Information Security Analyst

JOB INFORMATION

Requisition ID : 8184

Number of Vacancies : 1

Department : Information Technology Services (20000014) - Information Security Office (30000033)

Salary Information : $88,306.40 - $110,401.20

Pay Scale Group : 9SA

Employment Type : Regular

Weekly Hours : 35 Off Days : Saturday and Sunday Shift : Day

Posted On : September 28, 2023

Last Day to Apply : October 12, 2023

Reports to : Acting Manager - Cybersecurity Risk Management

The Toronto Transit Commission (TTC) is North America's third largest transit system and has been recognized as one of the top places to work in the GTA.

Guided by a forward-thinking strategic plan, the TTC's vision is to be a transit system that makes Toronto proud. The TTC's recruitment efforts are directly aligned to its mission of providing "a reliable, efficient, and integrated bus, streetcar and subway system that draws its high standards of customer care from our rich traditions of safety, service and courtesy."

General Accountability

Reporting to the Manager - Cybersecurity Risk Management, this position is responsible for the development, review, implementation, and maintenance of the TTC's cybersecurity awareness program.

Provides technical expertise, support and services on all Cybersecurity awareness initiatives, this role works closely with various IT / OT and business subject matter experts to ensure appropriate security awareness and training is in place to address identified enterprise security risks.

This role is a key contributor for promoting a culture of security within the TTC and increasing awareness and understanding of the role each individual plays in maintain the security of the TTC's system and data.

Key Job Functions

• assists with various IT Security program streams and their implementation :
• identifies and evaluates top human risks to the organization and the behaviors that must change to mitigate those risks
• creates and manages a metrics framework that effectively measures employee compliance with information security policies, maintain minimum agreed security awareness training completion rates, and oversee the reduction in the overall number of cyber security incidents caused by human activity
• ensures security awareness trainings, communications, and marketing are engaging and influences changes in employees' behavior
• determines cyber security awareness requirements of business strategies in order to provide appropriate training advice and guidance.
• conducts research and related fact-finding exercises for maintaining and revising security related technologies, policies, guidelines, processes, procedures and standards;
• prepares / presents various reports relating to areas of responsibility.
• responsible for treating passengers and / or employees with respect and dignity and ensuring the needs of passengers or employees with disabilities are accommodated and / or addressed (within their area of responsibility) in accordance with the Ontario Human Rights Code and Related Orders so that they can fully benefit from the TTC as a service provider and an employer.

Skills

• Use office technology, software and applications
• Communicate in a variety of mediums
• Demonstrate specialized expertise and knowledge in the assigned field
• Apply analytical skills

Education and Experience

Post-secondary education program in Computer Science, Cybersecurity, Information Technology or an equivalent combination of education, training and experience combined with years of IT security experience preferably within the transportation industry.

Additional Requirements

• Experience with creating and implementing Cybersecurity Awareness Training programs
• Experience with Phishing protection and simulations tools
• Knowledge of relevant Enterprise Security Solutions
• Must possess well-developed organizational ability;
• Effective verbal, written, presentation and interpersonal communication skills
• Strong technical and analytical skills to develop and maintain a firm understanding of the TTC's systems and processes, and security, technical and business needs.
• Demonstrated ability to use MS Office (MS Word, Excel, Power-Point).
• Requires sound knowledge of Information Technology security principles, practices, technologies, programs and procedures.
• Must have or rapidly acquire a comprehensive knowledge of the Ontario Human Rights Code and Related Orders including disability accommodation and accessibility requirements pertaining to passengers and employees.

The TTC is committed to upholding the values of equity, diversity, anti-racism and inclusion in the delivery of its services and in its workplaces.

The TTC is committed to fostering a diverse workforce that is representative of the communities it serves at all levels of the organization, and supports an inclusive environment where diverse employee and community perspectives and experiences bring value to the organization.

The TTC encourages applications from all applicants, including members of groups with historical and / or current barriers to equity, including but not limited to, Indigenous, Black and racialized groups, people with disabilities, women and people from the LGBTQ(IA+) community.

The TTC values and supports an inclusive and barrier-free recruitment and selection process. Accommodations for applicants are available upon request throughout the recruitment and selection process, including for those who identify as having a disability.

Please contact Talent Management at (416) 393-4570. Any information received related to an accommodation will be addressed confidentially.

The TTC's policy prohibits relatives of current TTC employees from being hired, assigned, transferred or promoted into positions, where there is a conflict of interest due to a relationship.

Should you be selected for an interview, you will be required to disclose the name, relationship and position of any relative who is a current TTC employee.

We thank all applicants for their interest but advise only those selected for an interview will be contacted.