture
• a wellness program
• a hybrid working model
• participation in

Communities of Inclusion
Want to make a difference in your career? Consider this opportunity.
The Director, Cyber Security Defence & Resilience holds a pivotal strategic role within Cyber Security operations and reports directly to the Vice President, Cyber Security & Foundational Services. This position is accountable for leading a team of 30 to 35 Cyber Security professionals, as well as overseeing an external Managed Security Service Provider (MSSP), all tasked with safeguarding Ontario Health Information Assets. These efforts support organizational objectives and ensure compliance with Ontario Health policies.
Under the leadership of the Director, this team serves as the organization’s first line of defense, committed to continuously enhancing its cybersecurity posture. This is accomplished through in-depth analysis of vulnerability and threat data, effective incident response, and the strategic selection, implementation, and management of cutting-edge security technologies. The role also includes oversight of digital resilience operations, ensuring the organization can recover swiftly and effectively in the event of a cybersecurity incident.
Here is what you will be doing:

Specific Accountabilities

• Oversees the Security Operations Centre and manages threat and vulnerability activities, ensuring Ontario Health remains protected as risks evolve. Collaborates with system owners to address vulnerabilities and streamline information security processes.
• Lead and manage the end point security process and technologies that includes Endpoint Detection and Response (EDR) and Security Service Edge (SSE).
• Continuously expand the usage of security monitoring tools to improve defences, including detection, prevention and policy enforcement.
• Serve as subject matter expert for security monitoring and incident response related knowledge domain and tools.
• Effectively operate, sustain and mature the Agency’s cryptography solutions.
• Stay up to date on latest information security controls, technologies, practices, techniques and capabilities in the marketplace. Select and acquire new security technologies to ensure Ontario Health is well positioned against the threat landscape.
• Manage continued effectiveness of the Security Information and Event Management (SIEM) platform and lead the efforts to fine tune its capabilities and enhance the scope of the platform. Effectively lead the Identity Governance and Administration (IGA) function, to strengthen the defence of systems and data.
• Maintain and continually improve security incident response capability within Ontario Health to drive consistent incident response, escalation and reporting.
• Coordinate and support external healthcare incidents involving Ontario Health services, while liaising with provincial bodies like MPBSDP, law enforcement agencies (RCMP, OPP, local authorities), and the Ministry of Health.
• Oversight and management of external MSSPs providing support on threat intelligence, vulnerability management, Security Information and Event Management, Incident Response services and other protection services to Ontario Health.
• Manage the relationship and ongoing engagement with MSSPs to ensure valued delivery and effective execution of committed security services in accordance with the service level agreements.
• Build strong cross-functional relationships with key business partners to fully understand all business project requirements to apply the needed information security controls.
• Responsible to support the development and management of the Information Security program in conjunction with the Information Security Office (ISO).
• Work closely with the Ontario Health Cyber Security Centre to support the Provincial Cyber Security Operating Model and collaborate on external incident reporting and management.
• Support cyber resilience functions across the organization that ensure product groups are able to recover from disruptive incidents and maintain business throughout.
• Able to participate, support and host tabletop exercises to test and refine processes, accountabilities and plans.
• Manage a staff of cyber security professionals, hire and train new staff and consultants, conduct performance reviews and provide management and coaching.
• Provide fiscal and budgetary management.

Technical Requirements

• Information Security Management - Knowledge of processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data. Strong knowledge of NIST CSF 2.0, ISO 27002, and MITRE ATT&CK Frameworks for Information Security.
• Experience with contract and vendor negotiations management
• Understanding of cyber resilience functions such as secure backups, Business Impact Assessments, Business Continuity Planning, Disaster Recovery Planning, and readiness testing through Tabletop Exercises.
• Provide subject matter expertise and feedback into development of a DevSecOps framework
• Ability in dealing with security capabilities in multi-cloud environments (Azure & AWS) including virtualization platforms such as VMware and Red Hat Open Shift container security platforms
• Experience with Security operation center technologies such as:

Please refer the Job description for details