• Analyze, investigate, document and report on security alerts and/or potential security incidents identified in customer environments • Process security investigation cases in a thorough, yet timely manner • Serve as an incident coordinator for security events that require urgent response, containment, and remediation • Generate meticulous investigative notes for all security alerts and incidents • Provide continuous feedback on security process improvements and customer satisfaction • Stay up-to-date on security training, certification, and emerging threats • Make appropriate escalations on security investigations when warranted • Ensure shift-change documentation is completed and communicated effectively • Follow all available SOPs and escalation communication matrices • Provide customers with meaningful and constructive security consultation during external communications.

Role Description The Associate Lead, Regulatory Compliance, is responsible for overseeing the continuous execution and monitoring of Scopely’s regulatory and national security compliance obligations within our rapidly expanding, global gaming environment. This role focuses on regulatory program oversight, structured monitoring, and governance execution to ensure Scopely consistently meets its formal compliance commitments. This is achieved through structured oversight, continuous monitoring, and disciplined governance across all teams, systems, and vendors. This role requires close partnership with the Security Officer, Legal, HR, IT, Product, and Data teams to maintain continuous compliance with all regulatory and national security commitments. - Lead oversight of compliance with U.S. foreign investment and privacy regulations, advising internal teams and ensuring regulatory requirements are implemented consistently and effectively. - Monitor adherence to the NSA Cybersecurity Plan, privacy and related regulatory requirements, ensuring controls operate as designed and deviations are promptly addressed. - Oversee regulator-facing communications and required notifications, including non-objection submissions, storage and vendor updates, incident reporting within defined timelines, and annual compliance reporting. - Maintain and manage security compliance documentation, ensuring updates are accurate, timely, and regulator-ready. - Track and monitor role-based access controls for sensitive data, including onboarding/offboarding processes, privilege drift reviews, and third-party access. - Oversee security compliance training for relevant personnel. - Coordinate and support third-party assessments, regulatory reviews, and audit activities. - Maintain structured documentation and evidence repositories to ensure audit readiness at all times. - Identify gaps or process improvements and drive enhancements to strengthen governance and monitoring mechanisms. - Partner with IT and Engineering to ensure monitoring, logging, and segregation controls align with regulatory expectations. Qualifications - 6+ years of experience in cybersecurity governance, regulatory compliance, risk management, or related security oversight roles. - Experience supporting structured regulatory frameworks or government oversight programs. - Strong understanding of identity governance, role-based access controls, least privilege principles, and vendor risk oversight. - Experience managing regulatory reporting timelines and structured compliance documentation. - Experience managing annex-style documentation frameworks or formal regulatory filings. - Demonstrated ability to coordinate audits, assessments, and regulator-facing engagements. - Experience leveraging or building AI-enabled tools to enhance GRC processes, including developing AI assistants or automation workflows to improve regulatory monitoring, documentation, and control oversight. - Strong written communication skills with the ability to draft clear, defensible regulatory communications. - Experience working cross-functionally with Legal, HR, Engineering, and Executive stakeholders. - Strong program management and organizational skills with attention to detail. - Ability to operate independently in a high-accountability environment. - Familiarity with NIST or ISO aligned cybersecurity control framework. Bonus Points - Advanced degree or relevant certifications (CISSP, CISM, CRISC, etc.). Benefits - Comprehensive benefits package, including healthcare benefits, retirement benefits, pet insurance, paid holidays, paid Scopely free days, and unlimited paid time off. Salary Information For candidates in CA, CO, NJ, NY, and WA, the annual salary range is provided below. In addition to base pay, employees may be eligible for equity and bonuses. Base pay offered may vary depending on job-related knowledge, skills, and experience. - CA, CO, NJ, NY, and WA Annual Salary Range: $145,000 — $184,800 USD.

Role Description Exciting Mainframe Security SME, 12 months, contract opportunity. Seeking a Mainframe Security SME to support: - Project: Migration from Broadcom ACF2 to RACF. - Lead the end-to-end migration from ACF2 to RACF, including planning, design, testing, cutover, and stabilization. - Develop and maintain the migration roadmap, timelines, and risk mitigation strategies. - Conduct detailed analysis of existing ACF2 rules, resource definitions, and access models to map them to RACF equivalents. - Build automated or semi-automated processes to streamline conversion and validation. - Technical Engineering & Architecture - Design RACF class structures, grouping, profiles, and naming standards aligned with enterprise security policies. - Implement RACF administration best practices, including role-based access, dataset protection, digital certificates, and password/MFA integration. - Configure and optimize z/OS security components such as ICSF, PKI, SAF exits, and SMF logging. - Develop scripts, tools, and utilities to support RACF administration and reporting. - Governance, Compliance & Risk Management - Ensure RACF implementation aligns with regulatory requirements (SOX, PCI, HIPAA, etc.). - Partner with audit teams to provide evidence, reporting, and remediation guidance. - Establish RACF operational procedures, access request workflows, and ongoing governance models. Company Description

Job Information Job Title: Information Security Officer 2 (Cyber Threat Hunting) Job Requisition ID: 82285 Ministry: Technology and Innovation Location: Remote across Alberta Full or Part-Time: Full Time Hours of Work: 36.25 hours per week Permanent/Temporary: Permanent Scope: Open Competition Closing Date: April 29, 2026 Classification: Systems Analyst Level 2 Salary: $3,115.21 - $4,277.30/ Biweekly ($81,306 - $111,637/ per year) Every member of Technology and Innovation strives to enable the success of our Ministry partners and Albertans through providing exceptional client focused services that meet and exceed our clients’ expectations. We are looking for collaborative, agile, solutions focused individuals with strong communication skills and strong service orientation. If that describes you, please read on! To learn more about us, please visit our ministry’s web page (https://www.alberta.ca/technology-and-innovation.aspx) and Cybersecurity in Alberta (https://www.alberta.ca/cybersecurity-in-alberta.aspx). The passionate and solutions focused people that we hire help us to drive vital programs and services that affect Albertans. Whatever your position is here, you will be a part of something great. Join us! Role Responsibilities The Government of Alberta (GoA) is expanding its cybersecurity force and is actively recruiting a talented professional to join our Cyber Threat Hunting Team. We’re seeking a strategic and forward thinking Information Security Officer at the ISO2 level. One permanent position is available in the following specialized area within the Cybersecurity Division: - Cyber Threat Hunting Team As an Information Security Officer, you are tasked with protecting the confidentiality, integrity and availability of the Government of Alberta's (GoA) information assets. You are responsible for identifying, assessing, monitoring, detecting, investigating, researching, and responding to vulnerabilities, threats and incidents impacting the security of information assets. Role & Responsibilities : This position delivers proactive cybersecurity through penetration testing and threat hunting, protecting Government of Alberta information assets by identifying vulnerabilities, investigating threats, and improving controls and monitoring. Operating within policies, it collaborates with technical teams to perform authorized assessments and proactive investigations to identify indicators of compromise or suspicious activity. Responsibilities: Some of the responsibilities of this position include but are not limited to: - Conduct threat hunts using defined hypotheses and available data sources, analyzing logs and endpoint telemetry for anomalies - Perform penetration testing of networks, systems, and applications using established methodologies and standards - Identify and validate vulnerabilities, supporting exploitation and post-exploitation activities - Document findings from threat hunts and penetration tests To be successful in this position, you will demonstrate: - Ability to lead and remain calm in times of crisis. - Excellent verbal and written communication skills for executive briefings and technical discussions. - Demonstrated ability to collaborate effectively and secure alignment across multiple stakeholders. - A sense of curiosity to investigate root cause and identify options and a recommendation. - Analytical and problem-solving skills for complex environments. AI-First Mindset This role is designed with an AI-first approach to help you work smarter, not harder. You will leverage AI tools to: - Automate insights and personalize stakeholder engagement. - Create tailored, high-impact materials using AI-assisted content generation. - Develop and track KPIs using AI to surface trends and predict outcomes. - Demonstrate proficiency in utilizing AI to address complex problems and automate analysis of extensive datasets. If you’re passionate about safeguarding Alberta’s digital landscape and ready to contribute to high impact, mission critical work, this is an exciting opportunity to make a meaningful difference! - Please click on this link to view the job description for this position. APS Competencies Competencies are behaviors that are essential to reach our goals in serving Albertans. We encourage you to have an in depth understanding of the competencies that are required for this opportunity and to be prepared to demonstrate them during the recruitment process. This link will assist you with understanding competencies: https://www.alberta.ca/system/files/custom_downloaded_images/psc-alberta-public-service-competency-model.pdf. Some of the competencies critical for this position include: - Systems Thinking: You will consider the whole system when developing, evaluating and implementing process and technology change. - Creative Problem Solving: You will assess options and implications in new ways to achieve outcomes and solutions. - Agility: You will need to provide results in a complex, diverse and changing environment. - Develop self and others: A commitment to lifelong learning and the desire to invest in the development of the long-term capability of yourself and others. - Drive for Results: Knowing what outcomes are important and maximizing resources to achieve results that are aligned with the goals of the organization, while maintaining accountability to each other and external stakeholders. - Build Collaborative Environments: Leads and contributes to the conditions and environments that allow people to work collaboratively and productively to achieve outcomes. - Develop Networks: Proactively building networks, connecting, and building trust in relationships with different stakeholders. Qualifications Required: - A university degree in Computer Science, Information Technology, or a related field. - Minimum of 2 years of related experience. Equivalencies: - - A Related two-year diploma from a recognized post secondary institution and a minimum of four (4) years related experience; or - A related one-year certificate from a recognized post secondary institution and minimum of five (5) years related experience. Additional Required Experience: - Experience in Information Systems Security, IT Infrastructure Planning, and/or IT Architecture. - Experience in Information Technology or related role with an emphasis in Cyber Threat Hunting - Security certification such as CISSP, CISM, CISA, CRISC, SANS, CEH, GPEN, or equivalent, and it is expected that incumbents would be working towards multiple certifications. - Cover Letter - Please include a cover letter that clearly outlines your relevant experience along with the years of experience that you possess in your preferred specialized area/areas in Cybersecurity. Assets : - Experience with AI-powered cybersecurity tools and techniques. - Proven experience delivering information security services in operational environments. - Hands-on experience using cybersecurity tools and technologies to support information security functions. - Experience conducting research using open sources. - Knowledge of network protocols and how adversaries utilize them to facilitate intrusions. - Experience attributing malicious activity to known threat actors and uncovering their motivations, affiliations, and any further context. - Proficient in one or more programming language (e.g., Python, C, C++), and one or more query language (e.g., KQL, SQL). - Strong critical thinking, analytical and problem-solving skills, including the ability to deal with large amounts of information in a limited time. - Excellent communication skills, both written and verbal. Ability to communicate technical information to diverse audiences – both technical and non-technical – in a clear and concise manner. - Experience translating complex information into clear, high-quality briefings for executive management. - Familiarity with Microsoft Azure suite of products, including Microsoft Sentinel and Microsoft 365 Defender. *** Applications will be evaluated, and candidates will be considered for the position/classification, that is most closely aligned with their skills, qualifications, and relevant experience. (Minimum recruitment standards outline the minimum education and experience required for appointment to a job classification. Refer to https://www.alberta.ca/alberta-public-service-minimum-recruitment-standards. Notes Term of Employment: Permanent Full-time position Hours of Work: 36.25hrs/ week – Monday to Friday Location: Remote across Alberta This position is eligible for remote work. You must reside in Alberta to work remotely. A written assessment may be required as part of the interview process. Depending on the project, on-call rotation and overtime may be required. Final candidate will be required to undergo enhanced security screening. This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. Applicants are advised to provide a cover letter summarizing information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Any costs associated with obtaining the required documents/checks as noted or interview travel expenses, will be the responsibility of the candidate. Out-of-province applicants can obtain the required documents/checks from the province they currently reside in. Links and information on what the GoA have to offer to prospective employees. - Working for the Alberta Public Service - https://www.alberta.ca/advantages-working-for-alberta-public-service.aspx. - Public Service Pension Plan (PSPP) - https://www.pspp.ca. - Alberta Public Service Benefit Information - https://www.alberta.ca/alberta-public-service-benefits. - Professional learning and development - https://www.alberta.ca/professional-development-support-directive. - Research Alberta Public Service Careers tool – https://researchapscareers.alberta.ca. - Cybersecurity in Alberta - https://www.alberta.ca/cybersecurity-in-alberta - Positive workplace culture and work-life balance. - Leadership and mentorship programs How To Apply Applicants are advised to provide information that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies. Candidates are required to apply for a job online. Please visit https://www.alberta.ca/job-application-resources#before for more information. Please visit Recruitment Principles, for more information. It is recommended applicants who have completed post-secondary studies from outside of Canada obtain an evaluation of their credentials from the International Qualifications Assessment Service (IQAS)(https://www.alberta.ca/international-qualifications-assessment.aspx) or from a recognized Canadian Credential Evaluator; please visit the Alliance of Credential Evaluation Services of Canada for more information (https://canalliance.org/en/default.html). It is recommended that applicants include the assessment certificate from IQAS or any other educational assessment service as part of their application. Closing Statement This competition may be used to fill future vacancies, across the Government of Alberta, at the same or lower classification level. We thank all applicants for their interest. All applications will be reviewed to determine which candidates' qualifications most closely match the advertised requirements. Only individuals selected for interviews will be contacted. If you require any further information on this job posting or require an accommodation during the recruitment process, please contact Michelle Elliott at Michelle.Elliott@gov.ab.ca.