×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Project Manager IT Consultant Information Security

Joint Chief Information Security Officer; CISO - and Sinai Health

Job in Toronto, Ontario, M5A, Canada
Listing for: Michael Garron Hospital
Full Time, Seasonal/Temporary position
Listed on 2026-01-13
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager, IT Consultant, Information Security
Job Description & How to Apply Below
Position: Joint Chief Information Security Officer (CISO) - Michael Garron Hospital and Sinai Health

Overview

We are seeking a highly experienced and strategic Joint Chief Information Security Officer (CISO) to oversee the cybersecurity programs for two separate hospital organizations, Sinai Health (including the Lunenfeld Tanenbaum Research Institute) and Michael Garron Hospital. For more information on Sinai Health and MGH, please visit our websites:

The Joint CISO will be responsible for developing and implementing comprehensive cybersecurity strategies, policies, and procedures to protect sensitive data and ensure compliance with industry best practices and healthcare regulations. The successful candidate will work collaboratively with the cyber operations teams at each organization to maintain robust security postures. Additionally, the CISO will work closely with the provincial regional cybersecurity Toronto Local Delivery Group (LDG) to align strategy and tooling with other hospitals within the LDG, of which both hospitals are part of.

Key Responsibilities

- Strategic Leadership:
o Develop, execute and maintain a unified cybersecurity strategy, framework, and governance across all three hospital organizations.
o Provide strategic direction, multi-year roadmap, and oversight for cybersecurity initiatives, ensuring alignment with organizational goals and regulatory requirements.
o Serve as a primary contact, along with each hospital’s cyber operation leadership, for cybersecurity matters including reporting to executive leadership andthe board of directors at each hospital.

- Policy and Compliance:
o Establish, maintain, enforce and align cybersecurity policies, standards, and procedures to safeguard sensitive data and ensure compliance with NIST, ISO, HITECH, and other relevantframeworks and industry standards.
o Conduct regular risk assessments (including third-party/vendor risk management) and audits to identify vulnerabilities and ensure compliance with industry standards.
o Develop a comprehensive dashboard for reporting risk for all three hospitals, taking into account any nuances that might be required at individual sites.

- Collaboration and Coordination:
o Work closely with the cyber and privacy operations teams and operations leadership at each hospitalorganization to ensure consistent implementation and maintenance of security measures.
o Ensure that cyber security approaches are balanced so as not to degrade key areas of the hospitals ability to deliver care to patients.
o Foster a collaborative environment to share best practices, threat intelligence, and incident response strategies among the organizations.
o Coordinate joint cybersecurity training and awareness programs for staff across all three organizations, consistent with the provincialcybersecurity LDG model.
o Work closely with the CISO of the LDG to ensure broader alignment of practices with the direction of the province in matters related to cyber security.

- Incident Response and Management:
o Lead the development and execution ofincident response plans and playbooks to effectively manage and mitigate cybersecurity incidents.
o Establish metrics for incident response readiness, remediation, and recovery that aligns with each organization’s disaster recovery and business continuity requirements.
o Oversee the investigation of security breaches and coordinate with legal, compliance, and communication teams to manage incident response and reporting.
o Take an active leadership role in all incidents including their immediate response, incident reviews, reporting to regulators and insurers, and technical follow-ups

- Technology and Innovation:
o Stay current with emerging cybersecurity threats, technologies, and best practices.
o Evaluate and recommend new security technologies and solutions to enhance the overall security posture of the organizations.
o Ensure the integration of advanced security measures into the organizations’ IT infrastructure and systems is executed in a manageable fashion that does not significantly interfere with clinical care.

- Team & Resource Management
o Lead the cybersecurity teams at each organization, including analysts, engineers, and specialists.
o Develop staffing models, successionplanning, and…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search