Opportunities Senior Cyber and Risk Analyst (Computer Services Officer 4)

About Us

At CSDS we prioritize peopleboth within our team and in the communities we serve. Our mission is to redefine how Nova Scotians engage with government by creating accessible reliable digital solutions centered around user needs.

In todays tech-driven world CSDS empowers government departments with essential digital solutions to meet Nova Scotians expectations. As a trusted partner across government we enable departments to fulfill their mandates with secure user-friendly services. From healthcare and education to public safety we collaborate to transform how services are designed and delivered.

We dont just implement technology; we modernize outdated systems and reimagine processes. Our agile data-driven approach ensures that digital services are both efficient and adaptable to Nova Scotias evolving needs.

Joining CSDS means contributing to work that makes a real difference. From providing vital tech support to healthcare professionals to strengthening cybersecurity and developing scalable digital platforms youll play a key role in building a more inclusive responsive government for Nova Scotians.

Together were setting new standards for digital public service delivering resilient solutions that meet todays needsand anticipate tomorrows challenges.

About Our Opportunity

As Senior Cyber and Risk Analyst youll join the Cyber Security and Enterprise Risk team to help strengthen cybersecurity practices across government digital services. Following a cybersecurity-by-design approach youll work with delivery teams vendors business owners and partners across the government healthcare and education sectors to embed security requirements throughout the delivery lifecycle.

Youll build strong relationships helping stakeholders understand their risk ownership responsibilities assess cybersecurity risks and provide expert guidance to ensure the secure delivery of products and services. Youll also contribute to the development of cybersecurity policies standards and guidelines.

Primary Accountabilities

As the Senior Cyber and Risk Analyst you will be responsible for:

• Collaborating with delivery teams vendors and stakeholders to embed security risk management throughout the delivery lifecycle and promote a cybersecurity-by-design mindset.
• Building strong relationships across government healthcare and education sectors to support shared cybersecurity understanding and maturity.
• Understanding user needs and providing hands-on guidance on designing and implementing effective cybersecurity controls and secure system architecture.
• Supporting delivery teams in assessing cybersecurity controls defining cybersecurity requirements and providing training as needed.
• Effectively and efficiently managing cybersecurity risk assessment activities including monitoring progress documenting statuses coordinating follow-up actions and obtaining necessary approvals.
• Contributing to developing and refining cybersecurity policies standards and guidelines.
• Developing and maintaining dashboards and reporting tools using Power BI PowerApps SharePoint and other Microsoft technologies.
  
  

Qualifications and Experience

To be considered for this opportunity you hold experience and expertise in the following areas:

• Undergraduate degree in Computer Science Engineering Science or related technical degree.
• 5 years of progressive experience in cybersecurity risk management.
• Proven ability to define cybersecurity requirements using recognized frameworks (e.g. NIST ISO/IEC 27001 CIS Controls).
• Experience in cloud security practices and controls (Azure AWS etc.).
• Experience with Threat Risk Assessments (TRAs) penetration tests Web Application Vulnerability Scans (WAVS) system-level scans and custom code scans.
• Familiarity with secure system design and modern delivery practices such as Agile and DevSecOps.
• Hands-on experience managing the cybersecurity risk assessment lifecycle including tracking documentation follow-ups and approvals.
• Strong written and verbal communication skills; able to translate technical risks for non-technical audiences.
• Experience collaborating with delivery teams partners and vendors and providing guidance on cybersecurity requirements.
• Experience contributing to the security policies standards and procedures.
• Proficiency in Microsoft 365 tools including Power BI PowerApps SharePoint and related tools.

In addition you have the following experience and skills:

• Information Security professional designations such as CISSP CISM CISA Security.
• Experience using the NIST SP 800-53 cybersecurity framework.
• Experience performing Cybersecurity Threat Risk Assessments (TRAs).
• User-centred innovative and product management approaches to ensuring the secure delivery of services.

We will assess the above qualifications and competencies using one or more of the following tools: written examination standardized tests oral presentations interview(s) and reference checks.

Equivalency

Include but not limited to:

• graduation from a recognized Information Technology Program plus 5 years 6 months related experience
  
  

An equivalent combination of related training and experience may be accepted in lieu of formal education. Applicants claiming equivalencies must clearly demonstrate them in their application.

Benefits

Based on the employment status and union agreement the Government of Nova Scotia offers its employees a wide range of benefits such as a Defined Benefit Pension Plan Health Dental Life Insurance General illness Short and Long Term Disability Vacation and Employee and Family Assistance Programs. For information on all our Benefit program offerings click here: Benefits for government employees.

Working Conditions

You will be expected to work in the office approximately two days per week; however this arrangement may be adjusted as required to meet operational needs. Travel throughout the province may be required periodically. Standard business hours are 08:00 to 16:30.

Additional Information

Offer of employment is conditional upon the completion of all applicable background checks and confirmation of credentials the results of which must be satisfactory to the employer or will result in the termination of your employment.

What We Offer

• Career development where you have access to career guidance tools resources and ongoing training for every stage of your career
• Engaging workplace: our employees feel valued respected connected and tuned in we have forward-thinking policies and strategies
• Countless career paths
• Department specific flexible working schedules