Job Specifications
Competition # : 47834
Department: Cyber Security & Digital Solutions
Location: HALIFAX
Type of Employment: Permanent
Union Status: Exclusion - Non Union - NSPG
Closing Date: 25-Feb-26 (Applications are accepted until 11:59 PM Atlantic Time)
About Us
At CSDS, we prioritize people—both within our team and in the communities we serve. Our mission is to redefine how Nova Scotians engage with government by creating accessible, reliable digital solutions centered around user needs.
In today’s tech-driven world, CSDS empowers government departments with essential digital solutions to meet Nova Scotians’ expectations. As a trusted partner across government, we enable departments to fulfill their mandates with secure, user-friendly services. From healthcare and education to public safety, we collaborate to transform how services are designed and delivered.
We don’t just implement technology; we modernize outdated systems and reimagine processes. Our agile, data-driven approach ensures that digital services are both efficient and adaptable to Nova Scotia’s evolving needs.
Joining CSDS means contributing to work that makes a real difference. From providing vital tech support to healthcare professionals to strengthening cybersecurity and developing scalable digital platforms, you’ll play a key role in building a more inclusive, responsive government for Nova Scotians.
Together, we’re setting new standards for digital public service, delivering resilient solutions that meet today’s needs—and anticipate tomorrow’s challenges.
About Our Opportunity
As the Manager, Cyber and Risk, you will play a key leadership role in shaping how cybersecurity risk is understood and managed across digital initiatives across government.
You will lead a team focused on assessing cyber risk and embedding cyber security risk management throughout the technology delivery lifecycle.
In this role, you’ll promote a risk-aware, secure-by-design culture and build strong, collaborative relationships with business owners, delivery teams, and partners across government, healthcare, and education.
You’ll contribute to the development of cybersecurity frameworks and standards, and support stakeholders in making informed, risk-based decisions. Your work will have a direct and meaningful impact, helping ensure the delivery of secure, resilient, and trusted digital services that Nova Scotians rely on every day.
Primary Accountabilities
As the Manager, Cyber and Risk, you will be responsible for:
Lead, mentor, and develop the cyber and risk team.
Collaborate with delivery teams and partners to determine the required cyber security risk assessments and provide guidance on scope and expectations.
Oversee the execution of cyber security risk assessments for systems, applications, services, vendors, AI and cloud platforms.
Ensure security risk assessments consistently identify risks, evaluate control effectiveness, and provide well-reasoned recommendations.
Support the procurement of technology products and services by identifying cyber security requirements for RFPs, participating in response evaluation, and advising on contractual security terms.
Ensure risk treatment plans are properly reported and recorded.
Establish, refine, and promote cyber security standards, processes, and assurance frameworks.
Facilitate workshops and discussions with non-technical audiences to explain security risks, trade-offs, and expectations in clear, practical terms.
Build strong cross-functional relationships with CSDS colleagues and partners.
Support the creation of a risk aware culture and foster secure-by-design thinking throughout the organization.
Evolve and adapt risk assessment processes and procedures to keep up-to-date with the changing cyber security landscape.
Qualifications And Experience
To be considered for this opportunity, you hold experience and/or expertise in the following areas:
Undergraduate degree in Computer Science, Engineering, Science or related technical degree or an equivalent combination of education and experience.
Minimum 5 years of progressive leadership experience in cyber security, IT governance, technology risk management, including direct people management experience.
Strong knowledge of cyber security frameworks and standards (e.g., NIST CSF / 800-53, ISO/IEC 27001, CIS Controls, SOC 2) and the ability to apply them pragmatically.
Experience integrating cyber security and risk considerations into system or solution design, including Agile and DevSecOps delivery environments.
Experience managing formal risk documentation and reporting processes (e.g., risk tracking, decision logs, dashboards).
Experience managing formal risk documentation and reporting processes.
Experience leading, coaching, and developing professional staff.
Experience working collaboratively with cross-functional teams in complex, multi-stakeholder environments
Demonstrated ability to work collaboratively and lead change with multi-disciplinary team