Job Description

Requisition number

SCHII00084

Job Category

Support Staff

Posting Start Date

Oct 7, 2025

Posting End Date

Oct 28, 2025

Work mode

Hybrid

Location

East Education Office

Geographic Location

Scarborough

Panel Type

Not Applicable

Position Type

Permanent

Working at the TDSB

-----------------------


Our staff members are the backbone of our system. Becoming a part of the TDSB team means joining a talented community of educators and support staff dedicated to enriching the lives of all students and helping them to achieve success. The TDSB is one of the largest and most culturally diverse school boards in Canada, with approximately 246,000 students in 584 schools and approximately 40,000 employees. We offer a dynamic, challenging work environment and unmatched career opportunities for our staff. Please review the information provided and explore the exciting career possibilities the TDSB has to offer as we continue to establish ourselves as the leading school board of the new millennium. The Toronto District School Board adheres to equitable hiring and employment practices. We strive to meet the accommodation needs of persons with disabilities. Applicants are encouraged to make their needs for accommodation known in advance during the application process.

-------------------

SCH II-25-2075NE

Manager, Cyber Security and Risk Management

1 - Permanent Position

Information Technology Services

Schedule II, Level 10

(Non-Union 12 Months)

$131,013 - $157,199

The Toronto District School Board adheres to equitable hiring, employment, and promotion practices.

Overall Purpose

-------------------


Reporting to the Senior Manager, IT Operations, the Manager, Cyber Security and Risk Management, will provide strategic support for Cyber Security governance and risk management and manage the architecture, engineering and operational support for the cyber security, threats and vulnerabilities, security analytics, forensic infrastructure and the controls required to address risks. The Manager will coordinate and provide expertise to implement and manage the cyber security infrastructure, incidents, breaches, investigations and the development and implementation of IT related cyber security policies and processes, while working closely with other IT teams to strengthen their defense and security postures and proactively mitigate risks across systems and services

Summary of Duties

---------------------


Work with the Senior Manager, IT Operations to develop cyber security strategies, governance frameworks, policies, processes and procedures to address identified risks and organizational requirements. Manage the process of analyzing and assessing current and future threat landscape and provide realistic overview of risks and threats faced by TDSB. Ensure the risk assessment and recommended controls remain effective as the computing landscape changes with cloud and social computing. Identify budget and resource requirements for short and long term goals and objectives. Manage and coordinate security incidents, breaches, investigations, risk assessments and audits. Facilitate the understanding of evolving risk, threat landscapes, vulnerabilities and the required changes to the controls with the respective service owners and their teams. Facilitate the understanding and responding to controls audit and failures. Coordinate risk assessment arising out of changes in threat, vulnerability and asset base, including introduction of new systems or services. Provide and coordinate security communications, awareness and training to align with user centric and devolved security strategy. Consult and support IT and Business architects on threat driven and proactive security measures at architectural, design and implementation stages. Consult and support the respective teams to ensure security is factored into selection, contracting, and implementation of new systems. Recommend and coordinate implementation of technical controls to manage risks and meet compliance and legislative requirements. Research, evaluate, design, test, recommend and plan the implementation of new or updated cyber security hardware or software. Manage and coordinate operational components of security incident/breach/investigation management, including detection, response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances and variation to residual risks, recommend treatment plans and communicate information about residual risk. Communicate intelligence-related concepts and recommendations to senior management and provide status and briefings of threat intelligence operational activities. Responsible for management and direction of staff, including planning, staffing, training and performance reviews. Provide leadership to motivate staff and facilitate team building, review and recommend hiring of staff. Manage, review and monitor department and project budgets, including expenditure review, authorization and analysis of transactions, contract reviews etc. Provide guidance and direction to external vendors that provide cyber security functions for compliance with contracted service-level agreements. Maintain a knowledgebase comprising a technical reference library, security advisories and alerts, information on security trends and practices, and applicable laws and regulations.

Qualifications

------------------


University degree in a related discipline such as Computer/Network Engineering or Computer Science with seven years of progressively responsible experience in IT Security for large complex, multi-site public sector environment, or equivalent combination of education and experience. Specialized training and certification from such as Global Information Assurance Certification in the following areas: IT Risk Management, Security Leadership, Information Security, Perimeter Protection, Enterprise Defense, Critical Controls, System and Network Auditing. Extensive experience in all aspects of cyber security including networks, servers, endpoints, cloud services, IOT and applications. Ability to rapidly evaluate and assess potentially imminent security situations, sensitive developments and complex threat issues. Experience in threat, vulnerability, and risk and audit management. Demonstrated experience in enterprise-wide system technologies including networking, systems, databases, applications, remote access, and firewalls. Knowledge of and experience in techniques and practices related to project management, control and costing, workload forecasting, documentation, security policies and performance standards. Strong interpersonal skills with the ability to navigate sensitive issues diplomatically and foster cooperative working relationships. Knowledge of related TDSB policies and procedures, collective agreements and pertinent legislation. Knowledge of the compliance and legislative security requirements of a complex public sector organization. Experience in vendor relationship development and management. Successful experience managing a budget Detail oriented and analytical with strong problem-solving skills. Superior oral, written, presentation, interpersonal and organizational skills. Strong time management and project management skills including the ability to multitask and prioritize. Successful supervisory experience with strong leadership, mentoring and team building skills. Proven ability in promoting equitable practices which value inclusiveness and diversity. Manage security projects and provide expert guidance on security matters for other IT projects. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Design, coordinate and oversee security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks. Provide leadership in fostering equity and inclusiveness in the development and implementation of programs and services. Other duties as assigned.

Special Requirements

------------------------


Provision of own vehicle for Board business.

Requires travel across TDSB sites.

Additional Information

--------------------------


Work Year: 12 months



Location: 140 Borough Drive (Hybrid Eligible) (Wheelchair Accessible)



Only applicants selected for an interview will be contacted. Applications will not be acknowledged in writing.

The Toronto District School Board is deeply committed to promoting Truth, Reconciliation and the rights of Indigenous peoples, Human Rights, Equity and Anti-Racism, and the elimination of Oppressive Practices, in our schools, our workplace and in the communities we serve. We strongly encourage applications from all individuals including those with varied lived experiences that can contribute to the diversification of the workforce at TDSB.

We strive to meet the accommodation needs of persons with disabilities. Applicants are encouraged to make their needs for accommodation known in advance during the application process.

The TDSB follows a hybrid work structure where some employees may be able to work remotely at times, based on operational requirements. Please refer to Policy P103

,

Flexible Working Arrangements for more information.