JOB INFORMATION

Requisition ID: 12590

Number of Vacancies: 1

Department: Information Technology Services (20000014) - Infrastructure Cybersecurity (30000593)

Salary Information: $134,789.20 - $168,550.20

Pay Scale Group: 12SA (CAN/S/J/12SA)

Employment Type: Regular

New or Existing Vacancy: New

Weekly Hours: 35 Off Days: Saturday and Sunday Shift: Day

Posted On: March 2, 2026

Last Day to Apply: March 20, 2026

Reports to: Chief Information Security Officer

The Toronto Transit Commission (TTC), North America's third largest transit system and recognized as one of the top places to work in the GTA has introduced its new 2024-2028 TTC Corporate Plan - Moving Toronto, Connecting Communities which continues the TTC’s legacy of delivering service to hundreds of millions of customers a year. The TTC’s new vision and mission statements also help promote the many environmental, social equity and economic benefits that the TTC provides:

Vision: Moving Toronto towards a more equitable, sustainable, and prosperous future.

Mission: To serve the needs of transit riders by providing a safe, reliable, efficient, and accessible mass public transit service through a seamless integrated network to create access to opportunity for everyone.

The full Plan can be viewed on ttc.ca.

POSITION OVERVIEW

The Director of Infrastructure Cybersecurity will provide strategic leadership to protect and strengthen TTC’s enterprise and operational technology environments. Reporting to the Chief Information Security Officer (CISO), they will lead a team of security engineers and administrators responsible for architecting, deploying, and optimizing cybersecurity technologies across TTC’s network, cloud, and endpoint ecosystems.

Working closely with IT Infrastructure and the Network Operations Centre, the Director will set risk‑informed security standards and ensure the secure configuration and resilience of TTC’s hybrid on‑premises and cloud platforms. As the organization’s expert in infrastructure security, they will advance TTC’s cybersecurity posture by delivering modern security solutions, enabling effective security operations, and managing key vendor partnerships.

The ideal candidate is a forward‑thinking security leader with strong technical expertise across network, endpoint, identity, and cloud security. They excel at translating strategy into scalable solutions and building high‑performing teams, collaborating effectively across IT, operations, and vendor partners to drive security excellence.

SCOPE & RESPONSIBILITIES

The duties of this role will include but are not limited to:

• Partner with the CISO, IT Infrastructure, and Network Operations to maintain risk‑driven security configurations across TTC’s IT and cloud environments.
• Oversee infrastructure security architecture across hybrid on‑premises and Microsoft Azure environments.
• Lead the design, implementation and governance of network, cloud, and endpoint security controls (e.g., firewalls, VPN, PKI, SIEM, DLP, EDR, Active Directory, secure cloud connectivity).
• Develop and maintain infrastructure security standards, procedures, and hardening guidelines.
• Direct complex security engineering projects, ensuring delivery on scope, schedule, and budget.
• Oversee daily operational security activities, identifying misconfigurations, vulnerabilities, and areas for continuous improvement.
• Collaborate with infrastructure, cloud, application, and GRC teams to ensure consistent secure architecture patterns and effective remediation of risks.
• Review security findings, define mitigation strategies, and prioritize remediation based on risk.
• Serve as the final authority on infrastructure security configuration decisions in collaboration with TTC teams and third‑party partners.
• Lead incident response activities, including forensics, root‑cause analysis, and reporting to senior leadership.
• Build, mentor, and develop a high‑performing cybersecurity team, providing coaching and overseeing performance management.
• Drive the infrastructure security roadmap and ensure compliance with TTC policies, standards, and regulatory obligations.
• Establish and monitor cybersecurity performance metrics and report on infrastructure security health.
• Manage vendor relationships and outsourcing strategies related to infrastructure security operations.
• Participate in change management and ensure new technologies meet security requirements.
• Promote an inclusive, respectful, and harassment‑free work environment aligned with the OHRC, AODA, and TTC policies.
• Perform other related duties as assigned.

KEY SKILLS & EXPERTISE

• Senior‑level cybersecurity leadership experience in complex, regulated, and unionized environments supporting critical IT infrastructure.
• Deep expertise in infrastructure and cloud security, including network security (routers, LAN/WAN, VPN), firewalls, encryption, PKI, SIEM, DLP, EDR, and secure hybrid connectivity with Microsoft Azure.
• Strong technical foundation across servers, storage, networks, virtualization, monitoring, operational technology, and Active Directory security.
• Proven ability to design, implement, and maintain secure architecture, hardening standards, and operational security procedures.
• Extensive experience in security risk assessment, applying appropriate risk treatments, and communicating impacts effectively to technical and non‑technical stakeholders.
• Demonstrated success in cloud security, enterprise cryptography, security engineering, and incident response.
• Skilled in vendor, contract, and managed service provider oversight and governance.
• Strong leadership capabilities, with experience building, developing, and motivating multidisciplinary cybersecurity teams.
• Solid understanding of how business operations integrate with enterprise systems such as ERP platforms, SaaS applications, and custom solutions.
• Experience supporting audits and applying industry frameworks, standards, and best practices (e.g., NIST, ISO, CIS).
• Knowledge of access control, secure system implementation, and enterprise security operations.

EDUCATION & PROFESSIONAL CREDENTIALS

• Completion of a post‑secondary diploma or university degree in Computer Science, or a related field, combined with extensive, progressively responsible cybersecurity experience, or an equivalent combination of education, training, and experience.
• Security certifications such as Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), or GIAC Security Essentials (GSEC), are considered an asset.
• Technical certifications such as Cisco Certified Network Professional (CCNP) or Microsoft Azure Network/Security Engineer Associate are considered an asset.

Commitment to EDI

The TTC is committed to upholding the values of equity, diversity, anti-racism and inclusion in the delivery of its services and in its workplaces. The TTC is committed to fostering a diverse workforce that is representative of the communities it serves at all levels of the organization and supports an inclusive environment where diverse employee and community perspectives and experiences bring value to the organization. The TTC encourages applications from all applicants, including members of groups with historical and/or current barriers to equity, including but not limited to, Indigenous, Black and racialized groups, people with disabilities, women and people from the LGBTQIA+ community. The TTC values and supports an inclusive and barrier-free recruitment and selection process. Accommodations for applicants are available upon request throughout the recruitment and selection process, including for those who identify as having a disability. Please contact Talent Management at (416) 393-4570 or [email protected] . Any information received related to an accommodation will be addressed confidentially.

General Prohibition in Hiring Process

The TTC is also committed to a fair hiring process based on job related qualifications, merit, and abilities. You are expected to write your own materials and provide your own qualifications and experiences during the hiring process. The TTC will not tolerate the use of artificial intelligence or external resources in any of your submissions or responses, or the disclosure of interview questions to others. By submitting your application, you acknowledge and agree to the following:

• The use of any artificial intelligence (AI) tool including, but not limited to, ChatGPT and Microsoft Copilot, to generate or produce any information or materials to be submitted or any response to any assessment question or any interview question, is prohibited.
• All information and materials you submit, including resume, cover letter, and assessment responses, are your own original work without the use of any AI tool
• During any interview, your response to any interview question is your own without the use or assistance of any AI tool or any person.
• You will not disseminate or disclose to any person any interview question.

Should you breach the prohibition of AI tool use, or information dissemination or disclosure, you will be in violation of TTC’s hiring process and TTC may withdraw your application and may prohibit you from participation in the TTC hiring process.

Relatives of TTC Employees

The TTC’s policy prohibits relatives of current TTC employees from being hired, assigned, transferred or promoted into positions, where there is a conflict of interest due to a relationship. Should you be selected for an interview, you will be required to disclose the name, relationship and position of any relative who is a current TTC employee.

We thank all applicants for their interest but advise only those selected for an interview will be contacted.