Internship Opportunity


Security patching Specialist - 1 year temporary, contract

City of Markham
Number of Positions:
Application Deadline:
Nov 25, 2022
Start Date:
Nov 07, 2022
End Date:
Nov 03, 2023

Job Description:

Cybersecurity Specialist

Temporary Full Time – 1 year

The City of Markham, an award-winning municipality with more than 355,000 residents, is Canada’s high-tech capital and most diverse community, enjoying a rich heritage, outstanding community planning and services, and a vibrant local economy.  Committed to being a model of public service excellence, with a workforce that is representative of the population we serve, we are looking for people who share our values and are champions of innovative practices. Diversity is one of Markham’s strategic priorities, and we strive to develop and maintain an environment that is inclusive and creates a sense of belonging for all.  

We are pleased to be named one of Canada's Best Employers for 2022 and the best City employer by Forbes for the second consecutive year. The City of Markham is ranked in the top two for Government Services and 15th among the 300 employers on the list, advancing from 18th place in 2021.

Applications are now being accepted for the temporary full-time (one year) Cybersecurity Specialist position in ITS Department in the Corporate Services Commission.

Job Summary 

Responsible to provide specialized technical support on cyber security services required for the organization, including safeguarding information system assets by implementing, sustaining and complying with the City’s Cyber Security Program. This position applies cyber security knowledge and skills to protect the City’s information and technology environment from increasingly complex and challenging cyber threats using the appropriate security tools and products, best practices, and following robust security operations processes and procedures.

Key Duties & Responsibilities

  • Work closely with other ITS staff to administer, coordinate and support vulnerability and patch management policy and procedure to keep the information systems up-to-date and to improve the process. Identify and analyse vulnerabilities; assess the risks, test and apply patches, verify the remediation, and report the outcome. Make improvement on the process by automation.
  • Plan and conduct cyber security awareness training and education. Follow up with analysis and report to ITS management.
  • Develop, maintain and update standard cyber security documentation such as policies, principles, procedures, standards, etc based on existing security controls and processes and industry best practices.
  • Support and assist senior ITS staff and ITS management by performing ongoing day-to-day security administration and operations. Conduct cyber security related reviews and provide recommendations upon request.
  • Evaluate the compliance of infrastructure components and operational processes against cyber security and privacy policies and standards, prepare documentation of the results and track resulting non-conformities and mitigation measures to resolution.
  • Work with risk and technology/process owners to perform security and privacy risk assessments, maintain risk registers and risk management processes. Establish, produce and enhance information security risk and conformance to operational security activities.
  • Contribute to the maintenance, testing, and improvement of security and privacy incident response plans, procedures, and processes. Participate in the security incident response activities, and prepare reports and action plans in the event that a security breach does occur.
  • Create and maintain internal control matrices to demonstrate compliance with various frameworks and requirements, adapt to changing environments and processes, and measure the maturity of the information security program.
  • Other duties as assigned.

Minimum Requirements 

  • Solid understanding of security patching process
  • College Diploma or University Degree in information security, computer science, computer engineering or related field.
  • CISSP, CISA, CISM, and/or equivalent industry certifications is an asset.
  • 1 to 3 years of hands-on experience focused on security patching required; cyber security management experience is an asset.
  • 1 to 3 years of hands-on experience in directly participating in and facilitating security program management against multiple common industry standards, such as ISO 27001/2, PCI DSS, NIST standards, HITRUST, etc.
  • Experience in network systems administration for 3 years or more, in large sized organization with multiple locations, preferred.
  • Previous experience in public/government sector is an asset.
  • Hands-on experience on security patch applications: SCCM, WSUS
  • Windows server system administrations skills
  • Knowledge of municipal government businesses
  • Excellent communications skills and problem solving skills

Core Behaviours

Service Excellence: Leads and supports staff in meeting or exceeding service standards when interacting with customers.
Change & Innovation: Effectively implements change and supports and involves staff through change transitions.
Teamwork & Relationship Building: Leads and supports staff in working together collaboratively, fosters teamwork and inclusion, and cultivates relationships.
Communication: Models active listening and clear communication, and supports staff members in communicating effectively.
Accountable Results Oriented: Role models ethical behaviour and accountability; clarifies expectations, policies and legislation and supports staff in meeting them.
Management & Leadership: Supports a positive work environment, develops and enables staff, sets clear expectations, provides regular feedback, and addresses performance.

The City of Markham is committed to inclusive, accessible and barrier free employment practices and to creating a workplace that reflects and supports the diversity of the community we serve.  Please let us know if you require an accommodation and we will work with you to ensure a barrier free hiring process.  

The City of Markham has established a mandatory vaccination requirement for staff related to the COVID-19 pandemic.  As a result, should you be a successful candidate for a position with the City of Markham you will be required to provide proof of full vaccination upon a conditional offer of employment.  Should you require accommodation in accordance with the Human Rights policy with respect to your vaccine status, you will be required to disclose that at the time of conditional offer so that an accommodation can be developed prior to your start date.

We thank all applicants who have applied. However, only those applications selected for an interview will be contacted.

Employer Question 1:

Are you legally eligible to work in Canada for the entire duration of this internship?

Employer Question 2:

Do you have CISSP, CISA, CISM, and/or equivalent industry certifications ? Please specify:

Employer Question 3:

How many years of experience do you have in security patching, cyber security management , security program management against multiple common industry standards, such as ISO 27001/2, PCI DSS, NIST standards, HITRUST, etc., security patch applications: SCCM, WSUS ? Please specify each in detail:

Employer Question 4:

How many years of experience do you have in network systems administration and what is the scale / size handled? Please specify: