About OCINet:
The Ontario Clinical Imaging Network (OCINet) is an independent, not-for-profit corporation and a delivery partner of Ontario Health. OCINet enables the secure storage and retrieval of imaging exams, supports hospitals and integrated community health services centres, and connects radiologists, referring physicians, and specialists with their patients’ clinical images province-wide.
For more information about OCINet, please visit: www.ocinet.ca
Opportunity:
Reporting to the Manager, Infrastructure Services, the Senior IT Security Specialist is responsible for strengthening OCINet’s security visibility, reducing risk, and maturing operational readiness across all security domains. This role oversees end‑to‑end security operation; including threat detection, incident response, identity governance, and third‑party oversight, while driving the implementation of effective controls and measurable improvements. Working in close partnership with the CISO, and acting as a strategic partner to both internal and external stakeholders, this role translates complex risks into clear, actionable priorities, establishes meaningful security metrics, and ensures that internal teams and external providers deliver high‑quality outcomes.
Responsibilities:
· Enhance visibility across security tools and monitoring platforms to strengthen threat detection
· Validate the effectiveness of key security controls across endpoint, email, identity, and network layers
· Partner with managed security providers to ensure high‑quality detection, triage, and response
· Lead or support investigation and response activities for security incidents
· Identify, assess, and prioritize cybersecurity risks, translating findings into actionable recommendations
· Drive implementation and continuous improvement of security controls, including vulnerability management
· Strengthen identity and access governance through RBAC, privileged access oversight, and access reviews
· Improve authentication and access hygiene, including MFA and reduction of excessive permissions
· Develop and refine incident response playbooks; coordinate cross‑team readiness activities and tabletop exercise
· Oversee third‑party security performance, validate MSP/MSSP outcomes, and support vendor risk management
· Define, track, and report meaningful cybersecurity KPIs/KRIs, turning metrics into insights and maturity improvements
Required Qualifications:
· College diploma or undergraduate degree in Computer Science, IT, or related field (or equivalent experience);
· Minimum 5 years' experience in server support, database management and IT network analysis;
· Experience in hospitals or healthcare an asset;
· Certified Information Security Manager (CISM) designation preferred;
· Experience with MSSP/MSP environments;
· IAM/PAM, monitoring, incident response knowledge;
· Familiarity with NIST CSF, ISO 27001;
· Understanding of ITIL concepts & practices; ITIL certification an asset;
· Understanding of TCP/IP networking and firewalls - including knowledge of LANs, WANs, and remote access;
· Experience troubleshooting IT problems in a multi-vendor environment;
· Strong analytical and problem-solving skills;
· Ability to provide on-call support and attend occasional in-person meetings in Ontario.
OCINet is an equal opportunity employer, dedicated to a culture of inclusiveness and diversity reflecting our diverse patients, staff and community alike. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities
Act (AODA). Should you require accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs.
Please note, OCINet does not currently leverage AI recruitment tools.
Apply for this opportunity by submitting your cover letter and resume to employment@ocinet.ca and stating the job title in the subject heading.
