Toronto Transit Commission (TTC) - Chief Information Security Officer (CISO)
Toronto, Ontario, Canada
Full Time CAD 200K
The Toronto Transit Commission (TTC) is North America’s third-largest transit system and has been recognized as one of the top places to work in the Greater Toronto Area. Guided by a forward-thinking strategic plan, the TTC’s vision is to be a transit system that makes the City of Toronto proud. The TTC’s recruitment efforts are directly aligned to its mission of providing “a reliable, efficient, and integrated bus, streetcar and subway system that draws its high standards of customer care from [its] rich traditions of safety, service and courtesy.”
Central to the provision of service excellence are the people behind delivering it; within this framework, it’s important to acknowledge the indelible impact that diverse organizations have on the customer experience, uniquely positioning such organizations to deliver an experience that’s truly nuanced and continuously improves. It’s within this context that the TTC—dedicated to the better way in all its forms—invites nominations and applications for the role of Chief Information Security Officer (CISO).
Reporting to the Chief Information Officer (CIO), the inaugural CISO is a visionary leader who will carry the mandate of transforming the TTC’s cybersecurity program. They will assume a vital position within the IT Executive team, overseeing the creation of a cybersecurity strategy as well as a multi-year roadmap that aligns with TTC’s objectives. The chosen candidate will be responsible for developing and harmonizing TTC’s cybersecurity strategy, policies, practices, processes, and systems with industry best practices, as well as municipal, provincial, and federal standards. They will report on cybersecurity risks to the Executive Team and the Board on a regular basis, offering assurance that any organizational risks are being addressed. They will also lead communication with cybersecurity leadership at the City of Toronto, as well as maintain regular contact and share relevant cybersecurity information with transit industry forums and working groups.
Among the qualifications being sought in candidates, the incoming leader must have a deep and abiding commitment to advancing reconciliation, equity, diversity, and inclusion in all its forms and must believe, intrinsically, in the importance of leading with curiosity and welcoming ideas that can later be synthesized and turned into possibility. While all candidates are encouraged to apply and, in so doing, share how they see themselves adding value to the TTC environment, the following credentials and/or experiences are seen as possible markers of the candidates most likely to realize success in the role: A) senior-level experience in cybersecurity and critical infrastructure as well as operations technology (OT), ideally in both regulated and unionized environments; B) experience successfully executing on multiple cybersecurity programs in complex technical and organizational environments and possessing a deep understanding of cybersecurity concepts, threat landscape, risk management, and cloud technologies; C) experience building strategy and energizing team members to execute on vision; D) expert people leadership skills with the ability to work effectively with direct managers and staff; E) a post-secondary degree in computer science, cybersecurity, information technology, IT management, business administration or a related field or the equivalent combination of education and experience; F) a leader who has either a Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) designation, with the following credentials considered assets: Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Global Industrial Cyber Security Professional (GICSP), and/or GIAC Security Leadership (GSLC).
How to Apply
The TTC is committed to upholding the values of equity, diversity, anti-racism and inclusion in the delivery of its services and in its workplaces, and is committed to fostering a diverse workforce that is representative of—at all levels of the organization—the communities that it serves. The TTC supports an inclusive environment where diverse employee and community perspectives and experiences bring value to the organization.
The TTC encourages applications from all applicants, including members of groups with historical and/or current barriers to equity, including but not limited to Indigenous, Black and racialized groups, people with disabilities, women and people from the LGBTQ(IA+) community. The TTC values and supports an inclusive and barrier-free recruitment and selection process. In accordance with the Accessible Canada Act, 2019 and all applicable provincial accessibility standards, accommodation will be provided throughout the recruitment process to applicants with disabilities.
The TTC is partnering with BIPOC Executive Search to ensure an applicant list that is diverse and is as intersectional as possible. All interested applicants can send their resume to Jason Murray by e-mailing firstname.lastname@example.org, or can apply through the BIPOC Executive Search mobile app.
We thank everyone for their expression of interest—and are truly appreciative of the time individuals put into applying—but with the limitations of time only those selected for an interview will be contacted.
Tags: C CISA CISM CISSP Cloud Computer Science CRISC GIAC GICSP GSLC Industrial Risk management Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Electronic Warfare Advanced Tactical Trainer jobs
- Open Security Operations Analyst jobs
- Open Senior SOC Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Analyste CERT / Incident Responder senior (H/F) jobs
- Open SOC Analyst jobs
- Open Staff Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Manager Pentest H/F jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Analyste CERT / Incident Responder junior (H/F) jobs
- Open IT Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open IT Security Specialist jobs
- Open Infosec Risk Manager jobs
- Open Cyber Program Manager jobs
- Open o365 Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Staff Information Security Engineer jobs
- Open Cyber Hunt SME jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Security Operations Engineer jobs
- Open Agile-related jobs
- Open SIEM-related jobs
- Open GCP-related jobs
- Open Clearance-related jobs
- Open Risk assessment-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open Java-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open Kubernetes-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs
- Open Cryptography-related jobs
- Open CISA-related jobs
- Open Encryption-related jobs