Senior Cybersecurity Advisor

Institute for Clinical Evaluative Sciences - Toronto, ON (30+ days ago)

Apply Now

Data. Discovery. Better Health.

We’ve got the data. Only the ICES holds all of Ontario’s 18 billion health related records – comprised of nearly a trillion data points!

We’ve made improvements to health. As a world-leading research institute, our trusted evidence changes policy and practice…and patient lives.

We need you for the discovery part.

Your skills, knowledge and curiosity can change the future of health care.

Come discover your value.

Role Group: Privacy and Legal Office

Reporting to the manager, cybersecurity the senior cybersecurity advisor will perform risk assessments and penetration testing of information systems, network infrastructure, and cloud. They will also develop appropriate threat modeling and mitigation options, and effectively articulate findings and recommendations to IT project teams and management.

Responsibilities of the position include, but may not be limited to:
Conduct threat risk assessments on new product solutions in order to identify vulnerabilities prior to product release
Conduct penetration testing as part of the cybersecurity program on different environments
Conduct vulnerability assessments on different OS platforms, databases, mobile devices, and cloud and provide guidance to address existing vulnerabilities
Conduct internal cybersecurity audits, perform gap analysis and recommend corrective actions
Provide subject matter expertise for all cybersecurity related issues
Complete tasks designed to ensure cybersecurity of the organization's systems and information assets
Provide technical expertise knowledge to monitor and respond to alerts generated from cybersecurity infrastructure equipment including anti-virus, firewall, IDS/IPS, VPN, SIEM, managed services, etc.
Conduct regular maintenance of the enterprise vulnerability management tool and program
Monitor cybersecurity related websites and stay up to date on current attacks and trends
Communicate issues/concerns to the manager, cybersecurity and the Information Technology department as necessary
Actively participate in maintaining the cybersecurity services process development and support
Other duties as may be assigned within the scope of this position.
Knowledge, Skills and Abilities Required
Bachelor’s degree in a related field, and/or equivalent professional level work experience
Eight years of experience in cybersecurity
Minimum five years of experience in general network security
Solid understanding of network security methodologies, frameworks and technologies
Experience using Enterprise Vulnerability Management tools
Experience with Cybersecurity and Event Management (SIEM) tools
Experience with Incident Management and Incident response tools
Experience with both Unix/Linux and Windows environments (mandatory)
Experience with MSSQL, Oracle DB, and MySQL is a plus
Experience with Antivirus enterprise administration is a plus
Experience conducting penetration testing using open source tools
Experience with scripting languages such as Powershell, Python is a plus
Knowledge of Next Generation firewalls, Brocade Switches, Cisco Nexus and Virtual private networks
Knowledge of VMware, Citrix XenApp and Citrix NetScaler
Knowledge of Active Directory, Microsoft Exchange and storage systems
Knowledge of Microsoft Azure security features, Office 365 security
Knowledge of backup infrastructure
Excellent problem solving techniques and listening skills
Excellent verbal, written, analytical, and interpersonal skills
Ability to work independently and as part of a team
Flexibility and ability to work under pressure to manage multiple competing priorities within tight deadlines
Ability to work effectively and collaboratively with internal staff, scientists, external partners and stakeholders.

This position is a full-time opportunity located at ICES Central in Toronto.

ICES offers a competitive compensation package with full benefits, and participation in a defined benefit pension plan with HOOPP (Healthcare of Ontario Pension Plan).

Interested candidates should submit their resume, and cover letter detailing how their knowledge, skills and abilities match the scope of this position to the attention of:
Human Resources Department
Please quote job# PRC-19-02

We thank all applicants for their interest in working at ICES. Due to the volume of applications received, only applicants being considered for the position will be contacted for further discussions.

ICES is committed to providing accessible employment practices, in compliance with the Accessibility for Ontarians with Disabilities Act, 2005. Requests for accommodation can be made at any stage of the recruitment process, and applicants are asked to make their needs known.

Apply by Email: