Job Description

The Junior Security Specialist supports the maintenance of cybersecurity policies and standards, processes and procedures related to the Cybersecurity Design and Governance team and supports existing processes and procedures. This role works with IT's partners in strategic vendor management to supports procurement requests for cybersecurity requirements. It will facilitate the cybersecurity communications to the organization. This role will coordinate the Cybersecurity Champions Program including coordination of full day conferences, monthly webinars and manage the Cybersecurity Champions. This role will support the risk assessment process and maintain the annual cybersecurity risk analysis as well as participate in projects and BAU activities and support the Senior Security Leads as required. This role will also work with our 3rd party providers as necessary within tasks or projects.

Major Responsibilities:

1. Policies, Standards, Process and Procedure activities:


Work with relevant stakeholders across WSIB and within 3rd party providers as necessary to develop, review and maintain/modify cybersecurity policies, standards, processes and procedures Support any audit requests Maintain and perform QA on the Design and Governance data/information ensuring appropriate storage and completeness and compliance with processes/procedures

2. Education and Awareness:


Take on the leadership and coordination of the Cybersecurity Champions program including but not limited to: + Create and project manage the annual Cybersecurity Conference Days
+ Coordinate the Cybersecurity Intelligence Squad Webinar series
+ Manage the Cybersecurity Champions including meetings, workshops, guest speaker series
+ Facilitation of phishing exercises with the support of Senior Security Specialists
+ Webinar development
+ Communications as required

3. Provide ongoing Information Security Risk Management support:


Perform annual security risk analysis and provide monthly reporting Provide support in collaboration with Senior Security Specialists on security risk assessments, to ensure control practices are implemented Support any audit requests

4. Support of Projects/BAU/RFx:


Provide support to various projects (small), + Engage Senior Security Specialists for support as required
+ Support the planning, design, and implementation of security architectures, procedures and software that safeguard access to WSIB data
+ Help to ensure that logical access to and use of the WSIB's computing resources are restricted through the implementation of adequate verification mechanisms of identified users and resources associated with access rules
+ Work with Security Specialists to ensure that control practices are implemented
On larger projects support the Senior Security Specialist as required Facilitate the IRQ procurement request process for RFPs providing relevant cybersecurity requirements and criteria for evaluations + provide cybersecurity evaluations of procurements of <$100K
+ Maintain knowledge of vendor products through research of security services or contacts for security investigations or products for the purpose of recommending purchases.
+ Monitor a variety of security publications, forums, blogs and mailing lists to keep abreast of emerging threats and control technologies
Manage any BAU work as assigned ensuring cybersecurity controls are implemented

Job Requirements:

1. Education requirements:

Minimum Level Required

College diploma And one or more Technical training/certificates. For example: + Network & Web Application Penetration Testing
+ Advanced Firewall Administration
+ Network Access Control
+ Intrusion Detection/Prevention Systems
And one or more InfoSec Certifications. For example: + CISSP
+ SANS / GIAC
+ Cisco CCNA Security, Comp TIA Security +
+ Microsoft Certified IT Professional.Experience:

Preferred Level

Bachelor's degree

2. Experience:

Minimum Level Required

Approximately 12 months of prior IT experience Knowledge of project management methodologies Knowledge of CRISC Knowledge of NIST Knowledge of CIS Controls Knowledge of ITIL standards

Preferred Level

Approximately 12 months of prior IT experience Knowledge of project management methodologies Knowledge of CRISC Knowledge of NIST Knowledge of CIS Controls Knowledge of ITIL standards

Our commitment to equity, diversity and inclusion

We respect and value the diversity of our people. We strive to create an environment where employees can be themselves and where our differences are celebrated.


We value and celebrate diversity and are committed to creating inclusive experiences for both our employees and prospective employees. We invite all interested individuals to apply. If you require accommodations in order to apply to this position please contact talentacquisitioncentre@wsib.on.ca. If you are invited to participate in the interview or assessment process, you can advise our Recruiter of your accommodation needs at that time.


Please visit our EDI Vision to learn more about what actions WSIB are taking to advance our commitment to equity, diversity and inclusion and to support all employees participating and contributing to their full potential

Disclosing conflicts of interest

As public servants, employees at the WSIB have a responsibility to act in an ethical way at all times to create a respectful workplace and maintain public trust. Job applicants are required to disclose any circumstance that could result in a real, potential or perceived conflict of interest. A conflict of interest is any situation where your private interests may impair or be perceived to impair the decisions you make in your official capacity. This may include: political activity, directorship, other outside employment and certain personal relationships (e.g. with current WSIB employees, customers and/or stakeholders). If you have any questions about conflict of interest obligations and/or how to make a disclosure, please contact the Talent Acquisition Centre at talentacquisitioncentre@wsib.on.ca.

Privacy information

We collect personal information from your resume, application, cover letter and references under the authority of the Workplace Safety and Insurance Act, 1997. The Talent Acquisition Centre and WSIB hiring parties will used this information to assess/validate your qualifications, determine if you meet the requirements of vacant positions and/or gather information relevant for recruitment purposes. If you have questions or concerns regarding the collection and use of your personal information, please contact the WSIB's Privacy Office at privacy_office@wsib.on.ca. The Privacy Office cannot provide information about the status of your application.


As a precondition of employment, the WSIB requires that prospective candidates undergo a criminal records name check any time before or after they are hired.

To apply for this position, please submit your application by the closing date.