Director and Chief Information Security Officer

Position Title : Director & Chief Information Security Officer (CISO)

Reports to : Chief Information & Digital Officer (CIDO)

Department : Digital Health & Technology

Purpose of the Position

The Director & CISO drives Halton Healthcare’s digital transformation, ensuring modern, scalable technology solutions align with strategic priorities. This role ensures the organization’s infrastructure, security, and operational capabilities align with theorganizational strategyandDigital Health & Technology Roadmap, while embodying its four core principles : Make IT Easy,Healthcare Anywhere,Digitally Empower Patients and Teams, andRedesign IT for the Next Digital Horizon. The Director & CISO plays a key role in advancing theOne Halton Healthcarevision by enabling seamless, patient-centered care through modern, scalable technology solutions.

Leading a team of approximately40 FTEs, the Director & CISO overseesinfrastructure, cybersecurity, and Biomedical Engineeringto ensure seamless integration with enterprise systems, ensuring the safe, effective management of medical devices and healthcare systems. The role also provides strategic oversight oftechnology-related capital planning and budgeting, supporting sustainable investments acrossnetwork, telephony, infrastructure, cybersecurity, and biomedical engineering.

Key Objectives

• Infrastructure & Service Modernization : Modernize enterprise architecture and technology services, ensuring resilience and adaptability.
• Security & Resilience : Implement zero-trust security and risk management strategies to protect critical healthcare services and ensure continuity.
• Strategic Leadership : Translate organizational and digital strategy into technology roadmapsthat enhance system performance and care delivery.
• Enable the One Halton Healthcare Vision : Build and maintain a scalable infrastructure that supports connected care, enhances patient access, and improves clinician workflows.
• Champion Diversity, Equity, and Inclusion : Champion an inclusive workplace where diverse perspectives drive innovation and equitable access to technology.

All technical decisions and initiatives must advance the Digital Health & Technology Roadmap's core principles :

• Make IT Easy : Design intuitive, automated systems that reduce complexity and enable staff to focus on patient care
• Healthcare Anywhere : Build secure, reliable infrastructure that enables care delivery in any setting
• Digitally Empower Patients and Teams : Implement security and infrastructure that unlocks capabilities while protecting privacy
• Redesign IT for the Next Digital Horizon : Architect modern platforms that enable future innovation

Key Responsibilities

Strategic Leadership (40%)

• Develop and execute comprehensive technical roadmaps aligned with organizational priorities.
• Direct enterprise architects in designing scalable, secure systems that enable digital transformation.
• Partner with clinical and administrative leaders to advance innovation and technology adoption.
• Overseetechnology-related capital planning and budgeting, ensuring long-term sustainability and cost-effective investments.
• Lead a team of approximately40 FTEs, fostering a high-performance, inclusive culture.
• Provide strategic direction forBiomedical Engineering, ensuring medical devices align with the digital health ecosystem and integrate seamlessly with enterprise systems.

Technical Leadership and Engagement (25%)

• Mentor and develop next-generation technology leaders.
• Lead high-performing teams in infrastructure, security, and service delivery.
• Maintain strong relationships with clinical and operational stakeholders to align technology with patient care.
• Lead and contribute to regional partnerships shaping the future of digital health in Ontario.
• Collaborate with hospitals, health service providers, andConnected Care Halton Ontario Health Teamto advance interoperability.

Cybersecurity and Risk Management (20%)

• Lead the organization's transition toward zero-trust security principles, establishing the foundation for a more resilient security posture.
• Lead risk management efforts, ensuring compliance withPHIPA, ISO-27001, NIST, and other regulatory frameworks.
• Oversee disaster recovery and business continuity plans, conducting regular readiness exercises.
• Align cybersecurity policies and response strategies with provincial and regional partners.

Technology Operations (15%)

• Ensure reliable delivery of enterprise IT infrastructure and cybersecurity services.
• ImplementITIL best practicesto optimize service management and enhance system performance.
• Drive automation and self-service capabilities to improve operational efficiency.
• Define key metrics to monitor and resolve technology challenges proactively.

Key Partnerships

• Director, Digital Health : Ensure robust infrastructure to support clinical systems, electronic health records (EHRs), and patient engagement solutions.
• Chief Medical Information Officer (CMIO) : Secure and optimize clinical information systems to enhance privacy, security, and usability.
• Director, Professional Practice & Chief Practice Information Officer (CPIO) : Align professional practice standards with technology solutions that drive clinical excellence.

Qualifications

Education

• Bachelor's degree in Computer Science, Information Technology, or a related field; Master's degree preferred.
• Certifications such asCISSP, TOGAF, CHCIO, or CISMare highly desirable.

Experience

• Required : Experience in a24x7x365 mission-critical, high-pressure environment.
• Preferred : Experience inhealthcare technology operations.
• 10+ years of IT leadership experience, with expertise inenterprise architecture, cybersecurity, and technology operations.
• Proven leadership in digital transformation and technology modernization.
• Strong experiencepresenting to executive committees, working groups, and hospital board members.
• Demonstrated commitment tofostering diversity, equity, and inclusion in technology leadership and solution design.

Working Conditions

• Hybrid work environment, with the flexibility to work remotely up totwo days per week.
• Increased on-site presence expected during the first three monthsto build relationships, engage stakeholders, and gain a deep understanding of the organization’s technology ecosystem.
• On-call responsibilitiesareescalation-level only, requiring engagement when a leadership decision or action is required.

Additional Information

Hours : Monday to Friday, hours per week; Hours are subject to change based on operational needs