Canadian Centre on Substance Abuse logo

Cybersecurity Data & AI Governance Specialist

Canadian Centre on Substance Abuse
1 hour ago
Full-time
On-site
Ottawa, Ontario, Canada
$57,600 - $64,800 CAD yearly
AI Governance

Position Profile: Cybersecurity, Data and Artificial Intelligence (AI) Governance Specialist

Reports to: Director, Information Systems & Web Services

Reason for Vacancy: New Position

About the Canadian Centre on Substance Use and Addiction

The Canadian Centre on Substance Use and Addiction (CCSA) changes lives by bringing people and knowledge together to reduce the harms of alcohol and other drugs on society. We partner with organizations and diverse communities to improve the wellness of people living in Canada. A non-governmental organization with a national focus, CCSA envisions a healthier Canadian society where evidence transforms approaches to substance use.

Acknowledgement

CCSA acknowledges that First Nations, Inuit and Métis people are the holders of Traditional Indigenous Knowledge. We respect the power of the Indigenous ways of knowing and of Traditional Indigenous Knowledge, and we commit to learning about and incorporating this knowledge into our work with proper guidance.The Canadian Centre on Substance Use and Addiction (CCSA) changes lives by bringing people and knowledge together to reduce the harms of alcohol and other drugs on society. We partner with organizations and diverse communities to improve the wellness of people living in Canada. A non-governmental organization with a national focus, CCSA envisions a healthier Canadian society where evidence transforms approaches to substance use. 

About the Position

The Cybersecurity, Data and Artificial Intelligence (AI) Governance Specialist supports the organization in strengthening its approach to information security, data governance, privacy, and the responsible use of AI. 

Working closely with the information technology (IT) team and business areas, this role helps implement practical policies, processes and safeguards that protect organizational data while enabling effective use of systems and emerging technologies. 

This is a hands-on role focused on implementation, coordination and continuous improvement.

Responsibilities and Accountabilities

Cybersecurity and Risk (Primary Focus)

  • Support the implementation of cybersecurity practices appropriate for a mid-sized not-for-profit 
  • Conduct basic risk and vulnerability assessments and track remediation activities 
  • Assist in maintaining incident response and business continuity procedures 
  • Monitor security configurations and flag risks or gaps to the Director, Information Systems and Web Services 
  • Support user access reviews and identity/access management practices 

Data Governance and Privacy

  • Help implement data governance standards (data classification, access, handling) 
  • Work with the Business Intelligence Specialist and Records Management Analyst to align data practices 
  • Support documentation of data flows, ownership and usage 
  • Assist in ensuring compliance with privacy requirements and organizational policies 

AI Governance and Responsible Use

  • Support the rollout of AI guidelines and acceptable use practices 
  • Help assess new AI tools for basic risks (privacy, security, data exposure) 
  • Identify practical opportunities for safe AI use across teams 
  • Provide guidance to staff on appropriate use of approved AI tools 

Collaboration & Coordination 

  • Work with: 
    • IT Technician and Analyst on implementation of controls 
    • Web/Application and Systems roles on secure design practices 
    • Business teams on improving data handling and tool usage 
  • Liaise with vendors (as needed) to support secure and compliant configurations 

This position profile is designed to provide an overview of the main responsibilities for the role. Other responsibilities not identified in this position profile may be assigned based on the person’s experience and operational requirements.

Qualifications

  • Post-secondary education in IT, Cybersecurity, Information Management or related field 
  • Minimum five years of experience in IT, with exposure to: 
    • Security practices 
    • Data handling or governance 
    • Systems or application environments 
  • Working knowledge of cybersecurity fundamentals (access control, endpoint security, risk awareness) 
  • Understanding of data governance and privacy principles 
  • Familiarity with Microsoft 365 and cloud-based environments 
  • Awareness of AI tools and associated risks (no deep technical AI expertise required) 
  • Ability to document processes and translate technical concepts into practical guidance 
  • Strong organizational and coordination skills 

Assets

  • Experience working in or with governmental, non-governmental or regulated environment
  • Bilingual in English and French

Working Conditions

  • Occasional high-intensity concentration
  • Occasional exposure to psychological challenging conditions, such as deadline pressure, interpersonal conflict or extended work hours 
  • Occasional mental attention required to alternate, flex or adapt one’s attention to handle simultaneous multiple urgent demands and/ or perform detail-oriented work with occasional interruptions
  • Frequent communication with internal and external contacts
  • Work performed in an office setup or from home (flex-hybrid model as applicable) environment, with occasional on-site presence and extended hours during events
  • Physical demands are minimal; no sustained physical exertion is required

CCSA Values 

CCSA is committed to equity, diversity and inclusion in all aspects of our work. As an organization, we are committed to ensuring that First Nations, Inuit and Métis people and all equity-deserving groups are fully represented, including women, people of colour, people with disabilities and people who members of the 2SLGBTQ+ community.

CCSA is dedicated to learning from and supporting people with lived and living experience of substance use health. We encourage people with lived and living experience of substance use to apply to join the CCSA team.
 
CCSA promotes the rights of all people with disabilities as outlined in the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act, 2005, and its related Integrated Accessibility Standards Regulation. CCSA will make appropriate accommodations on request. Please inform CCSA in advance of a request for accommodation during the recruitment process by emailing hiring@ccsa.ca.

Artificial Intelligence (AI) Disclosure

At CCSA, we are committed to maintaining a fair and equitable hiring process. We do not use artificial intelligence (AI) to screen, assess or select applicants for any position. While mandatory eligibility questions may be used to confirm minimum requirements, all applications are reviewed and all hiring decisions are made by our hiring team, ensuring that each candidate is thoughtfully and individually evaluated based on their overall qualifications and experience

How to Apply 

If you are interested in this position, please submit a cover letter and resumé. Located in Ottawa, CCSA works within a flex-hybrid model. The successful candidate must be willing to be onsite to attend in-person activities as required. We thank all applicants. Only candidates selected for an interview will be contacted.

No agencies please.