Systems Analyst - Information Management & Technology

About the Opportunity

The IM/IT Security and Risk Analyst reports to an IM/IT Manager, and is responsible for the evaluation, testing, implementation, maintenance, and support of information management and technology solutions, projects and services across NSHA, IWK and its many external clients. The IIM/IT Security and Risk Analyst addresses cybersecurity risk and analyses the potential business and customer risk, aligning processes and controls to the relevant frameworks and internal systems. The IM/IT Security and Risk Analyst must identify areas of concern throughout the IM/IT network, supporting resolution and mitigation by providing advice and recommendations in accordance with provincial infrastructure standards managed and maintained Internal Services Department and the Department of Health and Wellness. The IM/IT Security and Risk Analyst collaborates with key clinical and business stakeholders throughout the province as the organization, in partnership with the province's Internal Services Department and the Department of Health and Wellness, moves towards the rationalization of disparate systems and the OPOR strategy.

Specific Responsibilities Include:

• Identify, assess, and manage risks related to information technology, information security, and regulatory compliance by Collaborating with stakeholders and vendors.
• Identify and consolidate contractual and legal requirements.
• Develop information security policies, procedures, and standards specific to Nova Scotia Health.
• Continuously evaluate IM/IT systems to ensure security controls are performing as designed and identify any deficiencies.
• Support and deliver the Cyber Security Awareness program across IM/IT and other stakeholders utilizing systems and data.
• Maintain the risk registry for the organization

About the Opportunity Continued

• Work on complex, cross-functional, and provincial business intelligence solutions
• Information gathering and documentation of business/technical requirements
• Ensures IT systems and processes are implemented and maintained to support the effective and safe delivery of patient information to care providers in clinical care settings
• Establish and maintain working relationships between the Clinical and Business stakeholders and IM/IT to determine appropriate IT solutions
• Interpret business requirements and determine optimum business intelligence solutions to meet needs
• Apply data modeling techniques to ensure development and implementation efforts meet integration and performance expectations
• Collaborate with other team members, vendors and clinical stakeholders
• Perform analyses for a wide range of requests using data in different formats and from various platforms
• Complete other duties as assigned in relation to the position description

About You

We would love to hear from you if you have the following:

• Degree or diploma in an Information Technology, Business Analysis or Health Related discipline. Consideration may be given to those with equivalent training and relevant experience.

• 1-2 years of experience as a Cybersecurity Analyst, Cyber Risk Analyst, or GRC Analyst an asset
• Certifications considered an asset: COMPTIA+, CC, CISSP, CRISC, CISA, CISM, ISO 31000, HCISPP, ISSMP, GIAC (GSLC), GIAC (GSTRT).
• Strong Applied Knowledge of the following preferred:
• Cybersecurity Frameworks: NIST 800-53, NIST CSF, ITIL, ISO 27001/02, MITRE ATT&CK®, COBIT 2019, FEDRAMP, CSA CAIQ.
• Cyber Risk Assessment methodologies and practices.
• Supply Chain Risk Management.
• Security & Privacy Incident Response & Event Management Processes.
• Canadian Privacy Requirements.
• Current Security Technologies and Tools.
• Cloud Services and Amazon AWS security practices.
• Vulnerability Management processes, technologies, and practices.
• Information Security Testing & Assessments.
• Project Management Methodologies (Waterfall and Agile).
• Internal/External Audit Processes.
• Strong analytical skills to gather and implement user requirements
• Experience working with large volumes of different types of data

• High level of accuracy and attention to detail
• Strong written and verbal communication, interpersonal and organizational skills
• Competencies in other languages an asset, French preferred

Please ensure your resume is up to date and includes all relevant education, experience, training, and certifications.

Hours

• 1 Long-assignment, Full-time Position; 75 Hours Bi-weekly. Approximately 12 months (assignment length subject to change)
• 1 Short-assignment, Full-time Position; 75 Hours Bi-weekly. Approximately 6 months (assignment length subject to change)

Compensation and Benefits

$33.14 - $41.42 Hourly

Successful candidates may be eligible for our benefits package which includes health, dental, travel, long-term disability, and life insurance coverage as well as a defined benefit pension plan.