Systems Security Analyst

One of Canada's Best Diversity Employers and Greater Toronto's Top Employers for many consecutive years, William Osler Health System (Osler) provides a safe and supportive health care network to grow your career. Osler is nationally recognized for its commitment to patient safety and is Accredited with Exemplary Standing, the highest rating a Canadian hospital can receive. As a major Ontario hospital system, and home to some of the biggest specialty and emergency departments in the country, Osler serves the 1.3 million residents of Brampton, Etobicoke and surrounding communities. We are proud to offer you incredible exposure to best-in-class health care delivery and challenging hands-on opportunities to stay at the top of your game.

A hospital system built for and by the community, we continue to expand our services to meet the needs of a growing population, creating opportunities for increased hands-on skills development, cross-department training and promotional opportunities. Guided by our accomplished senior leadership team, together we are driving our vision of world-class health care inspired by our people and communities.

At Osler, we invest in careers that go beyond where health care professionals like you can achieve their goals and find deep personal and professional fulfillment. Join our team today!

Reporting to the Manager, Cybersecurity, the Systems Security Analyst will support program functions including awareness training, process engineering, policy/standard/guideline/procedure/assessment and architecture documentation, secure systems architecture, risk assessments, vulnerability assessments and audits of information systems. The successful candidate will act as operational support for existing and future security technologies and facilitate the adoption of good security practices by technical, clinical and administrative staff. Build and maintain relationships with internal/external clients and stakeholders. Provide leadership and general advisory to junior team members and subject matter expertise to the greater Information Systems team.

Accountabilities:

• Protect and defend Osler’s network through standards, assessments and administration
• Plan, schedule and facilitate/execute the activities around various types of security assessments (e.g. threat risk assessments) and IT audits, coordinating remediation efforts including the development of project plans and timetables
• Recommend, architect and implement security best practices related to network technologies, switches, routers, appliances/devices, content filters and firewalls
• Coordinate the installation, configuration, administration, trouble shooting and de-install of supported cyber and network products on the required platforms
• Monitor product vulnerabilities, reporting findings to appropriate teams for remediation
• Oversee security monitoring activities and provide appropriate reporting to support systems security program performance indicators
• Research, evaluate and recommend technical security solutions, new policies, standards, guidelines and procedures to improve IT governance and meet business requirements
• Work with internal and external stakeholders to review changes, recommend security controls related to the current environment and new initiatives
• Act as the IS security representative for Request for Proposal review
• Create and deliver systems security awareness material through the use of various types of media (e.g. presentations, posters, emails, etc.)
• Develop, document and implement security processes
• Respond to systems security incidents, isolating threats and determining remediation
• Capture and quantify risks and manage the enterprise risk register
• Work closely with privacy teams to ensure new solutions comply with privacy standards

• University degree or College diploma in information technology, computer science, business administration or engineering
• Minimum three years of network or information systems security in large user environments (5000+ users)
• Experience in a health care environment is considered an asset
• Certified Information Systems Security Professional, Certified Information System Auditor certification or MCSA; security certification is an asset
• Tangible experience with and knowledge of firewalls, switches, routers, intrusion detection systems, Internet content filters, data encryption, VPN, network and other industry-standard technologies
• Experience in Microsoft and Cisco infrastructure environments
• Familiarity with IDS, IPS, Antivirus, web filtering and encryption
• Strong ability to communicate with non-technical audiences
• Strong relationship management, written and verbal communication and organizational skills
• Familiarity with PHIPA, FIPPA an asset
• May be required to travel and work between multiple Osler sites
• Must demonstrate Osler's Values of Respect, Excellence, Service, Compassion, Innovation and Collaboration

Hours: Currently days, with rotating on-call requirements (subject to change in accordance with operational requirements)

This is a Hybrid: Roles that function remotely, but require essential, regular onsite weekly work.

Salary:
Minimum:  $  85,839.00
Maximum: $107,308.50

Application deadline: March 6, 2025

#LI-LM1

Osler values inclusivity and diversity in the workplace. We welcome and encourage applicants from diverse backgrounds. We are committed to providing accessible employment practices that are in compliance with the Accessibility for Ontarians with Disabilities Act. If you require an accommodation at any stage of the recruitment process, please notify Human Resources at [email protected].

While we thank all applicants, only those selected for an interview will be contacted. Any information obtained during the course of recruitment will be used for employment recruitment purposes only, and not for any other purpose.