Job Description

INDEPENDENT ELECTRICITY SYSTEM OPERATOR (IESO) Requisition ID: 19957
Location: Mississauga - Hybrid
Status: Regular
Business Unit: Information & Technology ServicesWhy join us?You\'ve got great skills. And you want to use them in an organization where you know what you do every day matters. We get that.
We also know that ensuring Ontarians have access to affordable and reliable power doesn\'t happen by accident. So we give you the tools, flexibility and support you need to achieve your goals, and development opportunities to help you grow. You\'ll thrive in a collaborative, team-based environment that values your unique skills and experiences - and recognizes that when you do better, we become even better too.Who we areThe Independent Electricity System Operator (IESO) works at the centre of the province\'s power system, ensuring Ontarians have access to reliable and cost-effective electricity when and where they need it. We operate the province\'s electricity grid 24/7, design, run and oversee the wholesale electricity markets, and plan and prepare to meet Ontario\'s electricity needs - now and into the future.The opportunityThe Supervisor, Information Security Operations supports current policies and strategies and must be able to prioritize work efforts - balancing operational tasks with longer-term strategic security efforts. This role is an internal- and external-facing role at all levels with expectations of presenting program status, threat intelligence, and security operations best practices. Documentation and presentation skills, strategic planning, analytical, critical thinking skills, and the ability to identify needs and take independent initiatives are key requirements for this position.What you\'ll doUnder the oversight and management of the Senior Manager, Cyber Intelligence, Operations and Governance, the Supervisor will

• Direct security operations tasks including event monitoring and management; security detection, response, and recovery capabilities; threat hunting; and incident response
• Oversee the development and maintenance of use cases for security monitoring and alerting
• Act as the escalation point during working hours, and off hours as required, for security incidents
• Maintain awareness of and responds to evolving cyber threats and developments
• Support threat modeling; the identification, tracking, and reporting of cyber threats
• Develop metrics and reports demonstrating the process and effectiveness of the security operations program. The incumbent is also responsible for ensuring team members meet metrics and performance objectives. Corrective measures will be developed and implemented for remediation when objectives are not met
• Oversee and generates documentation of processes, procedures, and playbooks relating to security operations and incident response
• Support the overall health and operations of security monitoring technologies to maintain cyber posture and adherence to regulatory requirements (e.g., NERC-CIP)
• Assesse the potential impact of planned technical changes on existing security mechanisms in order to ensure that the potential compromise is minimized
• Contribute to the development of information security standards, policies, processes and procedures
• Contribute to the development/delivery of an overall security program aligning with industry frameworks (e.g., NIST), compliance mandates (e.g., NERC CIP) and best practices
• Contribute to the development/delivery of security awareness training and general security education
• Will have access/handle confidentially issues, requiring high level of trust and integrity
• Participate in or lead cybersecurity tabletop exercises
• Collaborate with external organizations on Security Operations, Incident Response, and Cyber Threat Intelligence
• Assign work and assesses performance of Information Security Analysts. The incumbent is also responsible for performing resource allocation, coaching, and performance management responsibilities
• Support the IESO Cybersecurity Program as required or assigned
• Perform other duties as required

What you need to succeedRequired4-year bachelor\'s degree in information systems or equivalent work experienceRelevant certifications include: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Certified Information Systems Auditor (CISA), GIAC Security Operations Manager Certification (GSOM) * Strong leadership skills and the ability to inspire and drive information security practices with a wide spectrum of IESO business managers, IT engineering and IT operations staff

• The ability to interact with IESO personnel, build strong relationships at all levels and across all business units and organizations, and understand business imperatives
• Self-motivating, self-identification of problems and resolution with minimal supervision. Strong though leadership and delivery experience
• A strong understanding of the business impact of security tools, technologies and policies in alignment to manage IESO enterprise risks and delivery of IESO enterprise objectives
• Strong leadership abilities, with the capability to develop, manage, and guide information security team members and IT operations personnel, and work with minimal supervision
• Excellent verbal, written and interpersonal communication skills, including the ability to communicate effectively with senior business unit leaders, directors; in-depth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls; an excellent understanding of information security concepts, protocols, industry best practices and strategies
• Strong working experience with legal, audit and compliance staff
• Experience developing and maintaining policies, procedures, standards and guidelines such as NIST CSF
• Proficiency in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies
• Strong analytical skills to analyze security requirements and relate them to appropriate security controls and business challenges and risks
• An understanding of operating system internals and network protocols
• Familiarity with the principles of cryptography and cryptanalysis
• Experience in application technology security testing (white box, black box and code review)
• Experience in system technology security testing (vulnerability scanning and penetration testing)
• Extensive practical experience in the military, law enforcement, intelligence, or corporate security
• In-depth experience working with SIEM technologies (Splunk, LogRhythm, Qradar, etc.)

A period of over 8 years, up to and including 10 years of experience is typically required to complete the accountabilities associated with the position, including experience in an information security role and experience both facets of operational, tactical, and strategic management capacity.Assets

• An MBA or M.S. in Information Security is preferred

What\'s in it for you

• A comprehensive total rewards program, including best-in-class benefits and a flexible workplace
• A challenging, fast-paced and collaborative team environment, where your perspectives and experiences matter
• Leaders who support your growth and success through regular feedback and coaching
• The opportunity to work with some of the brightest minds in the industry

Deadline: September 13, 2024For future reference, please ensure to save a copy of the job description as it will no longer be available once the posting closes.At the IESO, we know that achieving great results depends on embracing diversity by attracting, developing and retaining people from a wide variety of backgrounds. We do this by ensuring our recruitment and advancement policies are fair and equitable, and by creating an accessible and inclusive environment - one that values every team member\'s unique skills and experiences and ensures they have the support they need to achieve their potential. If you require accommodation during the recruitment process, please let us know.We thank you for your interest in a career at the IESO, but we will only contact those candidates selected for an interview.Note: The successful candidate must be eligible to work in Canada and will be subject to a background check.The IESO offers a hybrid work model program to most of our employees, based on business needs. Individuals participating in the program can work an average of three days per week remotely within Ontario. It also offers three flex weeks when individuals can work remotely within Ontario. When working in the office, you will be located at our Mississauga location.Join our talent communitySign up for talent community; stay in touch, find out about new opportunities - and discover how you can make a difference. Discover how we use our expertise and commitment to deliver reliable and affordable electricity to Ontario\'s businesses and communities, and how we\'re innovating to secure a stronger energy future for all Ontarians. Visit and be sure to follow us on .Find out , and what we offer.

IESO