Information Security & Privacy Officer

OI4 Information Security Officer 4

Regular/full-time

Office of the Ombudsman

Strategic Initiatives

Winnipeg MB

Advertisement Number: 43632

Salary(s): OI4 $79,946.00 - $106,802.00 per year

Closing Date: January 10, 2025

The Manitoba government recognizes the importance of building an exemplary public service reflective of the citizens it serves, where diverse abilities, backgrounds, cultures, identities, languages and perspectives drives a high standard of service and innovation. The Manitoba government supports equitable employment practices and promotes representation of designated groups (women, Indigenous people, persons with disabilities, visible minorities).

Employment Equity is a factor in selection for this competition. Consideration will be given to Indigenous people, visible minorities and persons with disabilities.

The Manitoba Ombudsman is seeking professional, energetic, responsive, and forward-thinking individuals to join our team who are passionate about promoting access to information, privacy, access to justice and dedicated to helping Manitobans. Our team members are provided with challenging and meaningful work, ongoing training and development, and the opportunity to participate in a Hybrid work program. Join our team and help make a difference.

The Ombudsman is an independent Officer of the Legislative Assembly with oversight responsibilities under The Ombudsman Act, The Freedom of Information and Protection of Privacy Act (FIPPA), The Personal Health Information Act (PHIA), and The Public Interest Disclosure (Whistleblower Protection) Act (PIDA). These acts enable the ombudsman to investigate complaints, conduct audits, make

recommendations, educate, and outreach to the public, comment on the privacy and fairness

implications of new initiatives, and report publicly. In addition to investigative and audit authority, the Ombudsman may comment on the implications for proposed legislative schemes or the administration of government as it relates to fairness, access, privacy, public interest disclosure and whistleblower protection, and/or the administration of related laws, public programs, policies, and services. We are thought and practice leaders and extend our knowledge to support the public service throughout Manitoba by providing outreach, education, and training to support good governance under our mandates.

The Information Security and Privacy Officer guides and informs approaches to the Manitoba Ombudsman’s oversight, education and awareness initiatives, audits, and investigations involving information security and privacy. They also play a key role in upholding the integrity and security of Manitoba Ombudsman information by overseeing the information security strategy and framework for data, systems, and networks.

Conditions of Employment:

• Must be legally entitled to work in Canada
• Satisfactory Criminal Record Check, Child Abuse and Adult Abuse Registry Checks
  
  

Qualifications:

• Post secondary degree or designation from an accredited college or university with relevant certifications. A combination of related education and training from the following areas is considered:
• Post Secondary: information security, cybersecurity, business administration (with a focus on IT security or information systems), computer science, or a related field
• Privacy certifications: Certified Information Privacy Professional (CIPP), Certified Information Privacy Manager (CIPM), Information Access and Protection of Privacy (IAPP) Certificate, Canadian Institute of Access and Privacy Professionals (CIAPP) certification, or equivalent.
• Information Security certifications: Certified Information Security Manager (CISM), Offensive Security Certified Professional (OSCP), GIAC Certified Penetration Tester (GPEN), Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CSSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), or equivalent.
• Advanced and extensive experience in the privacy and/or data protection sector.
• Experience in senior information security leadership, consulting, or advisory roles.
• Comprehensive understanding of current cybersecurity best practice.
• Ability to investigate, analyze, and assess complex IT security and data privacy breaches or risk and identify vulnerabilities and solutions for complex information systems in a variety of environments and organization types.
• Demonstrated expertise in emerging and established technology applications that impact privacy and fairness (e.g., privacy preserving techniques, cryptography, artificial intelligence, digital identity, government e-services, cloud computing, cryptocurrency etc.)
• Ability to develop guidance, advisories, and other resources in plain language.
• Excellent communication skills and extensive experience providing executive briefings and advice.
• Ability to foster and maintain professional working relationships with a variety of stakeholders.
  
  

Desired criteria:

• Experience in conducting or participating in investigations.
• Ability to communicate in French.
  
  

The Manitoba Ombudsman is seeking candidates who are willing to meet office demands by working on a flexible schedule and/or travel throughout Manitoba as needed. This position will work in our Winnipeg office with some flexibility for Hybrid work where available.

Duties:

The Information Security & Privacy Officer (ISPO) reports to the Executive Director of Strategic Initiatives and is the resident subject matter expert to inform the Ombudsman’s independent advice and leadership on matters of existing and emerging information technology and impacts to security and data privacy protection. The ISPO leads and supports the mandates of the Office through reviews of privacy impact and risk assessments submitted by public bodies and trustees and leads or participates in compliance audits and investigations involving privacy risk or breaches related to information security infrastructure, policies, and other technology related issues. The ISPO is accountable for a comprehensive data privacy program to uphold the integrity and security of Manitoba Ombudsman’s own information systems, including development and oversight the information security strategy and framework for data, systems, and networks to safeguard citizen, stakeholder, and corporate data.

Apply to:

Advertisement # 43632

Manitoba Legislative Assembly

Human Resource Services

302-386 Broadway

Winnipeg MB , R3C 3R6

Phone: 204-945-7279

Fax: 204-948-3115

Email: [email protected]

Competitive Process: The competition will include a board interview. The successful candidate will be subject to a six (6) month probationary period.

Applicants may request reasonable accommodation related to the materials or activities used throughout the selection process. When applying to this position, please indicate the advertisement number and position title in the subject line and/or body of your email. Your cover letter, resumé and/or application must clearly indicate how you meet the qualifications.

Please be advised that job competitions for represented positions may be grieved by internal represented applicants. Should a selection grievance be filed, information from the competition file will be provided to the grievor's representative. Personal information irrelevant to the grievance and other information protected under legislation will be redacted.

We thank all who apply and advise that only those selected for further consideration will be contacted.

_