IMPORTANT NOTES:
- The client may exercise its option(s) to extend the Statement of Work (SOW) beyond October 5, 2027, provided that the Master Service Agreement is extended. Any such extension shall be on the same terms, conditions, and covenants contained as those contained in the SOW.
**This procurement will include the option to extend the end date of the contract if there are unused effort days and no change to the ceiling amount, if the need arises.
***This contract will require the consultant to work up to 2 days per week in the office and the remaining days working remotely.
The Senior Technology Architect role requires deep knowledge, expertise, and experience in cyber security frameworks and controls designed to mitigate the impact of evolving cyber threats. The role also requires a strong understanding of online privacy and cyber safety, particularly as it pertains to minors and the K–12 education sector. In addition, the resource must possess hands-on experience in mapping, drafting, developing, and aligning cyber security models, standards, and technical and non-technical playbooks, particularly within the K-12 education sector, preferably in Ontario. Establishing a common and tailored framework, set of standards, and policies to K-12 will provide a consistent, unified approach to cyber security and cyber resilience in the sector and across all school boards, enabling opportunities for collaboration and shared approaches to demonstrating assurance, compliance, and defending against cyber threats to the K–12 sector.
This resource is responsible for, but not limited to:
- Contributing to the development of a tailored cyber security framework for the K-12 education sector grounded in the NIST Cybersecurity Framework (CSF) v2 and CIS Controls v8, while incorporating relevant elements from other industry standards such as COBIT and ISO.
- Developing and documenting standards and guidance resources for priority cyber security, privacy protection, and online safety controls specific to the K–12 education sector.
- Providing hands-on subject matter expertise and implementation guidance and support to facilitate the adoption of cyber security frameworks, standards, and policies across school boards.
- Ensuring alignment with modern governance, risk and compliance (GRC) programs, Security Operations (SecOps) practices, leveraging next-generation solutions and practices such as automation, artificial intelligence (AI), and machine learning (ML) to enhance threat detection and response capabilities.
- Collaborating with government partners, including departments in the Ministry of Education, Ministry of Public and Business Service Delivery and Procurement, including the Ontario Cyber Security Division, to align with broader OPS and BPS cyber security priorities and ensure integration with related initiatives as may be underway at a corporate level.
- Engaging with a diverse stakeholder audience through presentations and consultations to gather feedback and foster alignment.
- Providing regular status updates and project reports on assigned deliverables
- Aligning with industry and legislative advancements at the federal, provincial/local level (e.g., Enhancing Digital Security and Trust Act, 2024 (EDSTA)).
- Delivering on other duties as assigned.
This work involves working in close partnership with various government departments and the K-12 education sector. The resource may need to travel the same day or overnight in Ontario.
The unit manager may assign other related board work for other unit or branch initiatives, as required.