ON CHEC - Senior Technical Specialist
Cyber Security Consortium & CISOFull TimeToronto, ON
About ORION:
ORION is a not-for-profit organization supporting Ontario’s progress with essential digital infrastructure. Since 2001, we’ve facilitated new discoveries by connecting research and education institutions, regions, and people across the province, enabling collaboration, learning, forging partnerships, and providing our community with the digital tools and expertise they need to make the world a better place.
ORION is Ontario’s only provincial research and education network. Covering 6,000 kilometres with over 30 points of presence (PoPs), our private network connects regions and over a hundred institutions all over the province, including universities, colleges, hospitals and research institutions, as well as many of Ontario’s school boards. Almost two million people in the research and education industry rely on ORION to share and communicate with each other and to connect to a global grid of similar networks across Canada and around the world.
Our long history of providing advanced network solutions has given us the expertise we need to fulfil the digital requirements of Ontario’s research and education community.
We also provide shared access to advanced technology that lowers institutional purchasing costs and reduces duplication in services.
As a workplace, ORION has a culture of inclusion, mutual respect and teamwork. Equity and diversity are an integral part of our commitment to innovation, connectivity and community. We encourage applicants from women, persons with disabilities*, Indigenous peoples, racialized people and others who may contribute to the further evolution of our network.
What we need:
The ON-CHEC Senior Technical Specialist will support the universities and colleges participating in ON-CHEC (Ontario Cybersecurity Higher Education Consortium). The successful candidate will work in partnership with member groups to support security related technical solutions. These may include supporting Microsoft Azure environments, firewalls and networking, EDR/XDR/MDR solutions. Also supporting institutions in building roadmaps, designing their security program and testing/assessing their security controls.
Candidates will be self-starters with excellent written and spoken communication abilities, and an exceptional capacity to understand our community’s needs. We are looking for a team-oriented individual with strong professional ethics.
Key Activities:
- Responsible for key deliverables of the ON-CHEC Program, while assisting constituents with technical projects, solutions and deliverables
- Provide our constituents (universities and colleges) with support for their cybersecurity program & roadmap
- Working with a number of frameworks such as NIST and CIS
- Provide technical advice regarding campus network security tools, best practices, and incident recovery approaches
- Develop content for the monthly ON-CHEC webinars
- Participate in and/or lead ON-CHEC working group activities
- Advise on Information security programs
- Advise on strategies and recovery plans in the event of an incident
- Advise on the performance of penetration tests or “red teaming” on infrastructures, networks (internal/external), physical security, wireless technologies
- Provide regular security analytics reports for management review with identified risks, identities, threats, and system vulnerabilities along with recommended remediation actions
- Analyze and decipher information from multiple systems to identify cyber events and promptly alarm through reporting chain
- Perform security monitoring and traffic/data analysis
- Monitoring for Security Information and Event Management (SIEM), Intrusion Prevention/Detection systems (IPS/IDS) and Threat Intelligence systems
- Collect and preserve legally acceptable evidence of the malicious activity
Qualifications:
• Bachelors or master’s degree in computer science or information systems security or equivalent experience
• Assets include: • CISSP, Microsoft Azure certifications, Cisco certifications
• 10+ years of experience in Information technology, ideally as part of a higher education institution
Knowledge and Skills:
• Passion for cybersecurity and knowledge of attack methods, tools, tactics, and techniques
• Experience in, or appreciation of, the unique challenges and risks faced by the higher education sector in Canada
• Basic knowledge of NIST CSF and CIS controls framework
• Experience with network security devices such as switches, firewalls, routers
• Operational knowledge of Identity and Access management using AD/Azure AD
• Basic ITSM foundation knowledge regarding Incident Management, Service Request Management and Change Management
• Foundational knowledge of Cloud technologies with a focus on Microsoft Azure
• Real world experience with Incident Response
• Knowledge of behaviours of different types of threat actors
• Excellent analytical capacity
• Dynamic and self-directed
• Curiosity and well-informed of current trends in cybersecurity
• Excellent written and spoken communication qualities are essential
Reporting Relationship:
• This senior technical position reports directly to the Director, ON-CHEC Security Program
Salary and Benefits:
• Flexible work-from-home policy
• Comprehensive benefits package
• Career-training and development
• Generous holidays/vacations
• Many other perks
* Accommodations are available on request for candidates taking part in all aspects of the selection process.