Strategist, Cybersecurity Operations
About the role
Job Description:
Job posting closes: December 15, 2025, at 5:00pm Yukon Standard Time
At our core, the City of Whitehorse is committed to cultivating an inclusive employee community and workspace, confronting racism and biases for fairness and equity, while advancing reconciliation and accessibility.
The City promotes work-life balance for its employees and offers flexible work arrangements, such as work from home and compressed work weeks, subject to applicable administrative directives.
An Eligibility List may be established from this competition – the duration of the eligibility list may be up to 12 months. The eligibility list may be used to fill future permanent full-time, permanent part-time, temporary full-time, temporary part-time, term or casual vacancies within the same department and classification based on the organizational needs by going to the next highest ranked candidate until the eligibility list expires.
This position is covered by a collective agreement between the City of Whitehorse and the Public Service Alliance of Canada/Yukon Employees Union.
The City wishes to thank all applicants for their interest but only those candidates selected to advance in the recruitment will be contacted. Note that only those candidates eligible to legally work in Canada will be considered.
Strategist, Cybersecurity Operations
Job Code:109 Department: Business and Technology Systems
Job Summary:
The Cybersecurity Operations Strategist is responsible for ensuring the secure operation of all information technology (IT) systems and leading the implementation of enterprise-wide cybersecurity incident response and security operations strategies. This position drives real-time threat detection and response, conducts forensic investigations and enforces security policies across both IT and OT environments.
Working closely with internal teams and external partners, the incumbent proactively mitigates cyber risks by integrating threat intelligence, managing incident response workflows, and continuously improving security operations. The role bridges deep technical expertise with strategic oversight to ensure that operational defenses align with the City's broader cybersecurity objectives and regulatory obligations. This position plays a critical role in maintaining the City's proactive security posture, protecting infrastructure, data, and public trust.
Duties and Responsibilities:
-
Develop and enforce security policies, procedures, and standards aligned with NIST (National Institute of Standards and Technology), CIS (Center for Internet Security), ISO 27001, ITSG-33, and BCSC (Baseline cyber Security Controls).
-
Contribute to the City's Security Operations Strategy and risk management governance to align cybersecurity practices with organizational goals and compliance requirements.
-
Conduct risk assessments, log analysis, security audits, and penetration testing while managing a comprehensive vulnerability management lifecycle.
-
Lead and support incident detection, response, containment, eradication, and recovery, including forensic investigations, threat hunting, and tabletop exercises.
-
Evaluate, deploy, and administer security technologies such as SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), IAM (Identity and Access Management), IDS/IPS (Intrusion Detection and Prevention Systems), VPN (Virtual Private Network), MFA (Multi-Factor Authentication), and firewalls.
-
Integrate security controls into system development lifecycles (SDLC) and cloud security frameworks to ensure secure enterprise systems and applications.
-
Monitor and maintain situational awareness of emerging cyber threats, industry trends, and optimize SIEM operations for proactive defense
-
Collaborate with vendors and procurement teams to ensure security investments align with organizational strategies and long-term value.
-
Deliver cybersecurity awareness and training programs to strengthen the human layer of defense across the organization.
-
Engage with law enforcement, intelligence-sharing groups, the Canadian Centre for Cyber Security (CCCS), and industry forums to enhance the City's overall security posture.
-
Acts as Manager Business Technology Systems, as assigned
-
Follows, so far as is reasonably practicable, established safety procedures and standards.
-
Other related duties.
This description contains elements necessary for identification and evaluation of the job. The incumbent may be required to perform other related duties.
Job Requirements:
Working Conditions:
- On-call availability for cybersecurity incidents as part of a rotating schedule.
- Potential for extended hours during cybersecurity incident investigations or response efforts.
Required Knowledge and Skills:
- Bachelor's degree in computer science, information security, cybersecurity, or a related field.
- Industry certifications are considered as assets: • CISSP (Certified Information Systems Security Professional) • CISM (Certified Information Security Manager) • GIAC (Global Information Assurance Certification) • CompTIA Security+• CEH (Certified Ethical Hacker)
- ITIL / ITIL-Security (must be obtained within the first year of employment).
- 5 years of IT experience, with at least 3 years in a dedicated cybersecurity role.
- On-the -job experience – 6 months
- Expertise in enterprise security architecture, including zero trust models, risk-based security frameworks, and cloud security.
- Hands-on experience in security information and event management (SIEM), endpoint protection, forensic analysis, and malware mitigation.
- Strong knowledge of incident response methodologies, including threat intelligence and cyber kill chain analysis.
- Knowledge of legal and regulatory requirements related to data privacy and cybersecurity compliance (e.g., PIPEDA, PHIPA, FIPPA, PCI DSS, ITSG-33, BCSC, ISO 27001, and applicable Canadian municipal regulations).
- Understanding of network security principles, cryptography, private key infrastructure (PKI), and secure coding best practices.
- Experience with automation and scripting (Python, PowerSheIl, Bash) for security event correlation and remediation.
- Strong ability to conduct research into cybersecurity threats, vulnerabilities, and attack methodologies.
- Proactive mindset with a threat-driven approach to cybersecurity.
- Strong analytical and problem-solving skills.
- Ability to prioritize tasks effectively in a fast-paced security operations environment
- Excellent communication and collaboration skills, with the ability to work across departments and with external stakeholders.
- Detail-oriented with a continuous improvement mentality.
- Ability to remain calm and decisive in high-pressure situations.
An equivalent combination of education, training and experience may be considered.
Examples of Equipment to Operate:
- Office, computer, and communications equipment
- Cyber Security related hardware and software
Accommodation Requests:
Shortlisted candidates who require accommodation or have accessibility needs during the selection process are encouraged to contact the Recruiter and make requests to ensure their full participation. The City of Whitehorse is committed to reviewing requests and making arrangements for reasonable accommodation and accessibility requests. You may email to ewa.benson @whitehorse.ca and careers@whitehorse.ca.
Other Details:
Job seekers are required to create an online profile and submit their application electronically through the City's online Applicant system via www.whitehorse.ca/careers. Instructions on applications are provided at https://www.whitehorse.ca/our-government/employment/how-to-apply/. If you have any further questions regarding this posting, please contact the recruiter at HR@whitehorse.ca.
To apply for this position, you are required to submit your resume.
Various tests and/or exams may be administered as part of the recruiting process.
At the time this posting closes, candidates must have valid and current licenses/certifications/education that match the position requirements. Candidates who are selected to continue with the recruiting process will be required to provide proof of qualifications during their interview.
About City of Whitehorse
Established as the Yukon's capital city in 1953, Whitehorse is home to some of the most spectacular scenery, talented artists and innovative businesses in Canada. Situated along the Yukon River on the traditional territory of the Kwanlin Dün First Nation and the Ta’an Kwäch’än Council, over 28,000 call Whitehorse home.
Access to nature remains a top value for citizens and residents are able to enjoy recreation activities year-round, a vibrant art scene and a multitude of cultures as people from all over the world have decided to settle north of 60. There is a reason why Whitehorse has seen a steady growth in population; it’s because it truly is a wonderful place to live, work and play.
Working for the City of Whitehorse means belonging to a friendly, active and diverse community. When you join our team you will play an integral role in the everyday lives of Whitehorse residents. From parks and recreation to waste collection to transit, our employees contribute to the health and fulfillment of our community. We are proud to provide leadership as one of Canada’s best local governments that enables Whitehorse to be an exceptional place to live, work and play.
The City of Whitehorse is an organization that understands the value of its employees and the importance of maintaining a passionate workforce. Employees will enjoy comprehensive benefits including health insurance, sick leave and vacation time.
Find your opportunity here and make a difference in the community today!
Strategist, Cybersecurity Operations
About the role
Job Description:
Job posting closes: December 15, 2025, at 5:00pm Yukon Standard Time
At our core, the City of Whitehorse is committed to cultivating an inclusive employee community and workspace, confronting racism and biases for fairness and equity, while advancing reconciliation and accessibility.
The City promotes work-life balance for its employees and offers flexible work arrangements, such as work from home and compressed work weeks, subject to applicable administrative directives.
An Eligibility List may be established from this competition – the duration of the eligibility list may be up to 12 months. The eligibility list may be used to fill future permanent full-time, permanent part-time, temporary full-time, temporary part-time, term or casual vacancies within the same department and classification based on the organizational needs by going to the next highest ranked candidate until the eligibility list expires.
This position is covered by a collective agreement between the City of Whitehorse and the Public Service Alliance of Canada/Yukon Employees Union.
The City wishes to thank all applicants for their interest but only those candidates selected to advance in the recruitment will be contacted. Note that only those candidates eligible to legally work in Canada will be considered.
Strategist, Cybersecurity Operations
Job Code:109 Department: Business and Technology Systems
Job Summary:
The Cybersecurity Operations Strategist is responsible for ensuring the secure operation of all information technology (IT) systems and leading the implementation of enterprise-wide cybersecurity incident response and security operations strategies. This position drives real-time threat detection and response, conducts forensic investigations and enforces security policies across both IT and OT environments.
Working closely with internal teams and external partners, the incumbent proactively mitigates cyber risks by integrating threat intelligence, managing incident response workflows, and continuously improving security operations. The role bridges deep technical expertise with strategic oversight to ensure that operational defenses align with the City's broader cybersecurity objectives and regulatory obligations. This position plays a critical role in maintaining the City's proactive security posture, protecting infrastructure, data, and public trust.
Duties and Responsibilities:
-
Develop and enforce security policies, procedures, and standards aligned with NIST (National Institute of Standards and Technology), CIS (Center for Internet Security), ISO 27001, ITSG-33, and BCSC (Baseline cyber Security Controls).
-
Contribute to the City's Security Operations Strategy and risk management governance to align cybersecurity practices with organizational goals and compliance requirements.
-
Conduct risk assessments, log analysis, security audits, and penetration testing while managing a comprehensive vulnerability management lifecycle.
-
Lead and support incident detection, response, containment, eradication, and recovery, including forensic investigations, threat hunting, and tabletop exercises.
-
Evaluate, deploy, and administer security technologies such as SIEM (Security Information and Event Management), EDR (Endpoint Detection and Response), IAM (Identity and Access Management), IDS/IPS (Intrusion Detection and Prevention Systems), VPN (Virtual Private Network), MFA (Multi-Factor Authentication), and firewalls.
-
Integrate security controls into system development lifecycles (SDLC) and cloud security frameworks to ensure secure enterprise systems and applications.
-
Monitor and maintain situational awareness of emerging cyber threats, industry trends, and optimize SIEM operations for proactive defense
-
Collaborate with vendors and procurement teams to ensure security investments align with organizational strategies and long-term value.
-
Deliver cybersecurity awareness and training programs to strengthen the human layer of defense across the organization.
-
Engage with law enforcement, intelligence-sharing groups, the Canadian Centre for Cyber Security (CCCS), and industry forums to enhance the City's overall security posture.
-
Acts as Manager Business Technology Systems, as assigned
-
Follows, so far as is reasonably practicable, established safety procedures and standards.
-
Other related duties.
This description contains elements necessary for identification and evaluation of the job. The incumbent may be required to perform other related duties.
Job Requirements:
Working Conditions:
- On-call availability for cybersecurity incidents as part of a rotating schedule.
- Potential for extended hours during cybersecurity incident investigations or response efforts.
Required Knowledge and Skills:
- Bachelor's degree in computer science, information security, cybersecurity, or a related field.
- Industry certifications are considered as assets: • CISSP (Certified Information Systems Security Professional) • CISM (Certified Information Security Manager) • GIAC (Global Information Assurance Certification) • CompTIA Security+• CEH (Certified Ethical Hacker)
- ITIL / ITIL-Security (must be obtained within the first year of employment).
- 5 years of IT experience, with at least 3 years in a dedicated cybersecurity role.
- On-the -job experience – 6 months
- Expertise in enterprise security architecture, including zero trust models, risk-based security frameworks, and cloud security.
- Hands-on experience in security information and event management (SIEM), endpoint protection, forensic analysis, and malware mitigation.
- Strong knowledge of incident response methodologies, including threat intelligence and cyber kill chain analysis.
- Knowledge of legal and regulatory requirements related to data privacy and cybersecurity compliance (e.g., PIPEDA, PHIPA, FIPPA, PCI DSS, ITSG-33, BCSC, ISO 27001, and applicable Canadian municipal regulations).
- Understanding of network security principles, cryptography, private key infrastructure (PKI), and secure coding best practices.
- Experience with automation and scripting (Python, PowerSheIl, Bash) for security event correlation and remediation.
- Strong ability to conduct research into cybersecurity threats, vulnerabilities, and attack methodologies.
- Proactive mindset with a threat-driven approach to cybersecurity.
- Strong analytical and problem-solving skills.
- Ability to prioritize tasks effectively in a fast-paced security operations environment
- Excellent communication and collaboration skills, with the ability to work across departments and with external stakeholders.
- Detail-oriented with a continuous improvement mentality.
- Ability to remain calm and decisive in high-pressure situations.
An equivalent combination of education, training and experience may be considered.
Examples of Equipment to Operate:
- Office, computer, and communications equipment
- Cyber Security related hardware and software
Accommodation Requests:
Shortlisted candidates who require accommodation or have accessibility needs during the selection process are encouraged to contact the Recruiter and make requests to ensure their full participation. The City of Whitehorse is committed to reviewing requests and making arrangements for reasonable accommodation and accessibility requests. You may email to ewa.benson @whitehorse.ca and careers@whitehorse.ca.
Other Details:
Job seekers are required to create an online profile and submit their application electronically through the City's online Applicant system via www.whitehorse.ca/careers. Instructions on applications are provided at https://www.whitehorse.ca/our-government/employment/how-to-apply/. If you have any further questions regarding this posting, please contact the recruiter at HR@whitehorse.ca.
To apply for this position, you are required to submit your resume.
Various tests and/or exams may be administered as part of the recruiting process.
At the time this posting closes, candidates must have valid and current licenses/certifications/education that match the position requirements. Candidates who are selected to continue with the recruiting process will be required to provide proof of qualifications during their interview.
About City of Whitehorse
Established as the Yukon's capital city in 1953, Whitehorse is home to some of the most spectacular scenery, talented artists and innovative businesses in Canada. Situated along the Yukon River on the traditional territory of the Kwanlin Dün First Nation and the Ta’an Kwäch’än Council, over 28,000 call Whitehorse home.
Access to nature remains a top value for citizens and residents are able to enjoy recreation activities year-round, a vibrant art scene and a multitude of cultures as people from all over the world have decided to settle north of 60. There is a reason why Whitehorse has seen a steady growth in population; it’s because it truly is a wonderful place to live, work and play.
Working for the City of Whitehorse means belonging to a friendly, active and diverse community. When you join our team you will play an integral role in the everyday lives of Whitehorse residents. From parks and recreation to waste collection to transit, our employees contribute to the health and fulfillment of our community. We are proud to provide leadership as one of Canada’s best local governments that enables Whitehorse to be an exceptional place to live, work and play.
The City of Whitehorse is an organization that understands the value of its employees and the importance of maintaining a passionate workforce. Employees will enjoy comprehensive benefits including health insurance, sick leave and vacation time.
Find your opportunity here and make a difference in the community today!