Operations leadership
Identity and Access Management (IAM)
Simon Cheng
IAM Developer (MFA)
Paul Fardy
Authentication Admin
Yu Gu
Active Directory Specialist
Leroy Tang
Enterprise Active Directory Admin
Matt Wilks
Senior IAM Architect
Xin Xiang
Senior IAM Architect
Jonathan Zhao
IAM Developer
Overview
Identity and Access Management (IAM) is one of the cornerstones of a modern information security program. As more of our systems and applications go online, a solid identity infrastructure forms a key line of defense against the intentions of malicious actors. IAM ensures that the right people get access to the right resources and applications on time. With effective IAM systems and processes in place, everyone can access the tools they need to do their jobs effectively and safely.
The IAM team is comprised of several individuals who are tasked with the development, maintenance and operation of our core identity services. They have a commitment to operational excellence and take seriously their critical role in enabling the mission of the University.
Security Services Management
Cygnus Dekany
Security Services Management Analyst
The Security Services Management team is responsible for the continuous improvement of Information Security services. We provide guidance throughout the customer service request journey, maintain IS documentation on the web and coordinate with units to help them onboard to centrally offered services.
Incident Response
Vladimir Baghdasaryan
Incident Response Security Specialist – Threats
Michael Buzny
Incident Response Security Specialist
Alex Lu
Incident Response Security Specialist – Operations
Camryn Quiney
Incident Response Analyst
Overview
The Incident Response team monitors events and alerts using detection tools and acts on any malicious activity. They respond to requests for help from units or community members dealing with suspicious communications or device activity. The team proactively helps to secure the University environment by addressing vulnerable systems and providing incident response plan templates and tabletop exercises.
Security Architecture
Overview
The Security Architecture team designs and maintains the foundational security frameworks that protect the university’s digital ecosystem. Its mission is to ensure all systems, applications and services are built on secure, resilient and compliant architectures.
What we do:
- Develop security standards, guidelines, patterns and reference architectures.
- Integrate regulatory and industry frameworks (e.g., NIST, CIS, ITSG-33) into institutional designs.
- Provide guidance on secure cloud, on-premises and hybrid deployments.
- Assess emerging technologies and align them with risk management strategies.
- Collaborate with stakeholders to embed security into projects from inception.
Visibility and Infrastructure
Jason Chong
Network Security Engineer
Matthew Norrie
Detection Engineer
Overview
The Visibility and Infrastructure team equips IT@UofT staff with tools to help them effectively secure their systems.
Project highlight
ANS-FaaS project
The adaptive network security – firewall-as-a-service (ANS-FaaS) project is upgrading U of T’s firewall infrastructure.
