Job Title

Lead, Cyber Security & Cloud Engineering page is loaded## Lead, Cyber Security & Cloud Engineeringlocations: Toronto-661 Universitytime type: Full timeposted on: Posted Todaytime left to apply: End Date: September 20, 2025 (14 days left to apply)job requisition id: JR101764Lead, Cyber Security & Cloud EngineeringLocation: Toronto-661 UniversityDepartment: Digital and Cyber Security Engineering and Applications**The Role:**Accountable for leading and managing the design and implementation of Public Health Ontarios (PHO) cyber security and cloud systems to ensure the security, confidentiality, integrity, and availability of digital and data assets. To collaborate closely across PHO and within the Digital and Data portfolio to provide thought leadership, orchestration, implementation, and operational support for a robust and resilient cyber security control framework. To provide expertise and advice to management on security strategy, posture and best practices across PHO and with external organizations.**Key Responsibilities-*** Provides leadership and technical expertise to the full lifecycle management of technical security and cyber security controls, including planning, implementing, managing, monitoring, testing, and improving effectiveness.* Develops and improves policies, standards, processes and strategies for the identification and prioritization of threat remediation as well as processes and methodologies for metrics and KPIs related to protections, security and compliance.* Provides advice and support to the Manager, Director, and CIO level in understanding leading and emerging cyber security concepts.* Supports the Manager by providing cyber security and cloud engineering expertise and input to strategic planning.* Sets security requirement and influences and guides senior subject matter experts across various business, application, and technology domains and with external partners related to execution of security requirements, vision, best practices, and principles. Provides support to technical assessments and penetration tests.* Coaches developers, IT operations and architects about latest security threats and landscape as well as introducing tools and techniques as needed controls for securing PHOs digital assets, data, and operation.* Works closely with Finance, Legal, and Privacy teams to translate security and privacy control requirements into technology solutions and works with management to advise on cyber security incidents and liaises for forensic investigations and sensitive matters affecting PHO.* Leads the analysis of proposed solution architectures, technology, design and IT development processes to identify potential threats and vulnerabilities, and to recommend options that enhance the security of solutions and business processes. Identifies issues and analyzes and recommends options for risk management at appropriate levels within PHO and with external partners.* Ensures that digital solutions are robust and protect PHO's digital and data assets against persistent threats.* Ensures that the organizations data and infrastructure are protected by enabling the appropriate security controls. Monitors vendors and other service providers and takes appropriate action to ensure compliance with PHOs cyber security standards and controls.* Ensures PHOs cloud systems are secure through good practice and effective cyber security capabilities. Implements and monitors security controls in cloud environments.* Oversees and provides guidance to the Cloud Engineer and M365 Engineer, ensuring alignment with the overall cyber security and cloud engineering strategies and the implementation and maintenance of robust security controls in their respective areas.* Leads and provides guidance to the Cloud Engineer in the design, implementation, and management of secure cloud infrastructure, ensuring compliance with industry best practices and troubleshooting and resolving cloud-related security incidents.* Leads and provides guidance to the M365 Engineer to ensure the secure deployment and management of M365 services and the integration and monitoring of security features to ensure their effectiveness.* Leads and ensures troubleshooting of security and network problems with an eye toward detecting anomalies and potential security incidents.* In conjunction with Digital and Cyber Security operations, responds to security incidents and breaches. Supports the Enterprise Technology & Cyber Security Operations team with threat hunting and analysis of suspicious security events and incidents.* Takes a leading role in various PHO security initiatives providing security expertise, facilitating collaboration and furthering PHO's security objectives.* Leads the development and maintenance of continuous vulnerability management capabilities, testing and identifying network and system vulnerabilities* Implements and champions security automation, including scripts and automation processes to improve control integration, monitoring, and streamline security tasks.* Fosters a collaborative environment between staff and other departments to ensure seamless integration of security practices across all digital assets.* Communicates effectively with stakeholders to provide updates on security initiatives and address any concerns* Participates in all levels of the procurement process.* Stays current with the latest tends, threat landscapes, and best practices and recommends innovative technologies to improve security operations allowing for proactive threat detection and improved efficiency across the organization.* Stays abreast of provincial, federal, and international security attack tools, Tactics, Techniques, and Procedures (TTPs), and secure operating trends.* Be a point of contact for subject matter expertise by developing, maintaining, and evolving relationships with external organizations and communities of practice toward the betterment of cyber security.* Manages staff, congruent with PHO internal policies and procedures, professional standards, Collective Agreement requirements and other relevant standards, legislation or regulations, including: providing direction and leadership in the implementation of new techniques and standards; assigning staff and implementing work/vacation schedules, setting clear responsibilities and objectives, evaluating performance, advising on training needs, participating on recruiting/selection of staff, dealing with disciplinary issues and responding to grievances in conjunction with PHO Human Resources management programs. Builds and leads a team of multi-disciplinary staff who support PHOs activities.**Knowledge and Skills-*** Advanced knowledge of security principles, issues, techniques and implementations across security platforms.* Advanced knowledge of cyber intelligence analytical methodologies, tools and techniques.* Strong understanding of Cloud environment security monitoring components.* Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment.* Strong problem-solving and analytical skills to proactively identify and resolve complex security-related problems and to navigate and resolve diverse technical challenges.* Project management skills.* Experience in healthcare, scientific, government organizations desirable* Broad knowledge of legislative boundaries and privacy regulations unique to Ontario and Canada.* Awareness and understanding of complex geographical, multi-lingual and multi-equity considerations specific to Ontario.* Strong comprehension of patient safety considerations when working with digital systems.* Applied knowledge of Ontario Public Sector procurement legislation, policies, and practices.**Education and Experience-*** Undergraduate degree in computer science, engineering, IT; or equivalent experience.* Minimum 10 years' experience #J-18808-Ljbffr