Division: Strategy and Transformation

Department: Business Transformation

Term: 1 Permanent Full Time position available.

Closing Date: 10/09/2025

Labour Group: ESA

Posting: 4637

Join Our Team!

The Business Transformation department is looking for a Cybersecurity Lead.

The Work You Will Be Involved In:

The Cybersecurity Lead is responsible for establishing and maintaining a corporate-wide Cybersecurity management program to ensure that information assets are adequately protected and serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with information security policies. A key element of the position is working with management to determine acceptable levels of risk for the organization.

• Leads development and execution of an effective and sustainable Cybersecurity program and related controls.
• Develops, implements and monitors a strategic, comprehensive enterprise information security and IT risk management program and information security management framework
• Facilitates risk assessment and risk management processes
• Creates and maintains effective Cybersecurity policies and plans and ensures consistent application of policies and standards across all technology projects, systems and services. Facilitates Cybersecurity Program compliance
• Leads planning and implementation and management of Information Technology Security architecture and related requirements guided by industry best practices and standards.
• Leads and facilitates the overarching Cybersecurity governance structure, including reporting of KPIs, events, risks, and mitigations to governance tables as required.
• Develops, deploys, and maintains Cybersecurity incident response plan and lead cyber incident response.
• Establishes and implements a monitoring framework for internal digital operations to ensure compliance to Cybersecurity standards and policy, including leading internal audits of performance/compliance.
• Establishes effective reporting processes that support management discussion and leadership decision making about Cybersecurity plans and objectives.
• Builds alignment between the security and enterprise architectures and ensure that information security requirements are found in all enterprise architecture pillars.
• Develops, deploys, and maintains cyber awareness training program.
• Establishes and implements a regular external IT Security audit including penetration testing and physical access review.
• Monitors the external ecosystem for emerging risks and mitigating solutions.
• Liaise with other relevant internal stakeholders, organizations and external agencies, such as law enforcement and other advisory bodies, to ensure that the organization maintains a strong security posture and is kept abreast of identified threats identified.
• Ensure that effective disaster recovery policies and standards are in place, tested and maintained.
• Manages assigned staff, hires, assigns work schedules, plans for future workforce needs and directs the preparation of business planning and annual budgets. Plans, organizes, directs, monitors and evaluates the work of staff and disciplinary action when required.
• Assists with preparation and management of and operating and capital budgets and leads procurement for Cybersecurity-related purchases.
• Performs other related duties as assigned.

What We Are Looking For:

Core Competencies:

• Strategic Thinking: Anticipates future security challenges, trends, and risk scenarios. Translates cybersecurity principles into long-term strategic goals, aligning them with the City’s priorities and digital transformation efforts. Develops and leads a proactive cybersecurity roadmap that supports sustainable and resilient IT infrastructure.
• Risk Management: Demonstrates expertise in identifying, assessing, mitigating, and communicating information and technology risks. Leads the development of risk assessment protocols, implements controls, and ensures continuous compliance with internal policies and external regulations. Makes informed decisions that balance risk with operational needs.
• Leadership and Influence: Provides vision and direction for the City's cybersecurity function. Builds, leads, and motivates high-performing teams; influences decision-making at all levels; and fosters a culture of accountability, security awareness, and continuous improvement. Acts as a trusted advisor to senior leadership.
• Innovation and Continuous Improvement: Proactively seeks new tools, technologies, and methods to enhance cybersecurity posture. Adopts and integrates industry best practices, such as Zero Trust Architecture or AI-based monitoring, while ensuring scalable and forward-thinking solutions. Encourages a culture of innovation within the team and organization.
• Stakeholder Engagement: Develops strong relationships with internal departments, vendors, regulatory bodies, and external partners such as law enforcement or industry groups. Leads collaborative initiatives to align security goals with organizational needs. Ensures all parties are informed, engaged, and aligned on cybersecurity objectives.

What We Are Looking For:

• Degree in Computer Science, Computer Engineering or recognized equivalent

• Seven to nine years of progressive responsible related experience in IT solutions, compliance, regulatory experience, developing information security policies and procedures, as well as successfully executing programs, contract and vendor negotiations and management, Agile (scaled) software development or other best in class development practices, Cloud computing/Elastic computing across virtualized environments with a minimum of 5 years in Leadership roles

• Possession of Certified Information Systems Security Professional (CISSP)

• Possession of the following Certifications would be considered an asset:

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA Recognized Certifications)
  • Microsoft Certified Technology Specialist (MCTS)
  • ITIL Practitioner Certificate (ITIL Practitioner)
  • ITIL Service Manager Certificate (ITIL Service Manager)

• Knowledge of risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies, and security attack pathologies.

• Through knowledge of Cybersecurity and the relationship between threat, vulnerability and information value in the context of risk management.

• Ability to communicate effectively, orally and in writing, including the ability to prepare and present presentations of a specialized nature.

• Ability to exercise a high degree of initiative, innovation and ability to work independently.

• Ability to lead and motivate cross-functional, interdisciplinary teams

• Demonstrated knowledge of common information security and IT management frameworks, ISO.IEC 27001, ITIL, COBIT, NIST, and Cybersecurity Framework

• Demonstrated knowledge of common Cybersecurity management frameworks, regulatory requirements and industry leading practices such as The Local Authority Freedom of Information and Protection of Privacy Act, PIPEDA and PHIPA.

• Ability to work with highly confidential and sensitive information/evidence, exercising sound judgement to make decisions in complex and confidential situations, behaving at all times with tact, integrity and diplomacy.

Requires Security Check

Acceptable current Criminal Record Check (CRC) upon offer of employment.

Apply with us:

If you are interested in the Cybersecurity Lead position, but don't have all these qualifications - apply anyway. All applicants will beconsidered with an emphasis on relevant experience, education, and applicable skills.

Weekly Hours: 40

Salary Range: $111,094.08 to $130,535.28 CAD per annum (2025 rates)

Diversity, Equity and Inclusion

The City of Saskatoon offers an inclusive workplace that embraces diverse backgrounds. As an equity partner with the Saskatchewan Human Rights Commission (SHRC), the City commits to diversity, equity and inclusion in our workplaces. By having our workforce reflect the community we serve, we support the realization of miyo-pimatisiwin, (me-o-pi-ma-ti-si-win) “the good life”, for all residents. To learn more about Diversity, Equity and Inclusion at the City, please visit Saskatoon.ca/diversity

Accommodation

The City of Saskatoon strives to provide an accessible and inclusive workplace for all, including throughout the application and selection process through reasonable access and accommodations. Should you require accommodation through any stage of the recruitment process, please email talentacquisition@saskatoon.ca.

While we appreciate all applications we receive, only candidates under consideration will be contacted.

Our Recruitment Process: Application > Posting Closes > Resume Review > Pre-screen/Interview > Offer > Pre-Employment Conditions > Welcome to the City