Cybersecurity Analyst

The Canadian Centre of Recovery Excellence (CoRE) is a trailblazing Crown corporation backed by the Government of Alberta dedicated to transforming the recovery journey for individuals facing mental illness and addiction. By providing decision-makers with cutting‑edge data evidence and actionable insights, CoRE paves the way for impactful recovery solutions.

Through groundbreaking research, world‑class data and analytics expertise, and strong collaborations, CoRE is driving meaningful change at every level of the system. With an unwavering commitment to real‑world results, CoRE is not just supporting recovery—it is shaping a brighter future for all Albertans.

As a trusted advisor to governments, healthcare professionals, and global leaders, CoRE empowers communities to deliver recovery‑focused mental health and addiction services that truly make a difference.

As part of the Data and Analytics division, the Cybersecurity Analyst supports developing and implementing CoRE’s cybersecurity framework and related policies. This role provides strategic guidance to senior leaders (Chief Information Officer (CIO), Chief Privacy Officer (CPO), General Counsel, and other IT leaders) ensuring alignment with CoRE’s data strategy and priorities. The Cybersecurity Analyst advises CoRE’s divisions on applying cybersecurity policies across cloud platforms, supporting risk management initiatives, including mitigation planning and business continuity, and collaborates with external cybersecurity service providers to strengthen the organization’s overall security posture.

• Cybersecurity Framework and Implementation – Contribute to the development of the cybersecurity framework, support the integration of policies, procedures, and ensure the use of best practices to protect CoRE’s AWS and other cloud technology assets. Assist in developing framework elements, support creation of performance measures, participate in IT risk management strategy, ensure legal and ethical obligations, align with Alberta IT services, evaluate security operations, conduct regular reviews, provide guidance to program areas, complete vulnerability audits, support investigations and monitoring of security incidents.
• Risk Mitigation and Business Continuity / Disaster Recovery – Maintain and update CoRE’s risk registry of significant IT risks, assist in developing and maintaining IT Business Continuity and Disaster Recovery plans, support tabletop exercises and communications, monitor and report on significant security risks, and support development of Risk Threat Assessments (TRA) and collaborate on Privacy Impact Assessments (PIA).
• CoRE Priorities Advancement – Provide security issue analysis, recommendations, and advice to guide executive decision‑making and planning; collaborate with IT leads to provide integrated and comprehensive security and technology protection; identify and raise awareness of emerging issues; prepare security briefings, draft policy and strategic documents, and respond to senior leaders’ requests.

Post‑secondary degree in computing science or technology‑related field. Minimum of 3–5 years of related experience in the cybersecurity industry. Relevant industry certification is an asset. Equivalent combinations of education and experience will be considered.

• Knowledge of and ability to interpret relevant legislation and policy (e.g., Health Information Act, Protection of Privacy Act (Alberta), Access to Information Act (Alberta), and CASL).
• ISO and NIST knowledge and expertise.
• Cybersecurity domain knowledge including confidentiality, integrity, and availability controls.
• Knowledge of cybersecurity technologies, markets, and vendors (firewalls, intrusion detection, assessment tools, encryption, certification authority, and web/application development).
• Full understanding of cyber threats and knowledge of cybersecurity roles, processes, and controls to mitigate risk.
• Knowledge of AWS, application and database security solutions used to store enterprise information, directory services, and information system auditing.
• Process improvement principles, methodologies, and practices.
• Risk management principles, methodologies, and practices.
• Project management processes, methodologies, principles, and techniques.
• Strong interpersonal communications, conflict resolution, and facilitation skills.
• Strategic thinking, planning, visioning, and the ability to translate strategy into business and operational plans.
• Well‑developed leadership skills.
• Ability to shift priorities as demands or directions change.
• Ability to exercise judgment and creative problem‑solving when evaluating complex situations with multi‑faceted criteria.
• Ability to influence behavior changes in others.

CoRE offers a pension plan with LAPP which provides a retirement income survivor benefits and early retirement options. As part of our commitment to employee well‑being, CoRE is pleased to provide a group benefits plan and health spending account, which includes extended health care coverage, travel insurance, dental care, specialized medical coverage, and more.

Prior to an offer of employment candidates are required to complete and maintain satisfactory Criminal Record, Education Verification, Canadian Work Authorization checks, and Conflict of Interest disclosure as applicable. Candidates who have completed post‑secondary studies outside of Canada may be required to provide an evaluation of their credentials from the International Qualifications Assessment Service (IQAS) or from a recognized Canadian Credential Evaluator; please visit the Alliance of Credential Evaluation Services of Canada for more information.

Applicants should provide a resume and cover letter that clearly and concisely demonstrates how their qualifications meet the advertised requirements, including education, experience, and relevant examples of required competencies.

October 19 2025

CoRE is committed to inclusiveness, equity, and accessibility and encourages all qualified candidates to apply. If you require accommodation during any portion of the selection process please let our team know.