Job Description

Req ID: 23501
Vacancy Type: Permanent
Number of Positions: 1
Closing Date: 06/13/2023

Job Summary

Under the direction of the Program Manager, IT Systems Architecture & Security, the successful candidate will become a member of the Cybersecurity team at the City of Mississauga. The successful candidate will work on a variety projects as a cybersecurity subject matter expert.

A significant portion of the job includes providing guidance based on the NIST Cybersecurity Framework and industry best practices related to IT Security. A high level of motivation, professionalism and an ability to work with various IT groups and client-facing teams are essential.

This position will be required to work in a hybrid work arrangement (some work from home and some work in the office) for an undetermined period. Once the City\'s offices fully re-open, you may be required to work out of Mississauga City Hall at 300 City Centre Drive (possibly on a rotational basis). Periodic work outside of regular business is a requirement of the job.

Duties and Responsibilities

The successful candidate will:

• Serve as a cybersecurity expert and provide guidance to IT and non-IT staff
• Provide advice and expertise on how to secure the City\'s technology infrastructure
• Respond to cybersecurity incidents, breaches and malware threats
• Monitor systems activity to identify vulnerable points
• Perform pen testing and vulnerability assessments
• Analyze system specifications to assess security risks
• Draft IT security standards, policies and guidelines
• Provide security awareness training
• Implement, augment and improve security controls in business and system deployment processes
• Provide guidance on device hardening
• Implement NIST Cybersecurity framework controls
• Research cybersecurity trends, recommend technologies and processes
• Keep up with the latest cybersecurity threats as they evolve
• Perform threat modeling and risk analysis
• Continuously strive to elevate the City\'s cybersecurity posture
• Perform other duties as assigned

Skills and Qualifications

Required/Mandatory Qualifications:

• Degree or Diploma in Information Technology field or equivalent
• Minimum 5 years of work experience in an enterprise environment with a large IT infrastructure
• Minimum 5 years of hands on experience working with IT Security technologies
• Minimum 5 years of experience with server and client operating systems in an enterprise environment
• Minimum 5 years of experience with networking and network security in an enterprise environment
• Advanced End-Point protection knowledge
• Advanced perimeter protection knowledge
• Security Incident Response experience
• Knowledge of IT Security frameworks

Desired Qualifications:

• CISSP certification
• IT Security certifications are desired
• Solid knowledge of networking concepts, Active Directory and DNS
• Experience with Vulnerability Assessment and Penetration Testing technologies, Packet capturing and analysis
• Experience with SIEM
• Hands on Firewall configuration experience
• Experience with IPS/IDS
• Experience conducting Security Awareness training
• Experience working in a PCI compliant environment
• Experience with Identity Management, API Security & Automation
• Ability to interact with vendors and managed service providers in a professional manner
• Experience with the use of computer forensic tools
• Experience with encryption and cryptography
• Knowledge of application security methodologies
• In depth experience with Cloud security (AWS, M365 and Azure) is desired
• Experience in a Cisco, Mcafee, VMware environment would be ideal
• Working knowledge of web and application security
• Excellent analytical and troubleshooting skills
• Excellent communication, documentation and customer service skills
• Experience with malware analysis
• Experience in automated incident response tools (SOAR)
• Experience in Security architecture and design
• Experience in threat intelligence from a blue and red team perspective

Hourly Rate/Salary: $ 85,155.00 - $ 113,541.00
Hours of Work: 35
Work Location: Hybrid, work from home and in person at Civic Center #LI-HYBRID
Department/Division/Section: CPS/Corporate Services Dept , CPS/IT Division , Architecture & Innovation
Non-Union/Union: Non Union

A Criminal Record and Judicial Matters Check (Level 2) or Vulnerable Sector Check (Level 3) will be required of the successful candidate, at their own expense, to verify the absence of a criminal record for which a pardon has not been granted.

We thank all who apply, however, only those candidates selected for an interview will be contacted. You can also check your application status in your candidate profile online.

All personal information is collected under the authority of the Municipal Act.

We are an Equal Opportunity Employer. In accordance with the Accessibility for Ontarians with Disabilities Act, 2005 and the Ontario Human Rights Code, the City of Mississauga will provide accommodations throughout the recruitment, selection and/or assessment process to applicants with disabilities. If selected to participate in the recruitment, selection and/or assessment process, please inform Human Resources of the nature of any accommodation(s) that you may require in respect of any materials or processes used to ensure your equal participation.

City of Mississauga