IS3 Information Technologist 3
Regular/full-time
Innovation and New Technology
Cybersecurity and IT Risk
Winnipeg MB
Advertisement Number: 45462
Salary(s): IS3 $78,527.00 - $104,816.00 per year
Closing Date: July 27, 2026
The Manitoba government recognizes the importance of building an exemplary public service reflective of the citizens it serves, where diverse abilities, backgrounds, cultures, identities, languages and perspectives drives a high standard of service and innovation. The Manitoba government supports equitable employment practices and promotes representation of designated groups (women, Indigenous people, persons with disabilities, visible minorities).
Employment Equity is a factor in selection for this competition. Consideration will be given to women, Indigenous people, visible minorities and persons with disabilities.
An eligibility list may be created for similar positions and will remain in effect for 12 months.
To be considered for this competition, you must submit an application screening form with a resume. See below for instructions:
Click here to access the application screening form.
Duties:
The IT Risk Analyst provides specialized cybersecurity and technology risk analysis and advisory services in support of government wide cybersecurity risk management, compliance, and audit readiness activities. The role independently conducts complex risk assessments, interprets cybersecurity and control requirements, develops risk treatment strategies, and provides expert guidance and recommendations to departmental stakeholders, projects, and service providers.
Qualifications:
Essential:
- Post-secondary education in information technology, cybersecurity, computer science, or an equivalent combination of education and experience.
- Experience conducting cybersecurity, information security, technology risk, compliance, or audit-related activities within complex technology environments.
- Experience conducting risk assessments and analyzing technical, operational, and compliance-related risks, including identifying vulnerabilities, control gaps, and mitigation strategies.
- Experience interpreting and applying cybersecurity, risk management, governance, or control frameworks, standards, and best practices with explicit experience utilizing frameworks such as the NIST CSF or ISO 27005—and providing risk-related advice and recommendations to technical, business, or management stakeholders.
- Strong analytical and problem-solving skills with the ability to assess complex information, identify trends, and support data-driven, risk-informed decision making.
- Strong written communication skills with experience preparing risk assessments, professional reports, risk registers, metrics, or compliance-related documentation.
- Strong verbal communication skills with the ability to translate complex technical and risk-related information clearly to diverse audiences.
- Ability to manage multiple priorities and collaborate effectively with internal and external stakeholders in a complex and evolving environment.
Desired:
- Experience evaluating the security postures of third-party vendors, cloud services, or SaaS providers, including reviewing SOC 2 reports, penetration test evidence, or security attestations.
- Experience developing and maintaining centralized risk and exception registers, risk metrics, dashboards (KRIs/KPIs), or governance reporting tools.
- Possession of a relevant industry certification such as Security+, CRISC, CISA, CISSP, or an equivalent certification.
Conditions of Employment:
- Must be legally entitled to work in Canada
- Must be able to provide a satisfactory Criminal Record Check (CRC).
Advertisement # 45462
Talent Acquisition
Human Resource Services
600-259 Portage Avenue
Winnipeg, MB, R3B 2A9
Phone: 204-945-7518
Fax: 204-945-0601
WHEN APPLYING TO THIS POSITION, PLEASE INDICATE THE ADVERTISEMENT NUMBER AND POSITION TITLE IN THE SUBJECT LINE AND/OR BODY OF YOUR EMAIL.
Applicants may request reasonable accommodation related to the materials or activities used throughout the selection process. When applying to this position, please indicate the advertisement number and position title in the subject line and/or body of your email. Your cover letter, resumé and/or application must clearly indicate how you meet the qualifications.
Please be advised that job competitions for represented positions may be grieved by internal represented applicants. Should a selection grievance be filed, information from the competition file will be provided to the grievor's representative. Personal information irrelevant to the grievance and other information protected under legislation will be redacted.
We thank all who apply and advise that only those selected for further consideration will be contacted.
_