Job Description

Please Note: If you are a current Oak Valley Health employee, apply to this job via the internal Workday application.

Land acknowledgement:

Oak Valley Health is honoured to provide care on the traditional and treaty territory of the Anishinaabeg, and acknowledge our closest Indigenous communities, the Chippewas of Georgina Island and the Mississaugas of Scugog Island. The land is encompassed within Treaty 13, Treaty 20, and the Williams Treaty.

Today, this area is home to many diverse Indigenous Peoples, and we acknowledge the health disparities and barriers Indigenous Peoples face in accessing care. To support true healing, we are committed to understanding these challenges, learning from Indigenous knowledge, and taking action together to improve safe and equitable health care for current and future generations.

Who you are:

• You encompass Oak Valley Health’s core values and live the words of respect, trust, commitment, compassion and courage

• You are a patient and/or client centered individual who performs at an exemplary standard

• You are a team player with excellent communication, critical thinking and prioritization skills

We are seeking a knowledgeable and proactive Cybersecurity Specialist to support and advance our cybersecurity program. Reporting to the Director, Privacy and Cybersecurity, you will play a key role in protecting the organization's digital assets by strengthening security practices, supporting risk management initiatives, ensuring regulatory compliance, and promoting cybersecurity awareness across the organization.

In this role, you will support the implementation of cybersecurity and information security solutions across the organization, managing initiatives from planning and requirements gathering through deployment, adoption, and operational transition. As a subject matter expert, you will collaborate with technical teams, leaders, vendors, and stakeholders to identify risks, implement security solutions, support incident response activities, and help foster a strong culture of cybersecurity.

Key Responsibilities:

• Lead and support the end-to-end implementation of cybersecurity and information security solutions, including planning, requirements gathering, stakeholder engagement, configuration, testing, deployment, and transition to operational support.

• Manage the full lifecycle of cybersecurity initiatives, including policy and procedure development, change management, user adoption, training, and post-implementation optimization.

• Support the development, implementation, and ongoing maintenance of cybersecurity policies, standards, and procedures aligned with industry best practices and regulatory requirements.

• Conduct cybersecurity risk assessments, vulnerability reviews, and compliance audits, identifying opportunities to strengthen the organization's security posture.

• Monitor emerging threats, vulnerabilities, and industry trends, recommending security enhancements and mitigation strategies.

• Provide cybersecurity guidance and requirements throughout the lifecycle of digital health and technology projects.

• Coordinate vulnerability assessments, penetration testing activities, and remediation efforts.

• Support incident response activities, investigations, threat analysis, and documentation requirements.

• Develop and deliver cybersecurity education, awareness programs, and phishing simulations to promote a security-conscious culture.

• Prepare security and compliance reporting, including key risk and performance indicators, for leadership and stakeholders.

• Collaborate with internal teams, external partners, and vendors to ensure security controls, compliance requirements, and security best practices are effectively implemented and maintained.

What you bring to the role:

Education & Certifications

• Bachelor's degree in Computer Science, Information Technology, Business Administration, or a related field.

• Professional cybersecurity certification preferred, such as:

  o CISSP (Certified Information Systems Security Professional)

  o CISM (Certified Information Security Manager)

  o CISA (Certified Information Systems Auditor)

  o Equivalent cybersecurity certification

Experience

• Minimum 7 years of experience in network and information technology environments.

• Minimum 3 years of experience supporting cybersecurity programs, security risk assessments, and compliance initiatives within a large, complex organization.

• Experience working with cybersecurity governance frameworks such as NIST.

• Experience with Identity and Access Management (IAM), Privileged Access Management (PAM), Microsoft security technologies, SIEM platforms, vulnerability management, and incident response processes.

• Experience leading cybersecurity projects and initiatives.

Knowledge, Skills & Abilities

• Strong understanding of cybersecurity principles, risk management practices, and security controls.

• Knowledge of network protocols, Windows operating systems, and Active Directory environments.

• Familiarity with healthcare privacy and security legislation, including PHIPA and FIPPA.

• Excellent analytical, problem-solving, communication, and stakeholder engagement skills.

• Demonstrated ability to build relationships, influence decision-making, and provide consultative support across diverse teams.

• Strong customer service orientation and commitment to continuous learning.

Work Schedule:

Monday to Friday

Please note schedules may change due to operational needs.

Compensation:

BAND F

Range:

$49.77 - $62.12

Who we are:

Oak Valley Health is one of Ontario’s leading community healthcare organizations. Across our two hospital sites (Markham and Uxbridge) a Reactivation Care Centre (RCC), a Community Health Centre (CHC), and Hospital-to-Home programs, we provide high quality, patient-centred care to more than 468,000 patients each year. We offer diagnostic and emergency services, and deliver clinical programs in acute care medicine and surgery, addictions and mental health, and childbirth and children’s services. We are also proud to be part of the Eastern York Region North Durham Ontario Health Team (OHT).

Our 542 physicians, 35 midwives, over 3,000 staff and 1,000 volunteers serve patients and families with an Honoured to Care mindset, and are focused on delivering an extraordinary patient experience to the residents of Markham, Whitchurch-Stouffville, Uxbridge and beyond. We are dedicated to providing access to the right care, at the right time, in the right place by the right people and at the right cost.

Oak Valley Health Equity, Diversity, Inclusion and Belonging statement

Oak Valley Health takes pride in serving some of Canada’s most diverse communities. We are committed to fostering an environment of equity and inclusivity where every person can work and receive care safely, openly and honestly. All qualified applicants will receive consideration and we encourage applications from Indigenous peoples, members of LGBTQ2+ communities, members of racialized groups, persons with disabilities, and all others who may contribute to the further diversification of Oak Valley Health. Furthermore, Oak Valley Health is committed to meeting the needs of all individuals in accordance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code. Should you require accommodations during the recruitment and selection process, please contact Human Resources.

We are honoured to be recognized as one of Forbes Canada's Best Employers for Diversity. We ranked within the top 150 organizations across the country. Learn more about our commitment to EDIB