• Design, manage, support, and implement cloud security policies, services, and projects. • Provide architectural security guidance in compliance with industry standards (HIPAA, NIST, CIS) for public cloud environments. • Review and provide security-significant feedback on designs and proposed changes submitted by others within the organization. • Frequently communicate and present technical data to audiences with varying levels of technical knowledge. • Frequently communicate with and present to upper management. • Manage cloud firewall, DLP, and vulnerability scanning technology. • Support L1 in resolving cloud-security related issues and follow/improve documented Incident Response playbooks • Research new technology and assist in proof-of-concept testing. • Document security standards and processes. • Work with other internal BMC Security / infrastructure teams to remediate vulnerabilities and other security issues. • Contribute to design decisions for new technology or existing technology being used in a new way. • Coordinate findings remediation of known vulnerabilities within the organization’s cloud presence. • Assist in the education of the workforce on security topics through training and awareness opportunities. • Provide less experienced security engineers with feedback and guidance on projects and skills development.

Über uns Wir sind ein Systemhaus mit rund 60 Mitarbeitenden. Kein Konzern. Keine Silos. Unser Fokus: Managed & Professional Services in Cloud, Netzwerk und Security. Wir sorgen dafür, dass IT im Mittelstand stabil, sicher und wirtschaftlich läuft. Als Security Spezialist schützt Du bei uns Infrastrukturen, die geschäftskritisch sind. Du denkst Security ganzheitlich und setzt sie konsequent um. Nicht als Add-on, sondern als Standard. Du arbeitest an Lösungen, die Risiken real reduzieren und Kunden handlungsfähig halten. Wenn Du Verantwortung suchst und Sicherheit als Haltung verstehst, bist Du hier richtig. Deine Aufgaben: - Sicherheitskonzepte entwickeln und umsetzen. Du etablierst Segmentierung, MFA und moderne Schutzmechanismen. - Security-Architekturen im Kundenumfeld bewerten und optimieren. Du erkennst Schwachstellen und leitest konkrete Maßnahmen ab. - Incident Handling unterstützen. Du analysierst Events und Logs und sorgst für nachhaltige Verbesserungen. - Security-Standards operationalisieren. Du begleitest Patch- und Update-Prozesse und stärkst kontinuierlich das Sicherheitsniveau. - Kunden beraten. Du erklärst Risiken verständlich und entwickelst tragfähige Lösungen. Was solltest Du mitbringen: - Mehrjährige Erfahrung im Bereich IT-Security, idealerweise im Projekt- oder Service-Umfeld - Tiefes Verständnis moderner Security-Konzepte wie Zero Trust, Segmentierung und Identity-basierte Absicherung. - Erfahrung mit Security-Tools wie EDR/XDR, SIEM oder vergleichbaren Lösungen. - Sehr gute Deutschkenntnisse für Workshops und Kundendialoge. - Strukturierte, analytische Arbeitsweise und klare Haltung zu Security-Standards Es wäre schön, wenn du das auch noch kannst: So arbeiten wir: Was wir bieten: - Absolute Flexibilität. Du arbeitest flexibel remote oder vor Ort – so, wie es für dich sinnvoll ist. - Gezielte Weiterentwicklung. Herstellertrainings und Zertifizierungen passend zu Deinem Schwerpunkt. - Mentoring durch erfahrene Kolleginnen und Kollegen. Fachlicher Austausch auf Augenhöhe - Gesundheitsangebote wie Jobrad und Egym/Wellpass sowie moderne Ausstattung im Office und im Homeoffice. Neugierig geworden? Wenn Du Security nicht nur dokumentieren, sondern durchsetzen willst, passt Du zu uns. Wir suchen keine Checkbox-Sammler, sondern Menschen mit Anspruch an Qualität und Wirkung. Bewerbungsprozess und Kontakt: Ansprechpartner: Janik Sohn, Recruiting und Employer Branding Bewerbungsprozess: Sobald dein Lebenslauf bei uns eingeht, melden wir uns innerhalb von drei Tagen beidir zurück.

Job Information Job Title: Senior Privacy Advisor Job Requisition ID: 81855 Ministry: Technology and Innovation Location: Edmonton Full or Part-Time: Full Time Hours of Work: 36.25 hours per week Permanent/Temporary: Permanent Scope: Open Competition Closing Date: April 7, 2026 Classification: Program Services 4 Salary: $3,148.20 to $4,126.82 bi-weekly ($82,168 - $107,710/year) The Innovation, Privacy and Stewardship (IPS) ​Division is accountable for the Alberta Technology and Innovation Strategy; the protection of personal information and guidance around the ethical use of data; and the governance of Alberta Innovates and the Alberta Enterprise Corporation. The division also advances the strategies and policies related to the delivery of data, content management, technology, and privacy related programs and services. To learn more about us, please visit: https://www.alberta.ca/technology-and-innovation. Within the IPS Division, the Privacy, Policy and Governance Branch leads the enhancement and development of enterprise technology, content and privacy management legislation, policy, and strategic initiatives. The branch is also accountable for all department legislation and policy and delivery of privacy services and support for government. Role Responsibilities Reporting to the Manager, Privacy Services, the Senior Policy Advisor. This position contributes to compliance with the legislated and policy requirements of the Protection of Privacy Act (POPA) and supports delivery of privacy services to support Government of Alberta departments, agencies, boards and commissions. The responsibilities of this role include: - Provides guidance to ministry staff and stakeholders to ensure the collection, use, disclosure, security, and retention of personal information comply with the POPA. - Assesses and mitigates privacy risks, including responding to privacy complaints and managing privacy breaches with corrective recommendations. - Leads and supports Privacy Impact Assessments (PIAs) and other privacy reviews in collaboration with Cybersecurity, Information Management, and program areas. - Liaises with the Office of the Information and Privacy Commissioner (OIPC) on investigations, inquiries, breaches, and POPA interpretation, including preparing written submissions. - Researches and analyzes legislation, policy, and OIPC rulings; consults legal counsel as required to support privacy-related decisions. - Develops and delivers POPA training and awareness materials to ensure public bodies understand their privacy obligations. To be successful in this position, you will demonstrate: - Ability to interpret, apply, and reference legislation, policy, procedures, regulations, and relevant case law. - Strong verbal and written communication skills across all aspects of the role. - Excellent interpersonal skills, including diplomacy, political acuity, conflict resolution, negotiation, and influencing. - Sound judgment and the ability to make complex, independent decisions using innovation and critical thinking. - Strong problem‑solving and analytical skills. - Strong organizational and prioritization skills, with the ability to manage a large caseload of complex files while meeting establish timelines and services standardsl. Please click on this link to view the job description for this position. APS Competencies Competencies are behaviors that are essential to reach our goals in serving Albertans. We encourage you to have an in depth understanding of the competencies that are required for this opportunity and to be prepared to demonstrate them during the recruitment process. This link will assist you with understanding competencies: https://www.alberta.ca/system/files/custom_downloaded_images/psc-alberta-public-service-competency-model.pdf. Qualifications Requirements: - Bachelor’s degree in a related field such as Public Administration, Political Science, Law, Arts, Sciences supplemented by at least four (4) years of related responsible experience with POPA and/or other Provincial or Federal privacy legislation. - A cover letter clearly demonstrating relevant skills and competencies tailored to this position. Equivalencies: - A related master’s degree and a minimum of two (2) years of related experience; or - A related two-year diploma and a minimum of six (6) years of related experience; or - A minimum of eight (8) years of related experience in lieu of formal education. Assets: - Knowledge of privacy and security principles and practices, including relevant legislation, legal precedents in Alberta and other jurisdictions. - Advanced research, analytical and strategic thinking skills; ability to synthesize complex information into clear recommendations. - Privacy Certifications such as CIAPP-C, CIPP/C, CIPM or other privacy certifications. Minimum recruitment standards outline the minimum education and experience required for appointment to a job classification. Refer to https://www.alberta.ca/alberta-public-service-minimum-recruitment-standards. Notes Term of Employment: Permanent, Full-time position Hours of Work: 7.25 hours daily / 36.25 weekly – Monday to Friday Location: Edmonton (Remote) Interviews will be scheduled for the week of April 13, 2026 Final candidates will be required to undergo a security screening. This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. Applicants are required to provide a cover letter summarizing information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Additional Information: In your resume, please include dates (including months and years) associated with all education and work experience. Also, please indicate whether your work experience is casual, part-time, or full-time. For example, January 15, 2006 - June 25, 2009: Assistant (PT three 8 hrs. shifts/week). Any costs associated with obtaining the required documents/checks as noted or interview travel expenses will be the responsibility of the candidate. Out-of-province applicants can obtain the required documents/checks from the province they currently reside in. Links and information on what the GoA have to offer to prospective employees. - Working for the Alberta Public Service - https://www.alberta.ca/advantages-working-for-alberta-public-service.aspx. - Public Service Pension Plan (PSPP) - https://www.pspp.ca. - Alberta Public Service Benefit Information - https://www.alberta.ca/alberta-public-service-benefits. - Professional learning and development - https://www.alberta.ca/professional-development-support-directive. - Research Alberta Public Service Careers tool – https://researchapscareers.alberta.ca. - Positive workplace culture and work-life balance. - Leadership and mentorship programs. How To Apply Applicants are advised to provide information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Candidates are required to apply for a job online. Please visit https://www.alberta.ca/job-application-resources#before for more information. Please visit Recruitment Principles, for more information. In your resume, please include dates (including months and years) associated with all education and work experience. For example, January 2006 - June 2009 (part-time). This example is provided for illustrative purposes only. Applicants are encouraged to present their information clearly and thoroughly, using a format that best conveys their experience. It is recommended applicants who have completed post-secondary studies from outside of Canada obtain an evaluation of their credentials from the International Qualifications Assessment Service (IQAS)(https://www.alberta.ca/international-qualifications-assessment.aspx) or from a recognized Canadian Credential Evaluator; please visit the Alliance of Credential Evaluation Services of Canada for more information (https://canalliance.org/en/default.html). It is recommended that applicants include the assessment certificate from IQAS or any other educational assessment service as part of their application. Closing Statement This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. We thank all applicants for their interest. All applications will be reviewed to determine which candidates' qualifications most closely match the advertised requirements. Only individuals selected for interviews will be contacted. If you require any further information on this job posting or require an accommodation during the recruitment process, please contact Michelle Elliott at Michelle.Elliott@gov.ab.ca.

• Lead and evolve ARIVE’s security and infrastructure strategy, roadmap, and posture. • Lead, manage, and develop the existing security and infrastructure teams; serve as the executive-level decision maker on all security, infrastructure, and IT matters. • Partner across all teams to embed security into workflows and practices, champion secure-by-design standards, and assess emerging AI-driven threats and opportunities across the security landscape. • Lead the security of ARIVE’s core platform — ensuring protection of PII, mortgage data, and financial information at rest and in transit. • Govern application security standards including secure code reviews, SAST/DAST, API security, and penetration testing programs. • Govern authentication, authorization, and access control frameworks across all customer-facing and internal applications. • Drive threat modeling and security reviews for new features, integrations, and third-party connections. • Run a 24x7 security incident monitoring program across all platform, cloud, and endpoint environments. • Mature the SIEM/SOAR program, lead incident response across all severity levels, and drive automation to improve MTTD/MTTR. • Manage regular penetration tests, vulnerability assessments, and red-team engagements; track findings to closure. • Run and continuously improve ARIVE’s AWS cloud infrastructure, CI/CD pipelines, container orchestration, secrets management, and deployment automation across U.S. and India teams. • Govern environment segregation, access controls, promotion workflows, and platform reliability. • Define strategy to implement endpoint device and application protection enforcement, DLP, and enterprise security tooling standards across the organization. • Drive vulnerability scanning programs; maintain risk registers and remediation SLAs. • Run IT operations including identity/access management and internal tooling across U.S. and India. • Manage IT asset protection and lifecycle programs — procurement through secure disposal. • Partner with the Director of Compliance to execute SOC 2 controls implementation and support audit readiness. • Ensure GLBA and state privacy law adherence; lead vendor/third-party risk assessments and BC/DR planning. • Define scalable IT policies, standards, and onboarding/offboarding workflows in collaboration with HR, Finance, and Operations.