Director, Infrastructure Cybersecurity

at  Toronto Transit Commission

JOB INFORMATION

Requisition ID: 10313
Number of Vacancies: 1
Department: Information Technology Services (20000014) - Infrastructure Cybersecurity (30000593)
Salary Information: $128,000.60 - $160,069.00
Pay Scale Group: 12SA
Employment Type: Regular
Weekly Hours: 35, Off Days: Shift:
Posted On: Month Day, Year
Last Day to Apply: From Month Day, Year
Reports to: CISO
The Toronto Transit Commission (TTC), North America’s third largest transit system and recognized as one of the top places to work in the GTA has introduced its new 2024-2028 TTC Corporate Plan - Moving Toronto, Connecting Communities which continues the TTC’s legacy of delivering service to hundreds of millions of customers a year. The TTC’s new vision and mission statements also help promote the many environmental, social equity and economic benefits that the TTC provides:
Vision: Moving Toronto towards a more equitable, sustainable, and prosperous future.
Mission: To serve the needs of transit riders by providing a safe, reliable, efficient, and accessible mass public transit service through a seamless integrated network to create access to opportunity for everyone.
The full Plan can be viewed on ttc.ca.

WHAT SKILLS DO YOU BRING?

Use office technology, software and applications
Understand and apply administrative policies, processes, and procedures
Communicate in a variety of mediums
Manage human resources

WHAT QUALIFICATIONS DO YOU BRING?

• University degree in Computer Science, or the equivalent, combined with several years of directly related and progressively responsible experience working in the area of security within an IT environment.
• Senior level experience in critical IT infrastructure, regulated and unionized environments in relevant positions as cybersecurity leadership.
• Experience successfully managing IT security infrastructure in complex technical and organizational environments with deep understanding of cybersecurity concepts, threat landscape, risk management, and technical knowledge of Operational Technology, data center and cloud technologies.
• In depth understanding of network infrastructure and security architecture, LAN, WAN, VPN, routers, firewalls and networking concepts, endpoint security, SIEM, DLP, EDR (CrowdStrike) encryption protocols, and Active Directory security management.
• Experience with multi-tiered mission-critical systems.
• Solid hands-on technical background particularly in managing highly complex, multi-platform environments (servers, storage, networks, security, virtualization, systems monitoring and management).
• Demonstrated knowledge of IT structures, architectures, and economies in batch, client/server, web-based and LAN based environments, and SaaS.
• Experience with contract and vendor negotiations and management including managed services.
• A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vital.
• Strong technical abilities and organizational skills to setup standard operating procedures for maintaining security configurations.
• Extensive experience in communicating security requirements and risks to technical staff, management, and other stakeholders and articulate the potential security impacts of infrastructure changes.
• Experience in the design and implementation on mission critical solutions in multi-faceted environments.
• Proven ability to implement best practice methodologies and class leading capabilities for a critical infrastructure organization.
• Expert people leadership skills with ability to manage reporting managers and staff; to direct, coach, develop and manage performance of reporting senior leaders; to lead multi-functional teams consisting of diverse skill sets.
• Capable of leading and motivating a team of security engineers and administrators in a challenging, dynamic and global environment.
• Demonstrated knowledge of communications systems, design and economies.
• Strong understanding of the interface between business operations and systems.
• Strong knowledge of systems implementation and support best practices, standards, and frameworks, with packaged and custom systems development and support; deep expertise with ERP systems.
• Extensive experience in Infrastructure or Security Engineering/Operations
• Considerable experience with applied cryptography in an enterprise
• Considerable experience with systems engineering of cyber security systems
• Considerable experience is SSAE16 (SOC) audits
• Considerable experience in Network Security administration
• Considerable experience with security/hardening controls
• Considerable experience evaluating security risks and adopting appropriate risk treatment strategies
• Considerable experience in managing cloud security
• Considerable experience in managing security incidents
• Knowledge of access control systems and methodology

You will lead a team of security engineers and administrators that deploy, maintain, and manage infrastructure security appliances and technologies in the TTC network infrastructure. This role will report to the Chief Information Security Officer (CISO), and will work closely with other key stakeholders in the IT infrastructure and Network Operation Center to establish risk-driven security standards for maintaining the security configuration of TTC IT infrastructure.
You will provide guidance on the technical direction and will lead the security team responsible for designing, building and maintaining innovative security services and solutions that support the needs of TTC technology infrastructure. You will have an in depth understanding of technology stack including network security configuration management (e.g., routers, LANs, WANs, VPNs), endpoint and infrastructure security management, encryption protocols, firewall deployment and management, Public Key Infrastructure, Security Information and Event Management, Data Loss Prevention tools and techniques, Endpoint Detection and Response tools, and Active Directory security management.
You will also be responsible for hiring, growing, and retaining the security talent. You will have a strong influence and driven personality to act as the final accountable role and authority for security configuration, roll out, and maintenance of security technology in partnership with third-party vendors, IT infrastructure and network operation center team. You will collaborate with security operations team to provide and support the security technology required for monitoring, responding and remediating to cyber threats.
You will collaborate with IT and network operation center leaders to ensure a seamless delivery and maintenance of infrastructure security solutions and infrastructure security configuration, including: Network security configuration management of routers, LANs, WANs, VPNs; Firewalls security rules management; Endpoint security configuration management and Public Key Infrastructure, Certificate Authority and Encryption protocols.
You will provide guidance on the technical direction and lead the security team responsible for designing, building and maintaining innovative security services and solutions that support the needs of TTC technology infrastructure by delivering innovative cybersecurity solutions across TTC and directing infrastructure security projects of high complexity to successful completion while maintaining success across multiple concurrent projects, executing within budget and within the prescribed time, scope and resources (labour, hardware, software).
In addition to the above, you will be responsible for treating passengers and/or employees with respect and dignity and ensuring the needs of passengers or employees with disabilities are accommodated and/or addressed (within their area of responsibility) in accordance with the Ontario Human Rights Code and Related Orders so that they can fully benefit from the TTC as a service-provider and an employer and perform other duties as assigned.