Progressive. Collaborative. Accountable. Draw on your passion. Shape our community. Progressive and collaborative, with a clear, long-term vision. We value employees’ contributions and inspire excellence. We are driven by a desire to help shape and serve the growing community in which we live and work.
Team Lead Data Security
$58.07 to $63.12 per hour
0800 – 1600
Reporting to the Manager, PCS/SCADA Assets, with dotted line reporting to ITS Security, is responsible for developing, recommending and implementing SCADA, network and industrial control security systems, security programs and SCADA specific policies; working directly with ITS Security staff on Corporate Security initiatives and providing input; identifying, assessing and mitigating security threats or vulnerabilities to the SCADA system; educating, promoting compliance and enforcing security practices and procedures; ensuring security components of business continuity and disaster recovery processes and procedures are considered, maintained and executed for the security of SCADA data, network and process control systems, information and systems; and recommending solutions to complex security systems issues; providing guidance, direction and training to assigned project related staff.
•Implements and recommends technology security programs and processes to prevent and mitigate security threats, risks and vulnerabilities to the Region’s SCADA and Industrial Controls System.
•Develops controls to enforce SCADA security compliance and makes recommendations based on output of security systems.
•Investigates and remediates security issues seeking direction from management when required.
•In direct consultation with corporate ITS Security Team, ensures applicable corporate IT security policies are applied to the SCADA system, and identifies and rationalizes required exceptions to support industrial applications as required.
•Maintains and updates SCADA specific security policies, guidelines and procedures.
•Assists and provides input to the maintenance and updating of corporate technology security policies, guidelines and procedures.
•Develops processes to prevent compromise of the SCADA system and the Region’s critical, valuable, and sensitive information resources.
•Performs security audits and penetration testing as required.
•Coordinates and ensures security components of business continuity plans are maintained for critical SCADA related services.
•Works directly with ITS Security staff to ensure alignment and adherence of Corporate and Departmental planning and policies.
•Develops and maintains communication with colleagues, other internal and external agencies and contacts.
•Participates on committees, work groups, task forces and special projects as assigned.
•Provides direction, expertise, training and advice to technical SCADA staff to ensure best practice security approaches are taken in projects and daily work.
•Provides direction and oversees performance of contracted security related services such as external consultants, vendors, etc.
•Co-ordinates and/or leads cross-functional teams related to a variety of projects and initiatives as assigned.
•Performs other duties as assigned, in accordance with Branch and Department objectives.
•Successful completion of a Community College Diploma in Computer Science or a related field and a security certification such as the Certified Information Systems Security Professional (CISSP).
•Minimum five (5) years’ experience in technology services delivery, including experience with security technologies in a planning and operational capacity within a large organization to develop and implement safeguards to prevent intrusion/unauthorized access, and assure physical security of networks.
•Satisfactory Police Criminal Background Check.
•Certifications in MCSE; CCNA; CEH (Certified Ethical Hacker); Security +; ECSA (EC Council Certified Security Analyst); GIAC GSEC – GSEC: GIAC Security Essentials Certification.
•Security monitoring experience with one or more SIEM technologies, Next Generation Firewalls such as CISCO FirePOWERand instrusion detection and prevention technologies, including experience in security incident management, risk and privacy management, malware management and vulnerability management processes.
•Knowledge of and demonstrated ability in corporate core competencies including customer service, communication, team work, initiative/self management, accountability, flexibility and adaptability.
How to Apply
Please apply online by October 14, 2020. We thank all candidates for their interest; however, only those selected for an interview will be contacted via email.