Role Description Exciting Mainframe Security SME, 12 months, contract opportunity. Seeking a Mainframe Security SME to support: - Project: Migration from Broadcom ACF2 to RACF. - Lead the end-to-end migration from ACF2 to RACF, including planning, design, testing, cutover, and stabilization. - Develop and maintain the migration roadmap, timelines, and risk mitigation strategies. - Conduct detailed analysis of existing ACF2 rules, resource definitions, and access models to map them to RACF equivalents. - Build automated or semi-automated processes to streamline conversion and validation. - Technical Engineering & Architecture - Design RACF class structures, grouping, profiles, and naming standards aligned with enterprise security policies. - Implement RACF administration best practices, including role-based access, dataset protection, digital certificates, and password/MFA integration. - Configure and optimize z/OS security components such as ICSF, PKI, SAF exits, and SMF logging. - Develop scripts, tools, and utilities to support RACF administration and reporting. - Governance, Compliance & Risk Management - Ensure RACF implementation aligns with regulatory requirements (SOX, PCI, HIPAA, etc.). - Partner with audit teams to provide evidence, reporting, and remediation guidance. - Establish RACF operational procedures, access request workflows, and ongoing governance models. Company Description

Job Information Job Title: Information Security Officer 2 (Cyber Threat Hunting) Job Requisition ID: 82285 Ministry: Technology and Innovation Location: Remote across Alberta Full or Part-Time: Full Time Hours of Work: 36.25 hours per week Permanent/Temporary: Permanent Scope: Open Competition Closing Date: April 29, 2026 Classification: Systems Analyst Level 2 Salary: $3,115.21 - $4,277.30/ Biweekly ($81,306 - $111,637/ per year) Every member of Technology and Innovation strives to enable the success of our Ministry partners and Albertans through providing exceptional client focused services that meet and exceed our clients’ expectations. We are looking for collaborative, agile, solutions focused individuals with strong communication skills and strong service orientation. If that describes you, please read on! To learn more about us, please visit our ministry’s web page (https://www.alberta.ca/technology-and-innovation.aspx) and Cybersecurity in Alberta (https://www.alberta.ca/cybersecurity-in-alberta.aspx). The passionate and solutions focused people that we hire help us to drive vital programs and services that affect Albertans. Whatever your position is here, you will be a part of something great. Join us! Role Responsibilities The Government of Alberta (GoA) is expanding its cybersecurity force and is actively recruiting a talented professional to join our Cyber Threat Hunting Team. We’re seeking a strategic and forward thinking Information Security Officer at the ISO2 level. One permanent position is available in the following specialized area within the Cybersecurity Division: - Cyber Threat Hunting Team As an Information Security Officer, you are tasked with protecting the confidentiality, integrity and availability of the Government of Alberta's (GoA) information assets. You are responsible for identifying, assessing, monitoring, detecting, investigating, researching, and responding to vulnerabilities, threats and incidents impacting the security of information assets. Role & Responsibilities : This position delivers proactive cybersecurity through penetration testing and threat hunting, protecting Government of Alberta information assets by identifying vulnerabilities, investigating threats, and improving controls and monitoring. Operating within policies, it collaborates with technical teams to perform authorized assessments and proactive investigations to identify indicators of compromise or suspicious activity. Responsibilities: Some of the responsibilities of this position include but are not limited to: - Conduct threat hunts using defined hypotheses and available data sources, analyzing logs and endpoint telemetry for anomalies - Perform penetration testing of networks, systems, and applications using established methodologies and standards - Identify and validate vulnerabilities, supporting exploitation and post-exploitation activities - Document findings from threat hunts and penetration tests To be successful in this position, you will demonstrate: - Ability to lead and remain calm in times of crisis. - Excellent verbal and written communication skills for executive briefings and technical discussions. - Demonstrated ability to collaborate effectively and secure alignment across multiple stakeholders. - A sense of curiosity to investigate root cause and identify options and a recommendation. - Analytical and problem-solving skills for complex environments. AI-First Mindset This role is designed with an AI-first approach to help you work smarter, not harder. You will leverage AI tools to: - Automate insights and personalize stakeholder engagement. - Create tailored, high-impact materials using AI-assisted content generation. - Develop and track KPIs using AI to surface trends and predict outcomes. - Demonstrate proficiency in utilizing AI to address complex problems and automate analysis of extensive datasets. If you’re passionate about safeguarding Alberta’s digital landscape and ready to contribute to high impact, mission critical work, this is an exciting opportunity to make a meaningful difference! - Please click on this link to view the job description for this position. APS Competencies Competencies are behaviors that are essential to reach our goals in serving Albertans. We encourage you to have an in depth understanding of the competencies that are required for this opportunity and to be prepared to demonstrate them during the recruitment process. This link will assist you with understanding competencies: https://www.alberta.ca/system/files/custom_downloaded_images/psc-alberta-public-service-competency-model.pdf. Some of the competencies critical for this position include: - Systems Thinking: You will consider the whole system when developing, evaluating and implementing process and technology change. - Creative Problem Solving: You will assess options and implications in new ways to achieve outcomes and solutions. - Agility: You will need to provide results in a complex, diverse and changing environment. - Develop self and others: A commitment to lifelong learning and the desire to invest in the development of the long-term capability of yourself and others. - Drive for Results: Knowing what outcomes are important and maximizing resources to achieve results that are aligned with the goals of the organization, while maintaining accountability to each other and external stakeholders. - Build Collaborative Environments: Leads and contributes to the conditions and environments that allow people to work collaboratively and productively to achieve outcomes. - Develop Networks: Proactively building networks, connecting, and building trust in relationships with different stakeholders. Qualifications Required: - A university degree in Computer Science, Information Technology, or a related field. - Minimum of 2 years of related experience. Equivalencies: - - A Related two-year diploma from a recognized post secondary institution and a minimum of four (4) years related experience; or - A related one-year certificate from a recognized post secondary institution and minimum of five (5) years related experience. Additional Required Experience: - Experience in Information Systems Security, IT Infrastructure Planning, and/or IT Architecture. - Experience in Information Technology or related role with an emphasis in Cyber Threat Hunting - Security certification such as CISSP, CISM, CISA, CRISC, SANS, CEH, GPEN, or equivalent, and it is expected that incumbents would be working towards multiple certifications. - Cover Letter - Please include a cover letter that clearly outlines your relevant experience along with the years of experience that you possess in your preferred specialized area/areas in Cybersecurity. Assets : - Experience with AI-powered cybersecurity tools and techniques. - Proven experience delivering information security services in operational environments. - Hands-on experience using cybersecurity tools and technologies to support information security functions. - Experience conducting research using open sources. - Knowledge of network protocols and how adversaries utilize them to facilitate intrusions. - Experience attributing malicious activity to known threat actors and uncovering their motivations, affiliations, and any further context. - Proficient in one or more programming language (e.g., Python, C, C++), and one or more query language (e.g., KQL, SQL). - Strong critical thinking, analytical and problem-solving skills, including the ability to deal with large amounts of information in a limited time. - Excellent communication skills, both written and verbal. Ability to communicate technical information to diverse audiences – both technical and non-technical – in a clear and concise manner. - Experience translating complex information into clear, high-quality briefings for executive management. - Familiarity with Microsoft Azure suite of products, including Microsoft Sentinel and Microsoft 365 Defender. *** Applications will be evaluated, and candidates will be considered for the position/classification, that is most closely aligned with their skills, qualifications, and relevant experience. (Minimum recruitment standards outline the minimum education and experience required for appointment to a job classification. Refer to https://www.alberta.ca/alberta-public-service-minimum-recruitment-standards. Notes Term of Employment: Permanent Full-time position Hours of Work: 36.25hrs/ week – Monday to Friday Location: Remote across Alberta This position is eligible for remote work. You must reside in Alberta to work remotely. A written assessment may be required as part of the interview process. Depending on the project, on-call rotation and overtime may be required. Final candidate will be required to undergo enhanced security screening. This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. Applicants are advised to provide a cover letter summarizing information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Any costs associated with obtaining the required documents/checks as noted or interview travel expenses, will be the responsibility of the candidate. Out-of-province applicants can obtain the required documents/checks from the province they currently reside in. Links and information on what the GoA have to offer to prospective employees. - Working for the Alberta Public Service - https://www.alberta.ca/advantages-working-for-alberta-public-service.aspx. - Public Service Pension Plan (PSPP) - https://www.pspp.ca. - Alberta Public Service Benefit Information - https://www.alberta.ca/alberta-public-service-benefits. - Professional learning and development - https://www.alberta.ca/professional-development-support-directive. - Research Alberta Public Service Careers tool – https://researchapscareers.alberta.ca. - Cybersecurity in Alberta - https://www.alberta.ca/cybersecurity-in-alberta - Positive workplace culture and work-life balance. - Leadership and mentorship programs How To Apply Applicants are advised to provide information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Candidates are required to apply for a job online. Please visit https://www.alberta.ca/job-application-resources#before for more information. Please visit Recruitment Principles, for more information. It is recommended applicants who have completed post-secondary studies from outside of Canada obtain an evaluation of their credentials from the International Qualifications Assessment Service (IQAS)(https://www.alberta.ca/international-qualifications-assessment.aspx) or from a recognized Canadian Credential Evaluator; please visit the Alliance of Credential Evaluation Services of Canada for more information (https://canalliance.org/en/default.html). It is recommended that applicants include the assessment certificate from IQAS or any other educational assessment service as part of their application. Closing Statement This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. We thank all applicants for their interest. All applications will be reviewed to determine which candidates' qualifications most closely match the advertised requirements. Only individuals selected for interviews will be contacted. If you require any further information on this job posting or require an accommodation during the recruitment process, please contact Michelle Elliott at Michelle.Elliott@gov.ab.ca.

• Scan vulnerabilities using industry-leading tools in applications and infrastructure • Conduct and manage DAST, SAST, and software composition analysis (SCA) activities • Analyze vulnerability scan results, validate findings, reduce false positives, and prioritize risk • Collaborate directly with development teams to assess identified vulnerabilities and deliver precise, actionable remediation recommendations • Track vulnerabilities through remediation and verify fixes • Act as a trusted AppSec advisor to engineering and product teams • Use expertise in OWASP Top 10 and common web application and API attack methods • Support secure development practices, threat modeling, and design reviews • Contribute to secure coding guidance, patterns, and best practices • Leverage AI-powered tools (e.g., Copilot-style tooling, AI-assisted scanners) • Identify opportunities to automate repetitive security tasks and workflows • Lead and support security testing of AI and LLM-powered features across the organization • Assess and test for risks outlined in the OWASP Top 10 for LLM Applications

Overview The Senior Epic Application Analyst encompasses all the job duties of the Epic Application Analyst which include serving as the Subject Matter Expert and technical point of contact for the main Application Areas. In addition, they are responsible for taking the lead inprimary areas of work, including Projects, Changes, and the highest point of Break/Fix escalation. They demonstrate full use and application of standard principles, theories, and concepts related to technical discipline, and provide solutions to a variety of complex problems. They manage user requirements, develop, and implement systems for complex and integrated issues and processes. Collaborates with the Epic Application Analyst Manager to develop and maintain processes for the team. This role engages and collaborates with User Support on Epic escalations and takes lead in troubleshooting escalations. This role serves as the highest subject expert for their application. The Senior Epic Application Analyst exhibits leadership skills, project management skills and mentorship skills and takes responsibility as the leader, organizer, and mentor for their application(s). This position is considered remote, which means that individuals in this position may work at their place of residence; however, they may be required to occasionally visit the CommUnityCare administrative office or health centers in Austin, Texas. Remote work is not available for residents of California, New York, New Jersey, Hawaii, Maryland, or Virginia. Responsibilities Essential Duties (at least 5 that are non-negotiable duties and are absolutely pertinent to successfully completing the job without accommodations):• Serves as the Subject Matter Expert (SME) for the Epic EMR system and their core applications.• Effectively manage multiple projects simultaneously, defining, delegating, and managing build deliverables as needed.• Serves as a mentor and resource to other analysts, educates and coaches other team members.• Manages projects to completion according to department standards with little or no guidance.• Actively participates in the Epic escalation process. • Leads upgrade nova note distribution and upgrade planning for their core application including testing scripts management. • Provide advanced build support during implementation and installation of Epic environment systems and associated 3rd-party products.• Leads building system components, testing, implementation support, and maintenance of assigned Epic applications.• Perform in-depth analysis, troubleshooting, data collection, and root cause analysis and then identify and/or implement potential solutions for issues related to the system or usage of it.• Analyze/review and test each product release and communicate needed changes to operations.• Must be able to document and follow system change control procedures for the system.• Work closely with other analysts, Epic third-party vendors, and operations to ensure that system integrity is maintained and that IT deliverables meet operational business needs.• Research, analyze, facilitate and implement business and system workflows to expedite process improvement and coordinate business practices.• Identify best practices and implement opportunities for standardization. Utilize standardized department tools/software systems to plan task/projects and monitor progress toward milestones and deadlines, reassigning resources when necessary to meet organizational objectives.• Maintains up-to-date expertise on the operation and application of various applications.• Maintains a working knowledge of key indicators, standards, and processes related to EMR systems. • Provides third tier support for various applications/modules when an issue is escalated to the help desk.• Create and track tickets with vendors. Ensures support tickets are being worked in a timely manner in accordance with our service level agreements (SLA).• Provide technical support via phone, online, and/or in person.• Serve as a primary resource to the EMR super- users in ticket resolution.• Guides workflow design, building and testing the system, and analyzing other technical issues. • Coordinates system changes with the governance team for decision making.• Identifies and implements requested changes to the system.• Serves as a liaison between end users’ workflow needs and technical staff/vendors.• Maintains regular communication with vendors for assigned applications.• Works with vendors, the organization, and end users to ensure the systems meet the organization’s business needs regarding the project deliverables and timeline. • Provides management technical system guidance to improve and streamline operational workflows.• Works collaboratively with the trainers to ensure that training materials are up to date and reflect the current build of the various systems.• Supports all phases of the EMR implementation.Knowledge/Skills/Abilities:• Excellent customer service, organizational, interpersonal and communication skills.• Ability to prioritize and complete multiple tasks in a fast-paced, technical environment.• Ability to problem solve in various modules/applications. • Demonstrate flexibility and ability to accept changes gracefully.• Able to work professionally and collaboratively in a team-based health care delivery setting as well as an individual. • Possess strong skills in Microsoft Office.• Self-learner with ability to easily learn new software.• Reliable transportation required for local travel through Travis, Bastrop, and Williamson counties.• Strong knowledge of clinical and/or administrative workflows. • Attention to detail and excellent analytical and critical thinking skills (strong problem-solving skills).• Must be able to work flexible hours. Some evenings, nights, and weekends are occasionally required. Must be able to respond to issues during non-production hours Qualifications MINIMUM EDUCATION:• Bachelor’s Degree with 3 years of experience supporting healthcare IT or healthcare applications required; or • High School Diploma and 5 years of experience supporting healthcare IT or healthcare applications.• Previous Epic Certification or Proficiency for external candidates MINIMUM EXPERIENCE:• Two year of experience supporting applications in a healthcare environment REQUIRED CERTIFICATIONS/LICENSURE:• Active Epic Certification, Accreditation or Proficiency Self Study in one of the organizations core Epic Applications supported by the Epic Application Analyst role with a minimum of 36 months (3 years) experience or• Active Epic Certification, Accreditation or Proficiency Self Study in at least three of the core Epic Applications supported by the Epic Application Analyst role with used at the organization with a minimum of 24 months (2 years) experience in each application.“Core Epic Application” is defined as a standalone application that does not require prerequisite of another application. “Used at organization” is defined as an application currently implemented and in use at the organization. PREFERRED EDUCATION:• Bachelor's Degree in Business, Clinical Science, or Computer Science PREFERRED EXPERIENCE: • 2 years of experience as an Analyst role supporting an EMR• Experience implementing and supporting an EMR• Knowledge of Medical terminology FQHC and/or Healthcare background• Epic experience PREFERRED CERTIFICATIONS/LICENSURE:• Active Epic Certification, Accreditation or Proficiency Self Study in one of the organizations core Epic Applications supported by the Epic Application Analyst role with a minimum of 48 months (4 years) experience or• Active Epic Certification, Accreditation or Proficiency Self Study in at least three of the core Epic Applications supported by the Epic Application Analyst role with used at the organization with a minimum of 36 months (3 years) experience in each application.