Director, Infrastructure Cybersecurity

Career Opportunity

A great leadership opportunity within the Information Technology Services Department.

What you will do

You will lead a team of security engineers and administrators that deploy, maintain, and manage infrastructure security appliances and technologies in the TTC network infrastructure. This role will report to the Chief Information Security Officer (CISO), and will work closely with other key stakeholders in the IT infrastructure and Network Operation Center to establish risk-driven security standards for maintaining the security configuration of TTC IT infrastructure.

You will provide guidance on the technical direction and will lead the security team responsible for designing, building and maintaining innovative security services and solutions that support the needs of TTC technology infrastructure. You will have an in depth understanding of technology stack including network security configuration management (e.g., routers, LANs, WANs, VPNs), endpoint and infrastructure security management, encryption protocols, firewall deployment and management, Public Key Infrastructure, Security Information and Event Management, Data Loss Prevention tools and techniques, Endpoint Detection and Response tools, and Active Directory security management.

You will also be responsible for hiring, growing, and retaining the security talent. You will have a strong influence and driven personality to act as the final accountable role and authority for security configuration, roll out, and maintenance of security technology in partnership with third-party vendors, IT infrastructure and network operation center team. You will collaborate with security operations team to provide and support the security technology required for monitoring, responding and remediating to cyber threats.

You will collaborate with IT and network operation center leaders to ensure a seamless delivery and maintenance of infrastructure security solutions and infrastructure security configuration, including: Network security configuration management of routers, LANs, WANs, VPNs; Firewalls security rules management; Endpoint security configuration management and Public Key Infrastructure, Certificate Authority and Encryption protocols.

You will provide guidance on the technical direction and lead the security team responsible for designing, building and maintaining innovative security services and solutions that support the needs of TTC technology infrastructure by delivering innovative cybersecurity solutions across TTC and directing infrastructure security projects of high complexity to successful completion while maintaining success across multiple concurrent projects, executing within budget and within the prescribed time, scope and resources (labour, hardware, software).

In addition to the above, you will be responsible for treating passengers and/or employees with respect and dignity and ensuring the needs of passengers or employees with disabilities are accommodated and/or addressed (within their area of responsibility) in accordance with the Ontario Human Rights Code and Related Orders so that they can fully benefit from the TTC as a service-provider and an employer and perform other duties as assigned.

What Skills Do You Bring?

What Qualifications Do You Bring?

• University degree in Computer Science, or the equivalent, combined with several years of directly related and progressively responsible experience working in the area of security within an IT environment.
• Senior level experience in critical IT infrastructure, regulated and unionized environments in relevant positions as cybersecurity leadership.
• Experience successfully managing IT security infrastructure in complex technical and organizational environments with deep understanding of cybersecurity concepts, threat landscape, risk management, and technical knowledge of Operational Technology, data center and cloud technologies.
• In depth understanding of network infrastructure and security architecture, LAN, WAN, VPN, routers, firewalls and networking concepts, endpoint security, SIEM, DLP, EDR (CrowdStrike) encryption protocols, and Active Directory security management.
• Experience with multi-tiered mission-critical systems.
• Solid hands-on technical background particularly in managing highly complex, multi-platform environments (servers, storage, networks, security, virtualization, systems monitoring and management).
• Demonstrated knowledge of IT structures, architectures, and economies in batch, client/server, web-based and LAN based environments, and SaaS.
• Experience with contract and vendor negotiations and management including managed services.
• A master of influencing entities and decisions in situations where no formal reporting structures exist, but achieving the desirable outcome is vital.
• Strong technical abilities and organizational skills to setup standard operating procedures for maintaining security configurations.
• Extensive experience in communicating security requirements and risks to technical staff, management, and other stakeholders and articulate the potential security impacts of infrastructure changes.
• Experience in the design and implementation on mission critical solutions in multi-faceted environments.
• Proven ability to implement best practice methodologies and class leading capabilities for a critical infrastructure organization.
• Expert people leadership skills with ability to manage reporting managers and staff; to direct, coach, develop and manage performance of reporting senior leaders; to lead multi-functional teams consisting of diverse skill sets.
• Capable of leading and motivating a team of security engineers and administrators in a challenging, dynamic and global environment.
• Demonstrated knowledge of communications systems, design and economies.
• Strong understanding of the interface between business operations and systems.
• Strong knowledge of systems implementation and support best practices, standards, and frameworks, with packaged and custom systems development and support; deep expertise with ERP systems.
• Extensive experience in Infrastructure or Security Engineering/Operations
• Considerable experience with applied cryptography in an enterprise
• Considerable experience with systems engineering of cyber security systems
• Considerable experience is SSAE16 (SOC) audits
• Considerable experience in Network Security administration
• Considerable experience with security/hardening controls
• Considerable experience evaluating security risks and adopting appropriate risk treatment strategies
• Considerable experience in managing cloud security
• Considerable experience in managing security incidents
• Knowledge of access control systems and methodology

What We Offer

• Commitment to creating a diverse, equitable and inclusive culture that promotes a sense of belonging and represents and reflects the needs of the communities we serve.
• A flexible, hybrid work approach that allows colleagues to find balance between their professional and personal lives and making the most of the benefits of working remotely and purpose-driven in-person collaboration opportunities.
• One of the great benefits of being a full-time TTC employee is becoming a member of TTC defined pension plan.
• A comprehensive package that covers health, dental, vision and more.
• Support for professional development opportunities for all colleagues through a broad range of learning programs that include in-person and online training, leadership development, and support for colleagues’ well-being.

Commitment to EDI

The TTC is committed to upholding the values of equity, diversity, anti-racism and inclusion in the delivery of its services and in its workplaces. The TTC is committed to fostering a diverse workforce that is representative of the communities it serves at all levels of the organization, and supports an inclusive environment where diverse employee and community perspectives and experiences bring value to the organization. The TTC encourages applications from all applicants, including members of groups with historical and/or current barriers to equity, including but not limited to, Indigenous, Black and racialized groups, people with disabilities, women and people from the LGBTQIA+ community. The TTC values and supports an inclusive and barrier-free recruitment and selection process. Accommodations for applicants are available upon request throughout the recruitment and selection process, including for those who identify as having a disability. Please contact Talent Management at (416) 393-4570. Any information received related to an accommodation will be addressed confidentially.