Job ID: COT-2025-16
Job Title: Senior Specialist Cyber Business Analyst
Division: Office of the Chief Information Security Officer
Reports To: Manager Strategic Transformation
Salary Range: $122,305 to $163,639
Work Location: 55 John Street, Toronto
Job Type: Permanent Full Time
Shift Information: Monday to Friday, 35 hours work week
JOB SUMMARY:
The Senior Specialist Cyber Business Analyst will be responsible for driving the documentation, process management, and continuous improvement of cyber security initiatives within the City. This role will focus on ensuring that all cyber programs, policies, and procedures are thoroughly documented, standardized, and aligned with best practices.
The Senior Specialist Cyber Business Analyst will work closely with cross-functional teams to gather and analyze requirements, create detailed documentation, and refine processes to support the execution of cyber programs.
The position will require a strong focus on ensuring that processes are well-documented, repeatable, and scalable to ensure consistency, compliance, and operational efficiency across the organization’s cyber security initiatives.
MAJOR RESPONSIBILITIES:
- Lead the creation, maintenance, and management of comprehensive documentation for all cyber security programs, processes, and procedures.
- Develop clear and detailed business process flows, policies, and standard operating procedures (SOPs) to ensure consistency and adherence to best practices across the City.
- Collaborate with stakeholders to gather business requirements, ensure alignment with cybersecurity goals, and create detailed process documentation that supports the secure execution of initiatives.
- Perform regular reviews and updates to cyber security documentation to ensure accuracy, relevance, and compliance with industry standards and regulations.
- Ensure that business processes are aligned with regulatory compliance requirements and that all documentation supports audit and compliance initiatives.
- Identify and document process improvements, providing recommendations for enhanced operational efficiency, risk mitigation, and compliance.
- Support the development and implementation of business process management (BPM) strategies within the cyber security domain, focusing on streamlining processes and improving effectiveness.
- Collaborate with sections and business units to design and document repeatable processes that facilitate the successful delivery of cybersecurity programs.
- Provide training and guidance to teams on proper process documentation techniques and best practices for maintaining high-quality documentation.
- Ensure that all process documentation is easily accessible, organized, and maintained to support ongoing and future cybersecurity initiatives.
QUALIFICATIONS/CERTIFICATIONS:
- Post-secondary degree in cyber security, business administration or other related discipline or a combination of education, training and experience deemed to be equivalent
- Strong experience in business analysis, with a focus on cyber security.
- Proven ability to create detailed, clear, and comprehensive documentation, including business process flows, policies, procedures, and SOPs.
- Strong familiarity with cyber security frameworks, best practices, and industry standards (e.g. NIST, ISO 27001, ISA 62443, etc.).
- Extensive experience in business process improvement, including business capability, process mapping, documentation, and optimization.
- Strong project management skills to manage documentation and process improvement initiatives from start to finish.
- Cyber security certification is an asset.
SKILLS:
- Ability to work in transformative programs
- Ability to lead efficient communication between all project stakeholders, including internal teams and clients
- Ability to achieve business objectives through influencing and effectively working with key stakeholders.
- Excellent written & verbal communication skills (comfortable & confident communicating at all levels including business partners, leadership and vendors).
- Excellent problem-solving skills with capability to identify solutions to unusual and complex problems.
- Keen attention to detail and strong organizational skills.
- Highly organized, proactive, self-motivated team player who takes initiative and is able to work independently.
- Ability to work in a fast-paced environment managing multiple priorities with proven time management skills.
- Strong analytical skills and ability to prioritise and multitask.
- Ability to prioritize and effectively manage competing priorities and projects.
- Ability to manage multiple initiatives while adhering to strict deadlines.
- Tenacious and willing to support the team during peak volumes and workloads with various activities.
- Able to work extremely well under pressure while maintaining a high level of professionalism
- Self-motivated team player who takes initiative and can work independently.
- Transferable skills, like communication and decision-making, are equally important.
- Being able to think on your feet and show good judgment are especially valuable in this field. “Security pros should always be ready to react to cyber-related incidents quickly.
ADDITIONAL COMMENTS/INFORMATION:
A normal work week is 35 hours; however, unforeseen situations may require extended hours of work with little or no prior notice. In case of a cyber incident or breach, rotation shift, continuous extended hours may be required with little or no prior notice.
*Subject to a police check, background check, psychological assessment and/or any other checks on a regular basis as the Office of the CISO handles highly sensitive and confidential information.
Equity, DIVERSITY, and Inclusion
The City is an equal opportunity employer, dedicated to creating a workplace culture of inclusiveness that reflects the diverse residents that we serve. Learn more about the City’s commitment to employment equity.
ACCOMMODATION
The City of Toronto is committed to creating an accessible and inclusive organization. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities Act (AODA). Should you require Code-protected accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs. Disability-related accommodation during the application process is available upon request. Learn more about the City’s Hiring Policies and Accommodation Process.
If this role is of interest to you, please submit your resume to recruiting@ipss.ca.