CLOSING DATE:  September 19, 2024

AREA OF RESPONSIBILITY:

Reporting to the Senior Manager, Core Infrastructure, this role is responsible for development, management, and execution of a comprehensive I.T. security program, and leading the team of information security professionals to protect the integrity and security of the Corporation’s computing and network infrastructure and environment.  This subject matter expert collaborates with senior business and technology staff and external agencies to create and implement an IT governance and risk management policies and standards; audit and monitor IT enterprise risks and practices for compliance and manage discovery and recovery situations. This resource is expected to operate on a senior level and may be required to perform high profile and highly confidential investigations and report findings to senior management, Council, Legal division, Courts or other regulatory bodies. This resource is also responsible for performing annual PCI (Payment Card Industry) compliance reviews and internal audits and advise senior management on matters of cyber security in terms of business continuity and reputational risk. The resource will be participating in multiple governance forums on behalf of IT management as well as external industry regulatory and peer forums.

1. Manage corporate information security program. Research, develop and lead the implementation of the Corporation’s I.T. security program. Recommend a suitable set of controls, including policies, processes, procedures, organizational structures as well as software and hardware functions. In conjunction with other business management processes, establish and maintain regular monitoring, review and improvement processes to ensure that specific security and business objectives of the Corporation are met. Initiate plans and programs to maintain information security awareness. Ensure proactive risk management through the implementation of information security controls coordinated across the organization.

1. Staff management. Provide direction and guidance to union and non-union technical staff (security systems specialists, and security administrators) and outside consultants who are administering technology solutions such as firewall servers, intrusion detection systems, information security policy enforcement systems, etc. Establish performance objectives and work assignments, and motivate staff through coaching and guidance. Provide technical I.T. expertise to assist in task accomplishment. Responsible for adherence to Human Resources and Health & Safety policies. Provide performance feedback. Assess staff needs and make recommendations for training & professional development or recruiting

1. Operational excellence. Ensure support documentation is current, accurate and useful. Recommend appropriate hardware/software upgrades and changes. Continually monitor internal and external environment and maintain industry knowledge and peer connections in order to foresee trends and avert risks that may impact the integrity of the environment. Respond to emerging security issues and recommend best solutions. Prepare and monitor the operating and capital budget for own area, and contribute to the overall departmental budgeting process. 

1. Information security incident management. Ensure that information security incidents are addressed in a timely and professional manner. Undertake highly confidential forensic investigations based on real or perceived threats to the organization.  Analyze data from multiple information sources and formulate a conclusion based on evidence.  Notify appropriate individual (eg: Director of HR) of findings, and follow up as may be required. 

1. Compliance Monitoring. Advise on the best way to meet compliance requirements while allowing operation of departments and excellent service delivery. Monitor all activity associated with the corporate I.T. Usage Policy compliance and report regularly to senior management. Identify all relevant statutory, regulatory and contractual requirements in regards to information security and develop strategy to ensure compliance. 

1. Technical expertise. Participates on project teams to provide direction in regards to security architecture and measures to protect the Corporate computing environment. Influences vendor relationships by providing assessments and sign-off to ensure new and peripheral computer systems meet the City’s standards of security and protection of public interest. Participate and lead initiatives that support governance, risk and quality controls.  Oversee the Privacy Impact Assessment process for all Technology applications and system prior commissioning.  Conduct specific reviews and audit to ensure compliance of project outcomes, processes, policies and standards to architectural design and risk controls.  Evaluate performance of project goals to objectives and desired value and provide independent opinion and advise on same for future projects. 

1. IT Risk Management. Oversee the design, development and implementation of City of Brampton IT Enterprise risk management policies, standards and controls.  Oversee the design, development and implementation of the City’s IT disaster recovery including business impact assessment and implementation of contingency planning, situation analysis and recovery.  Scanning and monitoring processes and systems by internal or external entities to determine and assess threats for all environments.  Monitor and assure compliance to policies, standards and legislative regulations.  Conduct high profile and confidential investigation and discoveries authorized by the appropriate level of management or authoritative bodies. Report findings for corrective or preventative measure to senior management, Council, legal, court or other regulatory bodies. 

1. IT Quality Management and Continuous Improvement. Consult and advise senior management on matters related to implementation of IT quality controls per industry and regulatory standards such as the Ontario Privacy Commission, COBIT, ISO, ITIL and more.  Work with IT management to integrated processes and services with broader business objectives and develop related Service Level Agreement(s) for new technologies.  Conduct benchmarking and research to keep the City abreast with changes to regulations, IT governance, risk controls and best practices; advise to improve and enhance policies and performance of standards.  Participate in internal and external industry forums to showcase and promote the City’s good government practices and share learning of same with the organization. 

1. IT Governance. Collaborate and work with IT and business Management to develop IT policies and standards to comply with regulatory requirements, City’s by-laws, Risk management and best practices to safe guard the City from liabilities and keep policy current with the proliferation and changes in technology. Work with internal and external Audit to produce, communicate and coordinate IT audit reports and activities.  Advise management and Council on breaches, critical issues or liabilities in relationship to IT compliance.  Conduct periodic reviews of IT applications and systems to assess compliance and conformity.  Participate in relevant committees or forums to provide subject matter expert opinion on matters related to IT governance and risk. 

1. Relationship Management. Build and maintain internal and external relationship with all levels of management and agencies. Participate in cross-functional teams to maintain and awareness of service levels for internal clients 

SELECTION CRITERIA:

EDUCATION:

• University degree or diploma in Computer Sciences or equivalent.
• Combination of industry-recognized certifications such as CISSP, CEH,ISO 27001,ITIL, Project Management, MCITP, CCNA, CCNP are considered an asset

REQUIRED EXPERIENCE:

• 10 or more years of progressively more responsible experience in Network and Information Processing Systems Infrastructure security management.
• Knowledge of operating systems, web applications, and database security solutions
• Minimum 3-5 years of supervisory or team leadership experience.

      OTHER SKILLS AND ASSETS:

• Municipal and/or unionized environment experience an asset
• Experience with Project Management methodology
• Practical knowledge of ITIL and ISO127001 practices
• Post secondary degree or diploma in Information Technology related disciplines, Master is an asset;
• 10 years and in depth knowledge and experience in Information Technology industry with emphasis on IT Governance, Risk Management, investigation, audit and security, municipal knowledge is an asset;
• Must Have certification by ISACA in related to IT Security or Risk Management
• Project Management Certification is an asset
• Enterprise Architecture Certification is an asset
• Proven track record of IT audit or risk management, references will be required
• Exceptional analytical, problem solving, project management, organization and communication skills;
• Strong business and political acumen;
• Advanced level of use of technology to perform role;
• Strong leadership qualities

 **Various tests and/or exams may be administered as part of the selection criteria.

Interview:  Our recruitment process may be completed with video conference technology.

CLOSING DATE:  September 16, 2024

AREA OF RESPONSIBILITY:

Reports to Supervisor, Accounting, Prepares and analyses a variety of financial statements, reports and related documentation for internal and external stakeholders as it relates to the Current, Reserve and Trust Funds. Responsible for the data compilation and analysis of all asset data inventory to ensure compliance with the revised Public Sector Accounting Board’financial reporting standards (PSAB 3150).

• Responsible for the monthly reconciliation of the City’s bank accounts. This often requires coordination with other departments.
• Responsible for the preparation, analysis and the timely and accurate entry of the City’s financial information into the General Ledger. Ensure that journal entries are accurate and in accordance with Generally Accepted Accounting Principles (GAAP), Public Sector Accounting Board (PSAB) as well as the City’s policies and procedures.
• Prepare and analyze annual Financial Statements and Financial Information Return schedules to be used by internal and external stakeholders.
• Prepare and analyze various monthly, quarterly and annual reports for all City funds. Reports must be accurate and timely as they are distributed to all levels of management.
• Provide information for Statistics Canada Quarterly Surveys. Compile and analyze Annual Statistics Canada Report.
• Analyze monthly balance sheet accounts. Obtain backup, investigate issues and take necessary corrective action.  Analysis requires communication with various departments as well as third parties.
• Responsible for chart field maintenance in the PeopleSoft General Ledger and Project Costing modules.
• Prepare monthly and annual government statutory remittances including but not limited to the Employer Health Tax (EHT) and Harmonized Sales Tax (HST).
• Review A/P Payment Requisitions, Purchase Orders and Invoices for correct coding and asset classification.
• In conjunction with Payroll, process payroll journals via the PeopleSoft Financial and HRMS system interface.
• Process monthly employee Meal and Mileage Allowances.
• Responsible for the maintenance of employee and external vendors in the PeopleSoft Financial system.
• Responsible for the administration of the City’s travel request and reimbursement process while ensuring the adherence of the corporate policies and guidelines.
• Process financial transactions for internal and external investments in the General Ledger and analyze related balance sheet accounts.
• Responsible for the creation of project id’s and set up project information in the PeopleSoft Project Costing module.
• Capital Budget analysis and upload.
• Generate reports on asset cost and depreciation. Provide all ad hoc reports related to tangible capital assets. 
• Process and analyze asset inventory information submitted by operating departments.
• Analyze project costs to determine the correct accounting treatment.
• Provide input on policies and business procedures related to Tangible Capital Asset accounting.
• Provide ongoing training to operating departments on Tangible Capital Asset financial policies and procedures through formal training sessions.
• Prepare accounting data for year-end Tangible Capital Asset schedules. Will be required to  take corrective action when required.
• Performs additional similar and related duties as assigned.

SELECTION CRITERIA:

• High School (Grade 12) graduation plus an additional program of three to four years in Economics, Finance or equivalent.
• Over two (2) years, up to and including four (4) years of related experience.
• Completion of CPA (Chartered Professional Accountant) PREP or 4th level CGA (Certified General Accountant) or completion of all eligibility required topics for CMA (Certified Management Accountant) entrance examination or equivalent.
• Strong knowledge of PeopleSoft Accounts Payable, Purchasing, General Ledger, Asset Management and Project Costing modules and PSAB/GAAP.
• Demonstrated experience with Microsoft Office Suite applications.
• Demonstrated accuracy and attention to detail.
• Exceptional written and verbal communication and interpersonal skills with an emphasis on customer service.
• Demonstrated time management skill.

 **Various tests and/or exams may be administered as part of the selection criteria.

Interview:  Our recruitment process may be completed with video conference technology.