Reference Number
GSS20J-019860-000476
Selection Process Number
20-GSS-ON-EA-CITS-298253
Organization
Shared Services Canada
Year
2020-2021
Days Open
4
Classification
CS02
City
NA
Type
External
Total
146
Employment Equity
68
(46.6%)
Screened out
36
(24.7%)
Screened in
110
(75.3%)
Employment Equity 46.6% 68
Screened Out 24.7% 36
Screened In 75.3% 110
Women 11% 16
Visible minority 38.4% 56
Indigenous 0% 0
People with disabilities 7.5% 11
English 73.3% 107
French 26.7% 39
Citizens 82.9% 121
Permanent Residents 0% 0
We are committed to providing an inclusive and barrier-free work environment, starting with the hiring process. If you need to be accommodated during any phase of the evaluation process, please use the Contact information below to request specialized accommodation. All information received in relation to accommodation will be kept confidential.
Give yourself the best chance to succeed! As the objective of this process is to assess qualifications needed for the position(s) to be staffed, let us know if you have a functional limitation/ disability, which may affect your performance. For example, contact us if you need assistance in completing and submitting your application. Should you then proceed to the next assessment stage, such as an exam or interview, we will send you an e-mail with additional information on the assessment format so that you can determine if you may require an accommodation (such as a different test format, an adaptive technology, or additional time). Assessment accommodations are designed to remove the obstacles without altering the criteria being assessed so candidates with functional limitations can fully demonstrate their abilities.
You may also review jobs open to the public through INFOTEL at 1-800-645-5605. The INFOTEL number for persons using a TTY/TDD is 1-800-532-9397.
Are you a RCMP civilian member assigned to Shared Services Canada (SSC)? We encourage you to apply! As per the memorandum of understanding with the RCMP, please note that civilian members assigned to SSC since December 1 2018 who are selected for appointment through this process will not be required to convert to public servant status. All other civilian members who apply, including those working with SSC through an Interchange Canada agreement, will need to convert to public servant status upon appointment. If you have questions, please send an email message to the address indicated in Contact information section below for more information.
SSC welcomes applications from Veterans. We recognize your contribution to Canadians and would like to offer you the opportunity to continue your career in an environment where multi-talented employees with diverse skills are appreciated and supported.
In Shared Services Canada, you could be working in any of the following areas for 43 federal organizations: Cyber and IT security, Cloud services, Workplace Technology, Email services, Data Centre, Telecommunications and networks, Communications security and others.
Shared Services Canada is modernizing how the Government of Canada manages its information technology (IT) infrastructure. The Department is mandated to deliver email, data centre and telecommunication services, including videoconferencing and Wi-Fi, to partner organizations.
We are building an environment that doesn't just have jobs, but valuable long-term careers. We provide a supportive and collaborative workplace with flexible work arrangements. We promote a positive work-life balance with a commitment to employee wellness.
A pool of qualified candidates will be established and may be used to staff similar positions within Shared Services Canada in various locations across Canada. Other government departments may use this staffing process to appoint a candidate to its organization in a similar position.
In the event that an employee of the public service is qualified through this process, he/she may be considered for acting, deployment, assignment or secondment opportunities.
Positions to be filled: 20
Your résumé.
Contact information for 2 references.
EDUCATION - BOTH STREAMS
Successful completion of two years of an acceptable post-secondary educational program in computer science, information technology, information management or another specialty relevant to the position to be staffed, OR an acceptable combination of education, training and/or experience.
At the manager's discretion, an acceptable combination of education, training and/or experience may serve as an alternative to the minimum post-secondary education stated above. Whenever the minimum education is met via this alternative, it is met for the specific position only and must be re-assessed for other positions for which this alternative has been specified by the manager.
Employees in the CS occupational group on May 10, 1999, who do not possess the education level prescribed above are deemed to meet the education requirement based on their education, training and experience.
EXPERIENCE - STREAM 1 ONLY – Cyber Security
EX1. Experience working as an analyst or occupying a similar position in one or more of the following areas of IT:
a. Network architecture
b. Programming/Scripting
c. Network monitoring
d. Identity
e. Credential
f. Access management
g. Directory services
h. IT security operations
i. Classified systems
j. Cloud computing - (delivery of cloud computing services-including servers, storage, databases, networking, software, analytics, and intelligence-over the Internet or private Cloud)
k. Endpoint Security
EX2. Experience in conducting technical research and analysis in any of the areas of IT as identified in Essential Experience 1.
EX3. Experience occupying a supporting, operational or lead role in an IT environment, involving a variety of platforms, operating systems, environments, database technologies and/or messaging technologies.
EXPERIENCE – STREAM 2 ONLY - COMSEC & F&ES
EX4. Experience developing, managing and enforcing Departmental Communication Security.
EX5. Experience in conducting physical security inspection, COMSEC inspection and COMSEC account audits based on Government of Canada and/or Communications Security Establishment (CSE) policies, COMSEC policies, standards, and guidelines.
EX6. Experience deploying, configuring and maintaining different Type-1 cryptographic devices and Controlled Cryptographic Items (CCI).
EX7. Experience working within the field of EMISSION SECURITY (EMSEC).
EX8. Experience in the field of Physical Security and its controls.
Various language requirements
Bilingual Imperative BBB/BBB, Bilingual Imperative CBC/CBC, English Essential
Information on language requirements
Second Language Writing Skills Self-Assessment
In order to help you decide if you should apply to a bilingual position, an optional self-assessment of your writing skills in your second official language is available for you to take before completing your application.
For more information, please consult:
Unsupervised Internet Test of Second Language Writing Skills
KNOWLEDGE – STREAM 1 ONLY - Cyber Security
K1. Knowledge of cyber security technologies (e.g. Firewall, VPN, IDS/IPS, or Active Directory (AD), AD Federated Services(ADFS), Microsoft Identity Manager (MIM) and/or Microsoft Forefront Identity Manager (FIM)) and threats as they pertain to an enterprise/government environment.
K2. Knowledge of the principles and practices of IT incident handling and investigation.
KNOWLEDGE - STREAM 2 ONLY - COMSEC & F&ES
K3. Knowledge of Emission Security Standards including EMSEC Zoning.
K4. Knowledge of Physical Security and its controls. (EMSEC)
K5. Knowledge of COMSEC Incident (CI) reporting procedure and investigation.
K6. Knowledge of Cryptographic devices.
COMPETENCIES - BOTH STREAMS
C1. Initiative
C2. Teamwork
C3. Oral communication
C4. Written communication – (To be evaluated in your screening question responses. Clarity, coherence, conciseness as well as appropriate attention to detail (spelling, grammar and relevance to the factor being substantiated) may be used to evaluate your ability to communicate effectively in writing.)
COMPETENCY - STREAM 1 ONLY – Cyber Security
C5. Client Focus
OCCUPATIONAL CERTIFICATIONS
1. (ITIL) Information Technology Infrastructure Library Certification (v2/v3)
2. (CISSP) Certified Information Systems Security Professional Cloud Certifications
3. Microsoft Certifications
4. CMPFOR: Successful completion of Canadian Police College Computer Forensics Examiner course
5. (PMP) or Prince Certification
6. (CISA) Certified Information Systems Auditor
7. (GIAC) Global Information Assurance Certification in one of the specializations under the Security Administration category as issued by SANS
8. (CSE) Successful completion of any Communications Security Establishment IT Security Learning Centre Programs of Study
9. (OSCP / OSCE) Offensive Security Certified Professional and/or Offensive Security Certified Expert
10. TOGAF
EXPERIENCE CONSTITUTING ASSETS:
1. (Platforms) Experience working in an IT security environment with a focus on securing a variety of platforms, operating systems, environments or database technologies.
2. (Security field) Experience working in the IM/IT Security field, analyzing problems, identifying key issues, comparing all aspect of the issues, and reaching logical conclusions and recommendations.
3. (Languages) Experience using various programming or scripting languages such as; C, C++, Python and Perl, PowerShell or Ruby.
4. (Tools) Experience with Malware/Anti-virus tools and processes performing installation, configuration, and/or support.
5. (ISS) Experience developing and/or assessing information systems security or technical security architecture models, elements, or practices.
6. (Audits) Experience in coordinating the planning, execution and reporting phases of external and internal audits.
7. (C&A) Experience in contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and/or activities surrounding the Security Assessment and Authorization (SA&A) or Certification and Accreditation (C&A) of IT infrastructure.
8. (Vulnerability Assessment) Experience with the administration, support, configuration or monitoring of vulnerability assessment tools.
9. (Intelligence) Experience in performing Cyber Intelligence, data analytics and/or strategic tradecraft analysis in the context of a Cyber Security program service, using various security or forensic tools, techniques or procedures.
10. (SDLC) Experience with System Development Life Cycle (SDLC) approach required to evolve an IT system from conception to disposition.
11. (OS). Experience with administering server operating systems (OS) such as Microsoft Server 2008, 2012, 2016, or 2019 or Linux or CentOS or Redhat or other operating systems.
12. (AD) Experience with the administration, and /or configuration and monitoring of Microsoft Active Directory (AD) and / or Azure AD Connect.
13. (MIM) Experience with the administration, configuration or monitoring of Microsoft Identity Manager (MIM) and/or Federated Identity Manager (FIM), and/or Active Directory Federation Services (ADFS).
14. (Dashboards) Experience in developing security key performance indicators and reporting dashboards.
15. (Tools). Experience with SSH and telnet clients such as PuTTY and KiTTY.
16. (SIEM) Experience in performing installation, configuration, and supporting a Security Information and Event Management (SIEM) solution such as but not limited to ArcSight, QRadar.
17. (M365) Experience in monitoring, analysing, and responding to security incidents and alerts in the Microsoft 365 (M365) environment.
18. (Investigations) Experience in performing evidence handling in the context of forensics investigations, coordinating ATIP, internal investigation requests using a forensically sound methodology.
19. (CASB) Experience with the configuration, management and maintenance of Cloud Access Security Broker (CASB).
20. (DDoS) Experience with the configuration, management and maintenance of Distributed Denial-of-Service (DDoS).
21. (Firewall) Experience with the configuration, management and maintenance of Web Application Firewall or maintenance of enterprise firewalls (ISO layers 3, 4 & 7).
22. (TCP/IP) Experience with the configuration, management and maintenance of enterprise TCP/IP networks at the LAN / MAN / WAN levels.
23. (WEB Filtering) Experience with the configuration, management and maintenance of enterprise web filtering solutions.
24. (VPN) Experience with the configuration, management and maintenance of enterprise Virtual Private Network.
25. (IPS/IDS/IPDS) Experience with intrusion prevention systems (IPS) and Intrusion detection systems (IDS) IPDS.
26. (CONSEC) Experience working in client services including analysing, resolving, closing and reporting IT and/or COMSEC requests.
27. Experience in preparing reports, briefings, training and awareness presentations, graphics and diagrams for various audiences.
28. Experience with cryptographic Key Management and other aspects of cryptographic keying material.
29. Experience in design and/or evaluation of classified systems within the GOC.
30. Experience in working with Canadian Government IT Security related standards, guidance and policies (e.g. Policy on Government Security, Information Technology Security Guidance (ITSG) 11 and 11A).
31. Experience in managing day to day activities of a large COMSEC account as a COMSEC Custodian or Alternate COMSEC Custodian.
32. (Standards) Experience working with Canadian Government IT Security related standards, guidance and policies (e.g. Treasury Board Secretariat publications (PGS, MITS), RCMP publications (G1-004, G1-024, G1-026, G13-001) and CSE publications (ITSG-11A, ITSG-02, ITSG-12, ITSD-03A).
33. (CSE) Experience in providing support to, applying and enforcing Government of Canada and/or Communications Security Establishment (CSE) security policies, COMSEC policies, standards, and guidelines.
34. (ITSG) Experience applying CSE Risk management best practices ITSG-33, ITSG-22 and ITSG-38 in support of LAN’s/WAN’s management, operation or support, and / or experience applying the IT Security Directives for the Control of COMSEC Material in the Government of Canada (ITSD-03, 01, 06, ITSG-11).
35. (Cryptography) Experience working with Type-1 cryptography devices.
36. (Technical Reports) Experience in providing in writing and orally clear and concise technical reports to senior management.
37. (SOP) Experience writing and analysing Standard Operating Procedures (SOPs), technical documents, instruction manuals, policies or documents, all in the security field.
ORGANIZATIONAL NEEDS
- In support of achieving a diverse workforce, selection may be limited to candidates who self-declare as a member of the following Employment Equity groups: Aboriginal persons, persons with disabilities, visible minorities, women.
- SSC is committed to providing opportunities across Canada where feasible, and to increasing its regional presence.
OPERATIONAL REQUIREMENTS
- Ability and willingness to work overtime as required.
- Ability and willingness to travel.
- Ability and willingness to work 24/7 On-call.
- Ability and willingness to do shift work.
- Ability and willingness to work flexible hours.
Note: The operational requirements may vary by the position being staffed.
Reliability Status security clearance - Certain positions may have a requirement for a Secret or Top-Secret security clearance.
The Public Service of Canada is committed to building a skilled and diverse workforce that reflects the Canadians we serve. We promote employment equity and encourage you to indicate if you belong to one of the designated groups when you apply.
Information on employment equity
=========================================
WHEN YOU APPLY:
▻ you must meet all essential qualifications in order to be appointed to the position.
📢 Candidates must clearly demonstrate in the screening questionnaire HOW they meet the education and experience criteria listed in the Essential Qualifications. Please note that stating that the requirement has been met, and/or listing past or current responsibilities does not represent adequate substantiation. You must provide CONCRETE EXAMPLES that clearly illustrate how you meet the requirement (how, when and where).
📢 Résumés may be used as a secondary source to validate the merit criteria, although comments such as "refer to my attached résumé" will not be accepted and may result in your application being rejected.
Preference will be given to veterans and to Canadian citizens, in that order, with the exception of a job located in Nunavut, where Nunavut Inuit will be appointed first.
Information on the preference to veterans
We thank all those who apply. Only those selected for further consideration will be contacted.