Athabasca University's VP Information Technology and CIO is recruiting for a permanent full-time Cybersecurity Risk Analyst.

The Position:

The Cybersecurity Risk Analyst (CRA) is responsible for supporting the Digital Security Programs and will work with the Chief Information Security Officer, Manager IT GRC, Digital Security, and other members of the Digital Security team in identifying, evaluating, presenting, and reporting on cybersecurity risks.
This role partners with IT, compliance, and risk management teams to ensure that cybersecurity threats are effectively managed within AU's risk appetite and regulatory requirements. The Analyst is also responsible for maintaining the organization's cybersecurity risk register, supporting policy development, and administering appropriate security tools. The CRA must understand the AU Policy Framework and create risk indicators that show variances to policy framework adoption or adherence.

Qualifications:

• 5+ years of progressive experience in IT risk, cybersecurity risk management, IT audit, or information security, with emphasis on cybersecurity technology and implementation projects.
• Degree or diploma in computer science, information systems, engineering, or a related field (Canadian-recognized). Equivalent experience may be considered in lieu of formal education.
• Preferred certifications: AWS Security Specialty, CRISC, CISM, CISSP.
• Strong understanding of cybersecurity risk assessment methodologies and mitigation strategies.
• Excellent communication skills to articulate risk and technology issues to both technical and non-technical stakeholders.
• Skilled in managing contracts, negotiating timelines, resources, and resolving project-related challenges.
• Experience working with Managed Security Services Providers (MSSPs) is an asset.
• Adept at leading multiple projects simultaneously in high-pressure environments.
• Proven track record of strong interpersonal, leadership, and organizational skills.
• Demonstrated ability to work independently, think critically, and solve complex problems.
• Familiar with systems development life cycle (SDLC) and hands-on experience in analysis, design, testing, and implementation.
• Deep knowledge of industry standards and frameworks (ISO 27001, NIST, CoBIT, ITIL).
• Passionate about delivering excellent customer service and continuous professional development.

A detailed job description can be viewed at: Cybersecurity Risk Analyst.

Contact Information:

For more information regarding this role, please contact Adarshpreet Singh, Manager, IT Governance Risk and Compliance, at [redacted].

An offer of employment is conditional upon verification of educational credentials. All educational credentials must be recognized in Canada.

E-Transcripts shared directly from your Post-Secondary Institution via email are acceptable.

WES https://www.wes.org/ca/ may be used to verify international educational credentials. Processing time for verification of international qualifications may take up to one month; please plan accordingly.

While all eligible applicants are encouraged to apply, Canadian Citizens and Permanent Residents will be given priority. Where applicants have equal skills, abilities, and experience, candidates residing within or willing to relocate to the County of Athabasca will be given preference. Successful applicants must reside in Alberta, Canada. Working outside of Canada is not supported by AU. You are legally not permitted to work for AU if you are living outside of Canada.