Professional Documents
Culture Documents
1693607
JDR Profile
Description
Profile Status
Active
Status Date
2013-10-20
Position Title
Position Codes
00145738
Ministry
Department
636281
Job Location
9131604
Bargaining Unit
Manager's
Position Title
Class Code
6A003
Manager's
Position Code
00247929
Class Title
InformationTechnology06
Security
Clearance
ESRA#
PURPOSE
Purpose
- To provide leadership and expertise to ministries in the implementation and coordination of corporate I&IT security strategy in support of mission
critical systems.
- To develop and implement corporate IT security strategies and facilitate OPS-wide security requirements through corporate/cluster ministry initiatives.
Key Responsibilities
Page 2
- Develops communication materials and protocols to ensure prompt collection and dissemination of security information, advice and conduct of security
awareness and education; develop and implement incident reporting procedures within I&IT Cluster to record and report information for OPS corporate
security; provide input into development of corporate security policies.
2. Security Liaison and Advice
- Maintain on-going liaison with IT corporate security staff and senior client ministry program management to facilitate working relationships on all
security planning, implementation and management matters by assessing security needs and assisting asset custodians in the identification, design,
and implementation of security measures.
- Provides I&IT Cluster leadership to project teams in mission critical risk assessments and business continuity planning.
- Prepares research, evaluation and statistical reports for client management and corporate security, such as cluster statistical security incident reports
and technology reviews.
-
FACTORS
Knowledge / Skill
- Advisory skills to consult Cluster and Ministry client managers on security practices and program options.
- Presentation and facilitation skills to present information, options and recommendations to diverse audiences.
- Persuasion and negotiating skills to elicit support from multiple levels of the organization for new initiatives.
- Mediation skills to reconcile significant and historically diverse viewpoints and agreements between stakeholders with divergent objectives.
This document is a copy of the current, approved job description from the OPS Job Description Repository (JDR) maintained by the Ministry of Government
Services effective as of the approval dates
Page 3
Responsible for:
- Developing and implementing I&IT Cluster operational policies for security programs, ensuring security and business requirements of client
organizations are met; coordinating and conducting forensic reviews of IT assets.
- Providing expertise and guidance within the Cluster and to client management on security planning, assessing security needs and assisting asset
custodians in the identification, design, and implementation of security measures and programs.
Has latitude to establish and implement a comprehensive security program to prevent unauthorized access to information, information technology
and/or other sensitive assets of the Ministry to meet corporate I & IT security requirements.
Decisions are guided by corporate I&IT security strategy framework, corporate security policies, OPS administrative policies and procedures and
industry I&IT trends and standards. Risk management recommendations and security advice could impact on data integrity and system costs.
Contacts / Stakeholders
- Ministry senior management/client managers to educate, advise, consult, obtain direction, and provide recommendations on general and specific
security matters.
- Senior Cluster managers to provide briefing and obtain direction.
- I&IT Cluster managers and staff to provide technical guidance and direction on security policies, procedures and processes.
Guidance / Supervision
- Provides guidance, leadership and technical advice to I&IT Security staff to direct and coordinate work, establish priorities, and monitor activities in
support of the attainment of operational results
-
This document is a copy of the current, approved job description from the OPS Job Description Repository (JDR) maintained by the Ministry of Government
Services effective as of the approval dates
Page 4
Unexpected changes to deadlines; tight time pressures; conflicting work demands; immediate response to security alerts that often lead to unexpected
work demands on short notice.
Mental / Sensory
- Continuous need to concentrate when reviewing and reading materials, attending meetings and dealing with security alerts.
Conditions / Environment
Rating
Rating
Evaluation
Evaluation
Key factors affecting the overall rating include analyzing/problem solving, decision making/responsibility, contacts/stakeholders and
demands/pressures.
In analyzing/problem solving, the position requires evaluative thinking to evaluate security needs and business requirements; to conduct forensic
reviews; and to evaluate incident management scenarios and operational policy requirements, identify options and develop recommendations.
Significant analysis and interpretation are required to provide risk assessments and options to manage risks within program budgets and to conduct
security reviews, to identify the best course of action among sometimes potentially conflicting alternatives. In decision making/responsibility, the
position has latitude to establish new courses of action, i.e., a comprehensive security program, and to manage associated risks, taking into
consideration the immediate and long-term picture. The position develops and implements related operational strategies, policies and procedures. The
position has contact with senior management to obtain direction and provide briefings, and with cluster/ministry client managers to build and maintain
relationships and to provide advice, technical guidance, direction and information. The work involves unexpected changes to deadlines, tight time
This document is a copy of the current, approved job description from the OPS Job Description Repository (JDR) maintained by the Ministry of Government
Services effective as of the approval dates
Page 5
pressures, conflicting and unexpected work demands, e.g., immediate response to security alerts. Heightened concentration is required when dealing
with security alerts.
The job requires knowledge and understanding of diverse processes, including I&IT security strategy, architecture and tools; privacy legislation; client
business activities and systems; and threat and risk analysis; in order to develop and implement and integrated corporate I&IT security strategy. The
position requires skill to understand the impact of the security strategy and program on policies and on client program delivery; and to develop
enterprise-wide security solutions.
The position provides leadership, guidance and technical advice to I&IT security staff and project teams to direct and coordinate work and monitor
program implementation.
The position requires advisory skills to consult with and advise cluster/ministry client managers. Mediation skills are required to reconcile
different/opposing viewpoints and/or positions of stakeholders. The work is performed in an office environment.
Union Codes
Union Codes A: AMAPCEO
Class Allocation
Job Code and Title
Jobcode Title: InformationTechnology06
Jobcode: 6A003
This document is a copy of the current, approved job description from the OPS Job Description Repository (JDR) maintained by the Ministry of Government
Services effective as of the approval dates
Page 6
This document is a copy of the current, approved job description from the OPS Job Description Repository (JDR) maintained by the Ministry of Government
Services effective as of the approval dates