BC Public Service

ISL 27R - Senior Security Analyst

BC Public Service$88K — $100K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Degree in Computer Science, IT, Cybersecurity, or related field with 4+ years' experience, or 6+ years experience with diploma/certificate and relevant certifications.
  • Current security certification (CISSP, CISA, CISM, Security+) required.
  • Experience in reporting on organizational vulnerabilities.
  • Proven experience in leading technical projects and initiatives.
  • Hands-on experience with security tools like Microsoft 365 Defender.

Responsibilities

  • Advise senior management on security strategies and implementation.
  • Assess security risks for business stakeholders and recommend controls.
  • Collaborate with IT project teams to enhance information security.
  • Lead initiatives to improve security policies and standards.
  • Manage the organization's security and risk management program across IT assets.

Benefits

  • Hybrid work environment, accommodating both home and on-site work.
  • Opportunities for professional development and growth within the public service.
  • Access to comprehensive health and wellness programs.
  • Potential for long-term employment with eligibility for future roles.
Full Job Description
Posting Title

ISL 27R - Senior Security Analyst

Position Classification

Information Systems R27

Union

GEU

Work Options

Hybrid

Location

Burnaby, BC V3J 1N3 CA (Primary)

Salary Range

$88,130.70 - $100,522.86 + 9.9% Market Adjustment

Close Date

7/30/2026

Job Type

Regular Full Time

Temporary End Date

Ministry/Organization

BC Public Service -> Liquor Distribution Branch

Ministry Branch / Division

BC Liquor Distribution Branch

Job Summary

About this role:

Advising senior management, the Senior Security Analyst works with business stakeholders and leads the implementation of key branch security strategies and projects. This position comes with a high degree of authority and autonomous decision making. The Senior Security Analyst is responsible for assessing security risks and identifying control requirements and is focused on creating solutions to address control needs.

The Senior Security Analyst in collaboration with IT project teams, architects, and administrators, assesses systems, applications, HW/SW and provides security advice and recommendations to LDB business and IT leadership during the design, development, deployment and maintenance of security and other systems and platforms. The Senior Security Analyst also leads initiatives to improve the LDB's information security policies and standards and address the changing scope of security threats and computer technologies. The Senior Security Analyst works closely with business leaders and technical teams to ensure information security is an integral component of business processes and IT applications.

The work involves considerable complexity, multiple applications and a wide variety of technologies. The Senior Security Analyst operates within a wide scope of responsibility and all activities of NIST domains, leading the LDB's security and risk management program to ensure the protection of IT information assets across LDB's entire operation.

A criminal record check is required.

Working conditions include the need to work outside of core hours, as and when required. Some weekend work may be required to implement changes.

For complete details about this opportunity, including accountabilities, please refer to the attached job description, also located in the Additional Information section at the bottom of the posting.

An eligibility list for permanent or temporary future opportunities may be established.

Position requirements:

Education and Experience:
  • Degree in Computer Science, Information Technology, Cybersecurity, or related field with a minimum of four (4) years of recent, related experience*, together with a current security certification such as CISSP or CISA or CISM or Security+ and Certification in one or more technical disciplines such as CISCO, security (SANS, CSI or other institutes) and/or certification in privacy or information management.

OR
  • A combination of education, training and experience will be considered, i.e., six (6) years of recent, related experience* with a diploma or certificate in Computer Science, Information Technology, Cybersecurity or related field, together with a current security certification such as CISSP or CISA or CISM or Security+ and Certification in one or more technical disciplines such as CISCO, security (SANS, CSI or other institutes) and/or certification in privacy or information management.

*Recent, related experience must have occurred in the last seven (7) years and include the following:
  • Experience reporting on vulnerabilities across the organization.
  • Experience leading technical projects and/or initiatives.
  • Experience with implementation and maintenance/operation of security tools such as Microsoft 365 Defender, etc.
  • Experience with assessing and addressing software and hardware vulnerabilities.

Preference may be given to candidates with any of the following experience:
  • Experience leading Security Threat Risk Assessments (STRA) including identifying and assessment of potential risks, documenting risk ratings and planned treatments and security audits; i.e., penetration testing, PCI compliance audit, segmentation audit etc.
  • Experience with a security focus in a Microsoft environment, preferably cloud environment; i.e., Azure.
  • Experience leading security awareness; i.e., developing email, internet and/or password policies and procedures, identifying trending cyber threats recognition and response training/education such as company communication on cybersecurity and phishing campaigns.
  • Experience with change management processes and/or project management methodologies.
  • Experience ensuring business process compliance with information security policies and identifying and addressing security risks.
  • Experience with application design and development life cycle.
  • Experience with Identity Access Management (IAM).
  • Experience with Payment Card Industry Data Security standards (PCI) or other processes including trends, emerging issues and best practices for PCI.

Application instructions:

To be considered for this position, your application must clearly demonstrate how you meet the education and experience as outlined in the position requirements section above. Applicants selected to move forward in the hiring process may be assessed on the knowledge, skills, abilities and competencies as outlined in the attached Job Description. Applicants must meet the requirements as described below to be considered:
  • A cover letter is required as part of your application. The content and/or format of your cover letter may be evaluated as part of the assessment process.
  • Ensure your resume includes your educational accomplishments, employment history including start and end dates (month and year) of your employment, and any relevant information that relates to the job to which you are applying.

For specific position-related enquiries, .

Only applications submitted using the BC Public Service Recruitment System on this website will be accepted. For more information about how to create or update your profile, please refer to the attached Application Instructions or refer to the Technical Assistance page on the MyHR website. If you are experiencing technical difficulty applying for a competition, please send an e-mail to [email protected] before the stated closing time, and they will respond as soon as possible to assist you.

Note: Applications will be accepted until 11:00pm Pacific Time on the closing date of the competition.

Job Category

Information Management/Information Technology

Additional Information

Senior Security Analyst

Similar Jobs

More Jobs at BC Public Service

More Information Technology Jobs

Find similar ISL 27R - Senior Security Analyst jobs: