Director, Information Security
Job Overview
Job title: Director, Information Security
Job description: attacks. In order to do so, you must have JavaScript enabled in your web browser otherwise this site will fail to work correctly for you. See details of your web browser for how to enable JavaScript.
Current Opportunities
Attention Safari users: This site requires cookies to function. Please click to accept the cookie. Cookies will be used strictly for the functioning of the site.
Toggle navigation
Job Details
Director, Information Security – (01214.3)
This details all the information about the job posting.
Share this job as a link in your status update to LinkedIn.
Application Restrictions
Open to both Internal and external
Job Type
Administrative/Management
Posting In effect from
23/2/2021
Closing Application Date
9/3/2021
Applications will be reviewed commencing the closing application date and may continue until the position is filled.
Full/Part Time
Full Time
Admin Type
Ongoing
Anticipated Start Date
1/5/2021
Position End Date (If Applicable)
DUTIES
The Manager, Information Security is responsible and accountable for the effective and efficient facilitation and management of a comprehensive Information Security Program for Thompson Rivers University within the appropriate governance structure. This individual is expected to provide leadership and management of resources including the recruitment, supervision, evaluation, and development of human resources. This program is designed to cost effectively reduce the risk of loss from legal action, lost productivity, direct financial loss, and damage to the University’s reputation posed by the intentional or accidental abuse or misuse of information assets. This will be achieved through the identification and classification of information assets, assessment of risks and vulnerabilities for these assets, and recommendation of appropriate and cost-effective mitigation strategies. These mitigation strategies will include drafting policy, recommending operational controls, building information security awareness, and leading the implementation of technical and non-technical security solutions. This position is also responsible for planning, leading, and coordinating incident response and strategic information security projects within ITS. An essential skill for this role is the ability to communicate effectively and closely with senior management, information security staff, peers, co-workers, and contractors. To perform her/his duties effectively this manager must work closely with the AVP-ITS & CIO, the University’s Security Committee, Legal Counsel, Privacy and Audit functions, University administrative staff, members of the Executive, faculty, consultants, external auditors, students, and contractors. This position also develops and prepares various reports, technical documents, and correspondence. The Manager Information Security regularly administers contracts and directs the activities of contracted services.
MAJOR RESPONSIBILITIES
Management:
- Leadership and management of resources
- Supervision, recruitment, evaluation and development of IT Security Analysts
- Manage and oversee projects that include team members from multiple ITS departments.
- Manage Working Sub-Committees of the Information Security Committee, and support the activities of the Information Security Committee.
- Develop an information security dashboard based on Key Performance and Key Risk Indicators.
Technical:
- Provide advice on security issues and problems as the key information security subject-matter-expert at TRU.
- Develop and monitor relevant logs and reports to identify and/or avoid computer hacking and any other unauthorized or suspicious activity.
- Manage security incident response planning, execution, and awareness
Architecture:
- Develop and maintain an information security control framework, using one or more of ISO 27001/2, CoBiT, NIST, and/or ITIL frameworks applicable to information security.
Policy:
- Manage information security policies and lead in their implementation.
- Within ITS, direct the enforcement of TRU systems security policies, as well as the development of additional policies specific to the hundreds of central servers and individual hosts managed by ITS.
Audit:
- Oversee compliance development, monitoring, reporting, documentation, and training and the implementation of information security risk assessments, scanning, intrusion detection, monitoring, and remediation.
Liaison/Training/Awareness:
- Develop executive presentations and summaries on information security management topics. Develop and maintain the security awareness program. Conduct Security Awareness seminars periodically to alert University staff to security concerns and best practices.
- Serve as ITS’ primary liaison with the TRU Security Committee, TRU’s Campus Physical Security Officer, various law enforcement agencies, and TRU administration for information security policies, practices, and incidents. Maintain relationships with local, provincial, and federal law enforcement agencies and other security-related organizations.
REPORTS TO
Associate Vice-President, IT Services and CIO
QUALIFICATIONS
REQUIRED KNOWLEDGE/SKILLS
- Current Professional Accreditation (CISSP or similar) in Information Security with demonstrated experience in information technology and security including experience implementing security controls required for regulatory compliance (FOIPPA, PCI-DSS etc.).
- Undergraduate Degree in Information Technology Science, Business, or a comparable combination of education and experience.
- Ten years’ experience in complex information technology environments.
- Five years of supervisory experience in a unionized IT environment.
- Two years project management experience with demonstrated project planning, management, and coordination skills.
- The ability to communicate effectively, both verbally and in writing, with individuals and groups.
- Experience working and communicating with executive management and senior professionals.
- Ability to compile, manipulate and analyze electronic data and spreadsheets.
- Ability to read and understand complex material including technical manuals, legal statutes, policies, and reports.
- Ability to prepare project scope specifications and technical reports.
- The ability to work independently and manage multiple priorities, excellent planning and organizational skills, exceptional interpersonal skills including teamwork, facilitation, and negotiation, strong risk management process development and process management skills.
Please Note: If you are selected for interview, External Candidates will be required to bring a copy of their transcripts to the interview
Pay Band
Admin 00
Location
Kamloops, BC CA (Primary)
# of Hires Needed
1
Organizational Unit
Thompson Rivers University -> Information Technology Services -> AVP, IT Services
Diversity and Inclusion Commitment:
Thompson Rivers University is strongly committed to fostering diversity within our community. We welcome those who would contribute to the further diversification of our staff, our faculty and its scholarship including, but not limited to, women, visible minorities, Aboriginal people, persons with disabilities and persons of any sexual orientation or gender identity. Please note that all qualified candidates are encouraged to apply, however applications from Canadians and permanent residents will be given priority.
NOTE: To learn more about living in Kamloops and Thompson Rivers University and follow the links on the Left “Why Work at TRU” or “Why Live in Kamloops”
Company: Thompson Rivers University
Expected salary:
Location: Kamloops, BC
Job date: Thu, 25 Feb 2021 08:30:29 GMT