TOTAL OF 100%
NOTE:
Cyber security, network security and architecture expertise – 50%
- 10+ years of experience in cyber security and next-generation network security, with a strong focus on architecture design, integration, strategic planning, and implementation.
- 5+ years of experience designing and implementing secure, enterprise-wide architectures across cloud, network, identity, and security operations domains, preferably within Ontario K–12 school boards.
- 5+ years of experience in advanced network security, including software-defined environments (SDN/SD-WAN), preferably within Ontario K–12 school boards.
- Proven hands-on experience designing, implementing, and integrating the following solutions and technologies:
o Cloud-delivered security architectures (SSE/SASE, including SWG, CASB, FWaaS, ZTNA)
o Zero Trust Architecture (ZTA)
o Cloud security architectures (Microsoft, AWS, Google)
o MITRE ATT&CK, D3FEND, and ATLAS frameworks
o NIST Cybersecurity Framework (CSF) v2 and CIS Controls v8
o AI/ML-driven cyber security capabilities and automation
o Security orchestration, automation, and playbook development
o Endpoint security solutions (EPP, EDR, XDR)
o Advanced threat protection (IDS/IPS, DDoS protection, Network Access Control)
o Identity and access management (passwordless, certificate-based, MFA/2FA)
o Incident response and incident management (IR/IM)
o Vulnerability management and patching automation
o User and Entity Behaviour Analytics (UEBA)
o Penetration testing and automated red teaming
o Operational Technology (OT) security
- Proven experience designing and implementing hybrid (internal and outsourced) security operations models, including:
o Integration and optimization of internal security teams and managed security service providers (MSSPs)
o Security operations architecture in hybrid environments
o Threat detection and incident response in co-managed models
o Integration of SIEM, SOAR, EDR/XDR, and threat intelligence platforms
o Automation and orchestration workflows
o Governance, risk, and compliance in hybrid security operations environments
- Strong knowledge of managed security service delivery models, including MSSP, MDR, and SOC-as-a-Service (SOCaaS).
- Strong knowledge of federated and multi-tenant security architectures.
- Demonstrated ability to evaluate and assess emerging cyber security technologies through pilots and proof-of-concepts.
- Strong knowledge of IoT security and data capture/telemetry mechanisms.
Network Technology – 20%
- 5+ years of experience with network infrastructure (LAN/WAN, VPN, VLAN) and core components (switches, routers, firewalls) preferably within Ontario’s K–12 education sector.
- 5+ years of experience with SDN and SD-WAN technologies (e.g., Fortinet, Cisco Meraki, Palo Alto) preferably within Ontario’s K–12 education sector.
- 3+ years of experience with SSE/SASE technologies (e.g., Netskope, Zscaler, Prisma SASE, Cato).
- 5+ years of experience with network monitoring, traffic analysis, and management tools (e.g., SolarWinds, FortiManager, PRTG, Panorama, Wireshark).
- 3+ years of experience with network telemetry and logging formats (e.g., Syslog, NetFlow, IPFIX).
- 5+ years of experience configuring and troubleshooting network protocols (e.g., MPLS, VPLS, VLAN trunking).
- Experience evaluating emerging network technologies through pilots and proof-of-concepts.
Strategic Advisory and Architecture Leadership – 15%
- 10+ years of experience providing advisory services to senior leadership and executive stakeholders.
- 5+ years of experience leading complex, cross-functional technical initiatives involving multiple internal and external stakeholders.
- 5+ years of experience preparing and delivering technical and executive-level documentation (e.g., architecture designs, reports, recommendations, briefings).
- Experience developing strategic cyber security and network technology roadmaps and modernization strategies.
- Experience aligning security and network architectures with federal, provincial, and K–12 regulatory and compliance requirements.
- Strong expertise in secure solution design, including telemetry, monitoring, and metrics frameworks.
- 5+ years of experience advising organizations on adoption of managed security service models (fully outsourced, co-managed, hybrid).
- Experience establishing governance models and evaluating MSSP performance and service delivery.
- Experience delivering training and knowledge transfer to technical teams.
Industry Certifications / Relevant Degrees – 10%
- Relevant vendor certifications or equivalent work experience.
- Postgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred.
- Preferred certifications include:
o CISSP (Certified Information Systems Security Professional)
o CISM (Certified Information Security Manager)
o CCSP (Certified Cloud Security Professional)
o Other relevant certifications such as CEH, CISA, CRISC
Public Sector Experience – 5%
- Knowledge of Government of Ontario standards (e.g., GO-ITS) and relevant policies and legislation (e.g., EDSTA).
- 5+ years’ hands-on experience working in the K-12 education sector, with Ontario K-12 school boards, in particular with school board network, network security and cyber security.