Manager, Cyber Security and Risk Management

Manager, Cyber Security and Risk Management

This range is provided by Toronto District School Board. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range CA$131,013.00/yr - CA$157,199.00/yr POSTED: October 7, 2025 DEADLINE: 4:30 p.m. October 28, 2025 Manager, Cyber Security and Risk Management 1 – Permanent Positions (Non-Union, 12 Month) $131,013 - $157,199 The Toronto District School Board adheres to equitable hiring, employment and promotion practices. Reporting to the Senior Manager, IT Operations, the Manager, Cyber Security and Risk Management, will provide strategic support for Cyber Security governance and risk management and manage the architecture, engineering and operational support for the cyber security, threats and vulnerabilities, security analytics, forensic infrastructure and the controls required to address risks. The Manager will coordinate and provide expertise to implement and manage the cyber security infrastructure, incidents, breaches, investigations and the development and implementation of IT related cyber security policies and processes, while working closely with other IT teams to strengthen their defense and security postures and proactively mitigate risks across systems and services. Summary of Duties: Work with the Senior Manager, IT Operations to develop cyber security strategies, governance frameworks, policies, processes and procedures to address identified risks and organizational requirements. Manage the process of analyzing and assessing current and future threat landscape and provide realistic overview of risks and threats faced by TDSB. Ensure the risk assessment and recommended controls remain effective as the computing landscape changes with cloud and social computing. Identify budget and resource requirements for short and long term goals and objectives. Manage and coordinate security incidents, breaches, investigations, risk assessments and audits. Facilitate the understanding of evolving risk, threat landscapes, vulnerabilities and the required changes to the controls with the respective service owners and their teams. Facilitate the understanding and responding to controls audit and failures. Coordinate risk assessment arising out of changes in threat, vulnerability and asset base, including introduction of new systems or services. Provide and coordinate security communications, awareness and training to align with user centric and devolved security strategy. Consult and support IT and Business architects on threat driven and proactive security measures at architectural, design and implementation stages. Consult and support the respective teams to ensure security is factored into selection, contracting, and implementation of new systems. Recommend and coordinate implementation of technical controls to manage risks and meet compliance and legislative requirements. Research, evaluate, design, test, recommend and plan the implementation of new or updated cyber security hardware or software. Manage and coordinate operational components of security incident/breach/investigation management, including detection, response and reporting. Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances and variation to residual risks, recommend treatment plans and communicate information about residual risk. Communicate intelligence-related concepts and recommendations to senior management and provide status and briefings of threat intelligence operational activities. Responsible for management and direction of staff, including planning, staffing, training and performance reviews. Provide leadership to motivate staff and facilitate team building, review and recommend hiring of staff. Manage, review and monitor department and project budgets, including expenditure review, authorization and analysis of transactions, contract reviews etc. Provide guidance and direction to external vendors that provide cyber security functions for compliance with contracted service-level agreements. Maintain a knowledgebase comprising a technical reference library, security advisories and alerts, information on security trends and practices, and applicable laws and regulations. Qualifications: University degree in a related discipline such as Computer/Network Engineering or Computer Science with seven years of progressively responsible experience in IT Security for large complex, multi-site public sector environment, or equivalent combination of education and experience. Specialized training and certification from such as Global Information Assurance Certification in the following areas: IT Risk Management, Security Leadership, Information Security, Perimeter Protection, Enterprise Defense, Critical Controls, System and Network Auditing. Extensive experience in all aspects of cyber security including networks, servers, endpoints, cloud services, IOT and applications. Ability to rapidly evaluate and assess potentially imminent security situations, sensitive developments and complex threat issues. Experience in threat, vulnerability, and risk and audit management. Demonstrated experience in enterprise-wide system technologies including networking, systems, databases, applications, remote access, and firewalls. Knowledge of and experience in techniques and practices related to project management, control and costing, workload forecasting, documentation, security policies and performance standards. Strong interpersonal skills with the ability to navigate sensitive issues diplomatically and foster cooperative working relationships. Knowledge of related TDSB policies and procedures, collective agreements and pertinent legislation. Knowledge of the compliance and legislative security requirements of a complex public sector organization. Experience in vendor relationship development and management. Successful experience managing a budget Detail oriented and analytical with strong problem-solving skills. Superior oral, written, presentation, interpersonal and organizational skills. Strong time management and project management skills including the ability to multitask and prioritize. Successful supervisory experience with strong leadership, mentoring and team building skills. Proven ability in promoting equitable practices which value inclusiveness and diversity. Manage security projects and provide expert guidance on security matters for other IT projects. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Design, coordinate and oversee security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks. Provide leadership in fostering equity and inclusiveness in the development and implementation of programs and services. Other duties as assigned. Location:

140 Borough Drive (Hybrid Work Eligible) (Wheelchair Accessible) Work Year: 12 months Please note: Applications must be submitted using the link below by October 28, 2025: https://www.tdsb.on.ca/jobpostings/details.html?nPostingId=756&nPostingTargetId=875&id=PLUFK026203F3VBQBQW6GQWWN&LG=EN&languageSelect=EN Only applicants selected for an interview will be contacted. Applications will not be acknowledged in writing. The Toronto District School Board is deeply committed to promoting Truth, Reconciliation and the rights of Indigenous peoples, Human Rights, Equity and Anti-Racism, and the elimination of Oppressive Practices, in our schools, our workplace and in the communities we serve. We strongly encourage applications from all individuals including those with varied lived experiences that can contribute to the diversification of the workforce at TDSB. We strive to meet the accommodation needs of persons with disabilities. Applicants are encouraged to make their needs for accommodation known in advance during the hiring process. The TDSB follows a hybrid work structure where some employees may be able to work remotely at times, based on operational requirements. Please refer to Policy P103, Flexible Working Arrangements for more information. Seniority level Not Applicable Employment type Full-time Job function Information Technology Industries Primary and Secondary Education, Education Administration Programs, and Education Referrals increase your chances of interviewing at Toronto District School Board by 2x Get notified about new Security Risk Manager jobs in Toronto, Ontario, Canada. Manager, Cyber and Technology Risk Management Manager, Cybersecurity and Threat Modeling Toronto, Ontario, Canada CA$140,000.00-CA$140,000.00 20 hours ago Manager-Cybersecurity, Technology Risk & Control Senior Manager, IT - Infrastructure Security & Data Protection Senior Security Consultant - Security Operations Data Security Manager, Information Security Information Technology Security Consultant Manager, IT Security Monitoring and Incident Management Senior Manager, Payments Security (Global Security) Manager - Network Security Services, Global Deloitte Technology Manager - Cyber Security Strategy & Governance Cybersecurity & Privacy, AI Security Director Sr. Consultant, Information & Cyber Security Governance We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr