This job posting has expired.

Here are some similar positions.

Director, Information Security

November 9 2020
Industries Education, Training
Categories Information Technology, Help Desk, Database Dev. & Admin., ERP, Packaged Software, SaaS, Project management, Data Centre, Warehousing, Cloud, QA, Tester, Debug, Security, Continuity, Risk
Oshawa, ON

Durham College

Director, Information Security

$102,207 - $136,274

IT Services is the central IT division of Durham College which provides shared IT services to both Durham College and Ontario Tech University. Three separate departments within IT Services are responsible for respectively providing (i) IT user support services such as the service desk and field technician support, (ii) the enterprise applications, including the ERP system, and (iii) the IT infrastructure. A director leads each of these departments.

Based in the Office of the AVP, Information Technology, the Director, Information Security is responsible for the development of a holistic information security program and the implementation thereof. The program is based on best practice and ensures a secure posture of the institutions' applications, processes and practices. The director will work closely with the IT management team and other relevant stakeholders to implement and maintain the program.

The director will provide advice to senior leaders at the institutions on how to enhance existing security policies and practices. The incumbent will work across IT Services and other departments to lead and facilitate information security improvements. The incumbent is responsible for identifying existing or emerging information security threats and plays a key role to position the two institutions to effectively deal with those threats. In addition, this position oversees the information security awareness program and assists in giving security updates to executives, directors and managers. This position oversees PCI compliance and plays a key role in disaster recovery at IT Services.

Maintaining a secure IT environment in higher education is of the utmost importance and the incumbent is responsible for an information security risk register and for vendor and cloud risk assessment. The director will also lead the information security incident response efforts. The incumbent will deal with information of a highly sensitive and confidential nature on an ongoing basis.

The director will coordinate regular information security vulnerability assessments and contribute to the design and implementation of information security monitoring and reporting solutions. The incumbent ensures the deployment of systems and applications in a secure manner.

The successful candidate will hold a four-year degree in Computer Science, Information Technology, or a related field. A Master's degree in a relevant field is an asset. A CISM or a CISA certification is required. An ITIL and CISSP certification are an asset.  In addition, the incumbent will have a minimum of nine years' relevant experience in an enterprise IT environment along with five years' experience in driving information security in an enterprise environment. The successful candidate will have five years' experience working in an enterprise environment with a service desk, ICT infrastructure, enterprise systems, etc. In addition, three years' project management experience and two years' experience managing external vendors is required, along with prior experience in a similar role in information security management and/or related functions. The successful candidate will also have five years of people management experience.

The successful candidate will have, through experience and training, a set of specialized knowledge in information security. The skills would include knowledge of IT infrastructure security, application security, endpoint security, data encryption, business continuity, vulnerability testing, forensic analysis, cloud architectures, PCI compliance. The incumbent will have the ability to engage effectively with clients at all levels of the organization. In addition, the successful candidate will have excellent leadership, written and verbal communication and interpersonal skills. The incumbent will have a broad knowledge of servers and operating systems, advanced administration practices, enterprise services such as e-mail and directory services; ERP systems, cloud hosting and relevant ITIL processes.  Lastly, the incumbent will have a good knowledge of networks and Wi-Fi, an understanding and experience with RFP and other processes for acquiring technology, and the project management skills to manage multiple projects at a time.

Durham College provides accommodations to applicants with disabilities throughout our hiring process.  If you require this information in alternate format; require communication supports; an accommodation in applying for a posting and/or you are selected for an interview, please contact our Human Resources (HR) department and an HR Assistant will work with you to meet your needs.


To apply for this position in confidence, please submit your cover letter and resume to the online portal at  Applications will be accepted until 4:00 pm on November 24, 2020. Competition number is AD20-10.

We thank you for your interest in employment with Durham College however, only those candidates selected for an interview will be contacted. network