Director - Information Security and Information Management - Information Technology Systems and Services

Competition Number:
220E24
Position Type:
Staff Position
Closing Date:
Date of Posting:
Department:
Information Technology Systems and Services
Position:
Director - Information Security and Information Management
Contract:
Full-Time Permanent Position
Hours of Work:
37.5 hours per week
Salary:

$125,957 to $139,650 per annum

Working as part of the ITSS Team, the Director, Information Security and Information Management’s role is to provide vision and leadership in support of information security for ÐãÉ«¶ÌÊÓƵ. Under the direction of the Chief Information Officer (CIO), the Director oversees all aspects of information security. This position is responsible for the management and coordination of IT security to protect the confidentiality, integrity, and security of ÐãÉ«¶ÌÊÓƵ data assets.

The position champions the development, implementation, delivery, and support of a risk-based, enterprise information security strategy aligned to ÐãÉ«¶ÌÊÓƵ’s Strategy. The ISO ensures information systems strategies, projects and operations comply with information security. This role provides information security resources expertise, guidance, and knowledge necessary to execute strategic and operational plans across all university information systems.

RESPONSIBILITIES:

  • Leading the development, enforcement, and maintenance of policies, procedures, measures, and mechanisms to protect the confidentiality, integrity and availability of the University’s information systems and data
  • Developing metrics for ongoing performance measurement and reporting to ÐãÉ«¶ÌÊÓƵ Senior Leadership and the ÐãÉ«¶ÌÊÓƵ Board of Governors 
  • Coordinating the IT organization's technical activities to implement and manage the information security infrastructure 
  • Providing leadership for the implementation of information security practices and protection of systems and data for all divisions and business operations across the University
  • Developing an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities 
  • Developing and implementing appropriate safeguards to ensure delivery of critical services
  • Supporting the ability to limit or contain the impact of a potential cybersecurity event while developing the implementation of resilience plans to restore capabilities or services that could be impacted in the event of a potential cybersecurity incident
  •  Developing and delivering on user education and training across the campus community

QUALIFICATIONS: 

  • University degree (Master’s preferred) and 5 years’ work experience in Information Security
  • All or a combination thereof the following would be considered assets:
    • One or more of the following certifications: (GIAC Security Essentials Certification, GIAC Security Leadership Certification, ISACA Certified INformation Security Manager, Microsoft Certified Systems Engineer: Security, (ISC)² SCCP, (ISC)²CISSP or (ISC)²ISSAP) 
    • Extensive experience in enterprise security architecture design
    • Extensive experience in creating and managing enterprise security policy, procedures, and practices including data classification and/or records management
    • Experience in implementing Identity Access Management solutions
    • Experience in designing and delivering employee security awareness training
    • Experience in managing a staff of 2 to 5 individuals and operational and capital budgets
    • Experience in developing Technology Recovery Plans
    • Experience in securing all layers of information technology
    • Working knowledge of FortiGate, QRadar, Microsoft MFA, CISCO DNA., CISCO ISE, CISCO Firewall, Barracuda, Azure 
    • Working knowledge of Microsoft, Web development platforms, database design, and technology service planning

Application Instructions:

Please submit electronically a cover letter, quoting the competition number, a resume and reference list to be received no later than the closing date via the link below.

If you are unable to apply online, you can drop off your resume to the Human Resources Department, Kelley Building, ÐãÉ«¶ÌÊÓƵ, 550 University Avenue, Charlottetown, PEI C1A 4P3, Fax Number 902-894-2895.

ÐãÉ«¶ÌÊÓƵ is committed to equity, diversity, inclusion, and reconciliation and believes in providing a positive learning and working environment where every person feels empowered to contribute. ÐãÉ«¶ÌÊÓƵ is committed to the principle of equity in employment and encourages applications from underrepresented groups including women, Indigenous peoples, visible minorities, persons with disabilities, persons of any sexual orientation or gender identity, and others with the skills and knowledge to productively engage with diverse communities. If you require accommodation in any part of the process, please direct your inquiries, in confidence, to our HR Officer, hrofficer@upei.ca. Applications will not be accepted via email.

Only those applicants who are invited to an interview will be acknowledged.

Note that this site is not compatible with some mobile browsers (e.g. iPad, iPhone). Upon successful submission of your application, you will receive an auto-reply to your email address advising your application has been received. If you do not receive an email, please check your spam folder and/or try submitting your application via a different web browser (Google Chrome, Firefox, etc).

ÐãÉ«¶ÌÊÓƵ encourages all qualified applicants to apply for job openings; however, in keeping with the terms and provisions of the university’s various employment and collective agreements, first priority will be given to internal candidates.