University of Manitoba


It Security Analyst

At the University of Manitoba our strength lies in our community — individuals who are driven by curiosity and work together to shape a better world.

Our commitment to discovery encompasses everything we do; from the education we offer students to the workplace we offer employees. Experience top benefits, world-class facilities and a community that inspires one another to carve their own path.

Recognized as one of Manitoba’s Top 25 Employers for nine consecutive years and one of Canada’s Best Diversity Employers, UM is ready to help you take the next step in your career!

The role:

If you are a talented, curious and experienced security analyst who has worked on cyber security protection, this may be a great opportunity for you! I.S.T is looking for somebody with deep analytical skills with strong oral and written communication to support the University of Manitoba’s cyber security program. If you have security passion and drive, we want to hear from you.

Reporting to the Director of Information Security and Compliance, the incumbent is responsible for: designing and developing Information Security Programs in alignment with the strategic priorities and direction of the unit, IST and University; conducting Threat and Risk Assessments (TRAs) on UM’s business applications and supporting infrastructure; identifying risks and vulnerabilities to systems, and recommending mitigation actions to respond to those risks; consulting with project teams, faculties and departments regarding security risk assessment issues; maintaining documentation related to risk assessments and preparing related reports; governing the implementation of the University-wide information security program that enables the business of the University.

The qualifications and experience we’re looking for:

  • Bachelor's degree in Computer Science required.
  • A professional certification such as CISM, CGEIT, CISSP, or CRISC is required or currently enrolled in one or more of the certifications.
  • An acceptable equivalent combination of education and experience may be considered.
  • Minimum of five years of experience in information security or related information risk management required, preferably in a higher education sector or public sector.
  • Track record in designing, developing and implementing successful security programs is preferred.
  • Familiarity with traditional and modern training methods is preferred. Must have demonstrated experience with: Development and implementation of Information Security policies, procedures, processes, guidelines and standards; Conducting Threat and Risk Assessments; Development of Security Awareness and Training programs; Development and implementation of information security programs.
  • Must have experience working with all levels of an organization, including senior management.
  • Demonstrated workload organization and prioritization required.
  • Demonstrated skills in setting and attaining goals/objectives required.
  • Demonstrated project management and organizational skills in a complex environment required.
  • Demonstrated teamwork/collaboration skills required.
  • Demonstrated skills in communicating clearly and concisely with a variety of audiences. Demonstrated analytical skills required.
  • Demonstrated understanding of key information security tools and concepts such as IAM, SSO, IPS, wireless security, firewalls, identity management, vulnerability management, penetration testing, VPN, LDAP, AD, SAML, and SIEM, is required.
  • Demonstrated understanding of information security frameworks such as ISO 2700x, ITIL, and COBIT, is required.
  • Ability to communicate effectively, both verbally and in writing, with users with varying levels of technology expertise is essential.
  • Ability to act as a consultant to client offices and other staff members is essential.
  • Must be able to work cooperatively with others and in order to implement effective security programs.
  • Must be able to understand and work within multiple IT environments.
  • Satisfactory work record, including punctuality and attendance, is required.

Why the University of Manitoba?

Along with being one of Manitoba’s top employers, we are proud to provide a collaborative and enriching work environment. In addition to a strong compensation package with a competitive salary, the University provides an exceptional workplace that includes:

  • Comprehensive group benefits program and pension plan.
  • Employee and Family Assistance Program.
  • A full spectrum of professional development opportunities.

Apply today through the University of Manitoba’s career portal, UM Careers where you will find the full job specification:

Closing Date: June 30, 2021

Applications will only be accepted if you apply on UM Careers.

The University of Manitoba is strongly committed to equity and diversity within its community and especially welcomes applications from women, racialized persons, Indigenous peoples, persons with disabilities, persons of all sexual and gender identities, and others who may contribute to the further diversification of ideas.

If you require accommodation supports during the recruitment process, please contact or 204-474-7195. Please note this contact information is for accommodation reasons only.

Application materials, including letters of reference, will be handled in accordance with the protection of privacy provisions of "The Freedom of Information and Protection of Privacy" (Manitoba). Please note that curriculum vitae will be provided to participating members of the search process.