IT Security Analyst

Winnipeg, MB

IT Security Analyst

The University of Manitoba is a driving force of innovation, discovery and advancement. Our momentum is propelled by our campus community – UM faculty, staff and students whose determination and curiosity shape our world for the better. Our teaching, learning and work environment is uniquely strengthened and enriched by Indigenous perspectives. With two main campuses in Winnipeg, satellite campuses throughout Manitoba, and world-wide research, UM’s impact is global.

Discover outstanding employee benefits, experience world-class facilities and join a dynamic community that values reconciliation, sustainability, diversity, and inclusion. We are one of Manitoba’s Top Employers and one of Canada’s Best Diversity Employers. At the University of Manitoba, what inspires you can change everything.

The opportunity:

Reporting to the Director of Information Security and Compliance, the incumbent is responsible for: designing and developing Information Security Programs in alignment with the strategic priorities and direction of the unit, IST and University; conducting Threat and Risk Assessments (TRAs) on the U of M’s business applications and supporting infrastructure; identifying risks and vulnerabilities to systems, and recommending mitigation actions to respond to those risks; consulting with project teams, faculties and departments regarding security risk assessment issues; maintaining documentation related to risk assessments and preparing related reports; ensuring the implementation of the University-wide information security program that enables the business of the University.

The qualifications and experience we’re looking for:

  • Bachelor's degree or college diploma in Computer Science or a related field is required.
  • A professional certification such as CISM, CGEIT, CISSP, or CRISC is preferred.
  • Minimum of six years of experience in information security or related information risk management is required, preferably in a higher education sector or public sector.
  • Experience leading complex projects required.
  • Demonstrated experience with the development and implementation of Information Security policies, procedures, processes, guidelines, and standards is required.
  • Demonstrated experience with Conducting Threat and Risk Assessments.
  • Demonstrated experience with the development Security Awareness and Training Programs and the development and implementation of information security programs is required.
  • Must have an understanding of key information security tools and concepts such as IAM, SSO, IPS, wireless security, firewalls, identity management, vulnerability management, penetration testing, VPN, LDAP, AD, SAML, and SIEM.
  • Must have a strong understanding of information security frameworks such as ISO 2700x, ITIL, and COBIT.
  • Must have experience working with all levels of an organization, including senior management.
  • Track record in designing, developing, and implementing successful security programs is preferred.
  • Familiarity with traditional and modern training methods is preferred.
  • An acceptable equivalent combination of education and experience may be considered.
  • Demonstrated skills in setting and attaining goals/objectives is required.
  • Demonstrated project management and organizational skills required.
  • Demonstrated teamwork/collaboration skills required.
  • Demonstrated analytical skills required.
  • Excellent interpersonal and problems solving skills is required.
  • Ability to communicate effectively, both verbally and in writing, with users with varying levels of technology expertise is required.
  • Ability to work in a team environment is required.
  • Ability to plan, organize, schedule, and monitor complex projects is required.
  • Ability to act as a consultant to client offices and other staff members is required.
  • Ability to prioritize projects and tasks is required.
  • Must be able to work cooperatively with others in order to implement effective security programs.
  • Must be able to understand and work within multiple IT environments.
  • Ability to develop strong interpersonal working relationships is required.
  • Satisfactory work record, including satisfactory attendance and punctuality, is required.

Why the University of Manitoba?

Along with being one of Manitoba’s top employers, we are proud to provide a collaborative and enriching work environment. In addition to a strong compensation package with a competitive salary, the University provides an exceptional workplace that includes:

  • Comprehensive group benefits and pension plan.
  • Competitive vacation time.
  • Employee and Family Assistance Program.
  • A full spectrum of professional development opportunities.

Apply today through the University of Manitoba’s recruitment site, UM Careers:

Closing Date: April 25, 2024

Applications will only be accepted if you apply on UM Careers.

The University of Manitoba is committed to the principles of equity, diversity & inclusion and to promoting opportunities in hiring, promotion and tenure (where applicable) for systemically marginalized groups who have been excluded from full participation at the University and the larger community including Indigenous Peoples, women, racialized persons, persons with disabilities and those who identify as 2SLGBTQIA+ (Two Spirit, lesbian, gay, bisexual, trans, questioning, intersex, asexual and other diverse sexual identities).

If you require accommodation supports during the recruitment process, please contact [email protected] or 204-474-7195. Please note this contact information is for accommodation reasons only.

Application materials, including letters of reference, will be handled in accordance with the protection of privacy provisions of The Freedom of Information and Protection of Privacy Act (Manitoba). Please note that curriculum vitae will be provided to participating members of the search process.

Subscribe to Job Alerts