Promoting security awareness and development.

The British Columbia Instititue of Technology (BCIT) is looking for a Cyber Security Officer for its Information Technology Services Department, reporting to the Chief Information Officer.

Position Summary:

The Cyber Security Officer has authority over all aspects of cyber security, including governance, policy formation and application. The Cyber Security Officer directs the development, implementation, delivery and support of an enterprise cyber security strategy aligned to the strategic requirements of the Institute. The Cyber Security Officer ensures alignment between business strategies and cyber security, and leads the provision of cybersecurity resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organization’s information systems. The Cyber Security Officer applies the highest level of leadership skills, makes decisions critical to organizational success, and inspires the organization.

Key Accountabilities:

  • Directs the development, implementation, delivery and support of an enterprise cyber security strategy aligned to the strategic requirements of the Institute.
  • Ensures alignment between business strategies and cyber security and leads the provision of cyber security resources expertise, awareness programs, guidance and systems necessary to execute strategic and operational plans across all of the organization’s information systems.
  • Develops policies, standards, processes, and awareness programs, guidelines for ensuring the physical and cyber security of automated systems. Reviews new business proposals and provides specialist advice on cyber security issues and implications and provides direct input into the security architecture domain of the Enterprise Architecture practice.
  • Takes comprehensive approach to seeking vulnerabilities across full spectrum of organization policies, processes, and defenses in order to improve organizational readiness, improve training for defensive practitioners, and inspect current performance levels. Determines testing policy, and owns the supporting processes. Assesses and initiates improvements to test processes.
  • Assesses suppliers and third parties’ overall cyber security posture and practices to ensure appropriate compliance with BCIT’s cyber security standards and policies. Manages client relationships with respect to all cyber security matters.
  • Ensures that appropriate action is taken to anticipate, investigate and resolve problems in systems and services. Ensures that such problems are fully documented in the relevant reporting systems. Enables development of problem solutions. Coordinates the implementation of agreed remedies and preventative measures. Analyzes patterns and trends.
  • Ensures that incidents are handled according to agreed procedures. Investigates escalated incidents to responsible service owners and seeks resolution.
  • Facilitates recovery, following resolution of incidents. Ensures that resolved incidents are properly documented and closed. Analyses causes of incidents, and informs service owners in order to minimize probability of recurrence, and contribute to service improvement. Analyses metrics and reports on performance of incident management process.
  • Acts as the official point-of-contact for working with law enforcement and other official agencies as required to ensure cyber security incidents are managed appropriately to ensure chain-of-custody and supporting documentation are maintained.
  • Provides management oversight and supervisory support for direct reports.
  • Implements resource plans, including conducting recruitment interviews. Facilitates selection, assessment and on-boarding processes, and internal resource allocation. Contributes to transitioning of resources, complying with relevant statutory or external regulations and codes of good practice.
  • Responsible for development and ongoing maintenance of policies, standards and guidelines for how the organization conducts digital forensic investigations.
  • Leads and manages complex investigations managing specialists if required. Authorizes the release of formal forensics reports.
  • Leads the formulation and implementation of cyber security strategy. Applies the highest level of leadership skills. Has a deep understanding of the industry and the implications of emerging technologies for the wider business environment.
  • Assesses the impact of legislation, and actively promotes alignment and compliance. Ensures that the organization develops and mobilizes the full range of required digital skills and capabilities to ensure best practice cyber security environments.

Qualifications and Requirements

  • Master’s degree with professional credentials related to cyber security (e.g., Certified Information Systems Security Professional).
  • Five years of experience related to cyber security, including three years at a management level, supervising in a unionized work environment.
  • A full range of strategic management and leadership skills. Ability to present complex ideas to audiences at all levels in a persuasive and convincing manner.
  • Excellent business, negotiating, organizational, leadership, managerial, and planning skills.
  • Demonstrated ability to take initiative, work with limited direction, handle stress, and tolerate constant uncertainty. Demonstrated understanding and knowledge of current information technology trends, issues, and mitigation strategies.
  • Demonstrated collaborative management style that engages employees and builds relationships to achieve work related goals.
  • Good organizational skills and a high degree of self-motivation and business acumen.
  • Demonstrated effective and positive management style for people and issues.
  • Ability to communicate effectively with all levels of customers and attributes that capitalize on opportunity, creativity and innovation that maximize customer service

Closing date: November 4, 2018

Interested candidates can apply through BCIT's website.

This entry was posted on October 25, 2018