Systems Analyst - Information Management & Technology Req ID: Location: Provincial Zone, Westway 1 Department: IMIT SECURITY RISK MGMT-CNS Type of Employment: Permanent, Full Time (100%) Posting Closing Date: 22-May-26 About the Opportunity The IM/IT Security and Risk Analyst (SRA) reports to an IM/IT RSC Manager and works with the IM/IT Lead or Sr. Analyst. This position is responsible for analysis, classification, and response to cybersecurity risks within an organization. The SRA addresses cybersecurity risk and analyzes potential business and customer risk, aligning processes and controls to relevant frameworks and internal systems. The IM/IT SRA works with their team to collaborate with key clinical and business stakeholders at NSH, IWK and DHW. Responsibilities include requirement gathering, testing, implementation, maintenance, and support for primarily clinical information management and technology solutions and functions across NSH, IWK and its many external clients. At present, this role is a hybrid work opportunity which may change. The SRA performs a variety of tasks, including: evaluation of change requests; data retrieval; troubleshooting and assisting with resolution of application errors and system issues; development of materials and communication of system changes to end users; building and maintaining system configuration items according to best practice and stakeholder approvals. About You Qualifications: B.Sc. in Computer Science / Information Security / Business with major in Information Technology or 4+ years equivalent experience in IT and Information Risk Management 1-2 years’ experience as a Security Analyst or Information Risk Analyst Certifications (considered an asset): CISSP, CRISC, CISA, CISM, ISO 31000, HCISPP, ISSMP, GIAC (GSLC), GIAC (GSTRT) Strong applied knowledge of: Security & Privacy Incident Response (NIST 800‑61) & Event Management Processes; Canadian Privacy Requirements (PIPEDA); Current Security Technologies and Tools; Cloud Services (SaaS, PaaS, IaaS) including Microsoft Azure and Amazon AWS security practices; Vulnerability Management processes, technologies and practices (NIST 800‑40) and information Security Testing & Assessments (NIST 800‑115); Supply Chain Risk Management (NIST 800‑161); Risk Assessment methodologies and practices (NIST 800‑30, NIST 800‑39 & ISO 31000); Project Management Methodologies (Waterfall and Agile); Internal/External Audit Processes Hours Permanent full-time position; 75 hours biweekly Hybrid; may change in line with organization requirements Compensation and Benefits $34.62 - $43.28 hourly Successful candidates may be eligible for our benefits package which includes health, dental, travel, long‑term disability, life insurance coverage, and a defined benefit pension plan. We are committed to a workforce that is free of discrimination, values diversity, and is representative of the people we serve. All qualified applicants who self‑identify as Indigenous, Black/African Nova Scotian, Persons of Colour, Foreign Nationals/Newcomers, Persons with Disabilities, 2SLGBTQIA+ are encouraged to apply and self‑identify. #J-18808-Ljbffr