C.1 Strategic Information Technology Security Planning and Protection Consultant

Experience levels

• Level 1: < 5 years of experience
• Level 2: 5– < 10 years of experience
• Level 3: 10+ years of experience

Responsibilities could include but are not limited to

• Review, analyze, and/or apply the Information Technology (IT) Security Policies, Procedures and Guidelines of International government, Federal, Provincial or Territorial government.
• Review, analyze, and apply the best practices, national or international computer law and ethics, IT Security architecture, and IT Security Risk Management Methodology
• Develop vision papers delineating the way ahead to ensure that IT Security and cyber protection are business enablers
• Conduct business function analysis and business impact assessments
• Brief senior managers
• Provide strategic assessments on technology trends and emerging technologies
• Provide IT Security strategic planning and advice.
• Conduct feasibility studies, technology assessments and cost-benefit analyses, and propose system implementation plans for IT Security
• Develop advanced R&D policy/strategy
• Collect, collate and prioritize client IT Security and Information Infrastructure Protection requirements
• Evaluate and assist in the selection of enterprise-wide technology tools
• Review and prioritize IT Security and Information Infrastructure Protection programs
• Develop strategic IT Security architecture vision, strategies and designs using the Business Transformation Enablement Program (BTEP) methodology and the Government Strategic Reference Model (GSRM)
• Develop IT Security programs and service designs using the following GSRM models: Program Logic Model, Program and Service Alignment Model, Service Integration and Accountability Model, State Transition Model, Information Model and Performance Model
• Develop and deliver training material relevant to the resource category