Job Description
Nature of the Work
The Information Technology organization is currently looking for a Student to join the Governance, Risk, and Compliance (GRC) team. The candidate will work 35 hours during off‑school periods and part time during school periods for up to 22 hours.
As an integral function within the Finance and Services portfolio, the IT organization is a key stakeholder and contributor. IT provides computing, network, and media services in support of learning, teaching, research, and administration at the University of Calgary. Critical to the technology strategy is an understanding that technology has a dual responsibility within the University: meeting the expectation that technology is available and reliable and must enable an environment of learning and discovery by supporting the teaching and research communities.
GRC focuses on developing, enhancing, and maintaining end‑to‑end processes in compliance with control frameworks for managing the University’s information and related technologies. The incumbent ensures that core processes, controls and compliance requirements align to the needs of the University, providing leadership and technical guidance to both IT and Business Units on the identification and mitigation of technology risk.
As a member of the GRC team, you will report to the Manager of the GRC department to support the coordination and facilitation of the University’s security governance goals and initiatives, assisting with day‑to‑day activities, and will have the opportunity to lead small risk assessments during the internship period.
Primary Purpose of the Position
The successful candidate will help execute cyber security risk assessments of the University of Calgary suppliers. You will provide specialized expertise and guidance on assessing risks, identifying potential gaps, and will also be required to maintain the risk acceptance tracking process and maintain residual risks in the cyber security risk register while tracking remediation activities with key business and technical stakeholders.
Accountabilities / Tasks and Duties
Assist in tracking and monitoring status of information security risks (policy exceptions and non-conformities)
Perform risk assessments reviews related to vendor risk management. Assist with annual reviews of mission critical vendors
Assist with data analysis, documentation, and ad‑hoc projects related to governance, compliance, and risk management topics
Provide support for audit preparedness
Track status on Information Security Policy and Process annual reviews
Handle sensitive and/or confidential material and information with suitable discretion
Qualifications / Expertise Required
Actively pursuing a bachelor's degree in Computer Science, Cyber Security, Information Systems, Information Security and Privacy, Technology Management, Software security or related field at the University of Calgary.
A general understanding of networks, operating systems, cloud operations and associated technologies and services
Knowledge and/or understanding of common industry frameworks, including NIST Cyber Security Framework (CSF), NIST 800-53, ISO 27001 and 27002, Payment Card Industry (PCI) Data Security Standard (DSS), or OWASP is considered an asset
Must have advanced ability in the use of Microsoft Office which includes Access, Excel, Word, and PowerPoint
Strong organizational, process development and documentation skills
Ability to communicate clearly and concisely to diverse audiences, in both oral and written form
It is imperative that the incumbent for this role has a strong sense of ownership, is a strong team player, and can balance technical capabilities with business needs
Strong organizational, interpersonal, and written communication skills and the ability to communicate effectively with diverse business units, technology staff, vendors and auditors is essential
Application Deadline
March 13, 2026.
Legal and EEO Statement
As an equitable and inclusive employer, the University of Calgary recognizes that a diverse staff/faculty benefits and enriches the work, learning and research experiences of the entire campus and greater community. We are committed to removing barriers that have been historically encountered by some people in our society. We strive to recruit individuals who will further enhance our diversity and will support their academic and professional success while they are here. In particular, we encourage members of the designated groups (women, Indigenous peoples, persons with disabilities, members of visible/racialized minorities, and diverse sexual orientation and gender identities) to apply. To ensure a fair and equitable assessment, we offer accommodation at any stage during the recruitment process to applicants with disabilities. Questions regarding diversity, equity and inclusion at UCalgary can be sent to the Office of Institutional Commitments ( [email protected] ) and requests for accommodations can be sent to People & Culture ( [email protected] ).
We encourage all qualified applicants to apply, however preference will be given to Canadian citizens and permanent residents of Canada.
#J-18808-Ljbffr
