Job Description

Position Overview:

The ON-CHEC Operations Manager plays a key role in advancing cybersecurity maturity across Ontario's higher education sector. This role oversees delivery of ON-CHEC program services to its members, as well as helps develop new ways to help the community protect against evolving threats. Working closely in support of the shared CISO as well as community stakeholders, this role will also lead and develop a dynamic team of cybersecurity professionals. The role requires a mix of technical and analytical skills, combined with managerial experience, combining hands-on cybersecurity expertise with leadership and mentorship responsibilities.

The successful candidate will:

Lead a small team of cybersecurity analysts to deliver ON-CHEC program objectives. Provide strategic and operational cybersecurity support to member institutions and the shared CISO. Develop and maintain strong relationships with higher-education stakeholders. Contribute as a subject-matter expert in technical projects, assessments, and frameworks such as NIST and CIS. Contribute to program evolution and the development of new capabilities focused on improving community governance, risk management and compliance maturity.

Key Responsibilities:

Leadership & Program Management

Provide mentorship, coaching, and guidance to team members. Manage program deliverables, KPIs, risks and evolution, including interfacing with community leaders to ensure delivery quality exceeds expectations. Collaborate with the Shared CISO to align ON-CHEC program goals with member needs, as well as with other cross-functional ORION leaders to ensure fully-rounded community support and continuous program improvement. Manage projects related to development of new service features, development of supporting systems, etc. aligned with ORION strategy. Represent ON-CHEC in external meetings, working groups, and community events.

Technical & Analytical Work

Support member institutions in developing cybersecurity programs and roadmaps. Lead or contribute to advisory services delivery, including incident response planning, NIST assessments, tabletop exercises, among others. Participate in the design and delivery of ON-CHEC webinars and technical content. Work within frameworks such as NIST CSF, CIS Controls, and ISO 27001. Contribute to strategy development for cybersecurity resilience and response.

Qualifications:

Bachelor's or Master's degree in Computer Science, Information Systems Security, or equivalent experience. Minimum 5 years in information technology, including cybersecurity experience in higher education or a similar sector. At least 2 years of leadership or mentorship experience (formal or informal). Relevant certifications (CISSP, SANS or similar GRC related) are strong assets.

Knowledge and Skills:

Strong foundation in cybersecurity practices, frameworks, and tools. Experience leading GRC related projects for a medium to large institution, or similar consulting experience. Working knowledge of ITSM (Incident, Change, and Request Management). Familiarity with risk management and incident response processes. Excellent analytical, communication, and interpersonal skills. Collaborative leadership style; ability to build trust and foster teamwork. Curiosity, adaptability, and commitment to continuous learning.

Reporting Relationship:

Reports to the Chief Technology Officer

Supervises a team of four cybersecurity specialists

Salary and Benefits:

Flexible work-from-home policy Comprehensive health and dental benefits Generous vacation and holidays * Many other perks