PrISM Business Systems Analyst
About the role
Staff - Non Union
Job Category
M&P - AAPS
Job Profile
AAPS Salaried - Information Systems and Technology, Level C
Job Title
PrISM Business Systems Analyst
Department
Privacy and Information Security | Safety & Risk Services | VP Finance and Operations
Compensation Range
$6,747.50 - $9,701.42 CAD Monthly
The Compensation Range is the span between the minimum and maximum base salary for a position. The midpoint of the range is approximately halfway between the minimum and the maximum and represents an employee that possesses full job knowledge, qualifications and experience for the position. In the normal course, employees will be hired, transferred or promoted between the minimum and midpoint of the salary range for a job.
Posting End Date
March 8, 2026
Note: Applications will be accepted until 11:59 PM on the Posting End Date.
Job End Date
Ongoing
This position is expected to be filled by promotion/reassignment and is included here to inform you of its vacancy at the University.
At UBC, we believe that attracting and sustaining a diverse workforce is key to the successful pursuit of excellence in research, innovation, and learning for all faculty, staff and students. Our commitment to employment equity helps achieve inclusion and fairness, brings rich diversity to UBC as a workplace, and creates the necessary conditions for a rewarding career.
Job Summary:
The PrISM (Privacy and Information Security) Business Systems Analyst operates within the Privacy & Information Security Management (PrISM) Safety & Risk Service (SRS) team. UBC’s PrISM program is an ongoing initiative to reduce the risk of a major privacy or information security breach at UBC through security governance, technology advancement, training, awareness and communications, risk management and compliance support, system identification and classification.
The PrISM Safety & Risk Services team is a key component of the PrISM program, delivering Privacy Impact Assessments (PIA) that consider privacy, operational, application and security risks and threats; campus wide training; and risk advisory services to UBC. The team’s focus is to maintain public trust in UBC, protect personal information of the community and keep confidential information secure, whilst enabling technology-supported business initiatives to succeed.
This role is a combination of business analysis, process design and project coordination. It is a hands-on role that requires experience and expertise managing components of projects and processes related to privacy and security risk assessment and mitigation activities, Governance Risk and Compliance solutions and community engagement, with domain knowledge in Information Security and Privacy.
Organizational Status:
The Privacy and Information Security Business Systems Analyst will support the Privacy and Information Security Management (PrISM) program at UBC as part of the SRS team.
The incumbent will work with and provide support to the Privacy Management and Compliance Support programs, conducting business analyses, project coordination, managing communications, tracking progress, and other associated project tasks.
The incumbent will collaborate and work closely with a variety of constituents at the University, including Office of the University Counsel, Enterprise Data Governance, Records Management Office, Enterprise Risk Management, UBC IT Security and Faculty IT teams.
Specific Duties:
- Lead the assessment of PrISM SRS project needs (risk assessments, i.e. PIA/STRAs, advisory services, information security compliance support, training development), utilizing a structured requirements process (gathering, analyzing, documenting, and managing changes) to identify business priorities and recommend options.
- Lead short-term planning sessions to implement integrated PIA / STRA process improvements and documents discussion and agreements.
- Guided by project managers, and managers, ensures solutions are consistent with the overall technical and business architecture of the university and complies with UBC IT and university policies, as well as governmental legislation and other external entities compliancy requirements on security, privacy, and accessibility.
- Co-ordinate PrISM SRS project-related communication activities and contribute to the development of marketing materials, Privacy Matters website improvements and communications plans.
- Work with SMEs to develop and document guidance for end users of PrISM SRS risk assessment, privacy management and compliance support services.
- Work with risk advisors and the CISO team to develop and document privacy and security risk assessment methodologies, including PIAs and STRAs.
- Identify, elicit and document PrISM SRS requirements, define business rules and communicate requirements for the implementation of business solutions.
- Work with subject matter experts and IT colleagues to document the business/ functional requirements for application and data integrations ensuring that all factors enabling the technical design and implementation of the requirements are included at an appropriate level of detail.
- Prepare functional, system and program specifications for technical solutions.
- Develop test cases and validate test results during user acceptance testing and system acceptance testing stages. Typically performs functional testing.
- Create and maintain project dashboard for PIA/STRA and Compliance Support projects.
- Conduct searches for relevant external articles, publications, monitor news feeds and announcements about legislation, privacy issues, security threats.
- Utilize SMEs and consults leadership to prepare documentation for PrISM SRS projects, including scope, schedule, resources, metrics, project status, RAID logs, RACI charts, Gantt charts, and organization charts.
- Provides input in the preparation of budget estimates and recommendations for staffing requirements for project plans.
- Manage the timely production of Investment Planning and Prioritization documentation such as Investment Request, Business Case, Project Charter, and Implementation Plan.
- Gather information and produce project procurement documentation (PR, RFI, RFP, RFQ) for PrISM SRS projects.
- Participate in the assessment of new technology to support privacy management, information security and risk management and enable business goals.
- Develop and assists in the presentation of business cases to PrISM Senior Managers and Directors.
- Work closely with managers to monitor mobilize and execute projects, plan resource utilization, assist with reporting status to PrISM leadership and Office of the CIO finance management.
Core Duties
- Acquire and maintain a working knowledge of the University's technical and business environment in order to better understand the business and their priorities. Based on client feedback, develop recommendations and present options for security improvements.
- Build and maintain strong and productive working relationships with team members, stakeholders, UBC IT, and other vendors / consultants.
- Manage project meetings including soliciting agenda items, chairing the meeting, and tracking to completion action items across the project within multiple teams.
- Maintain appropriate professional designations and up-to-date knowledge of current information security frameworks, methods, techniques and tools.
- Perform other related duties as required.
Consequence of Error/Judgment:
UBC is a complex organization that collects and uses information to support its mandate. An information breach (especially relating to personal or other high-risk information) could have a significant financial and reputational impact on the University.
The Privacy and Information Security Business Systems Analyst takes an active, participatory role in all aspects of the PrISM SRS Risk Assessment and Compliance Support activities, ensuring services meet or exceed customer service expectations.
Sound judgment must be exercised. Lack of good judgment may result in the failure to detect significant privacy and information security related exposures to the University's confidential information.
Supervision Received:
The Business Systems Analyst reports directly and works under the general direction of the Manager, PIA Operations and Engagement, PrISM SRS. The position may at times also work under the direction of a Project Manager while assigned to a project. The incumbent must be able to work independently, as part of a team, and cross functionally.
Supervision Given:
The Business Systems Analyst will not supervise any staff, but may provide input/recommendations into the hiring and evaluation of staff.
Education/Work Experience:
-
Undergraduate degree in Business, Computer Science or Management Information Systems is preferred. Minimum of 3 years of experience or the equivalent combination of education and experience. Experience in at least one of the following is an asset: communications, project management, privacy, information security or risk management.
-
Expertise in the design, development and implementation of specific applications.
-
Experience with data analysis and modeling, relevant development tools, specific application and system architecture.
-
Knowledge of project management, quality assurance, change management disciplines and best practices, and systems development methodologies.
-
Self-motivated with a strong commitment to providing high quality services, together with a thorough understanding and awareness of information security best practices and the ability to translate them into meaningful and value-added University-wide and local solutions.
-
Demonstrates the willingness, ability, and enthusiasm to learn new processes, methodologies or technologies.
-
Knowledge and ability to effectively use communication and collaboration technologies
-
Ability to effectively facilitate groups to achieve appropriate outcomes.
-
Excellent organizational, planning, and prioritization skills. Able to multi-task and deliver multiple assignments in a fast-paced and changing environment
Expectations for all UBC employees:
-
Willingness to respect diverse perspectives, including perspectives in conflict with one’s own
-
Demonstrates a commitment to enhancing one’s own awareness, knowledge, and skills related to equity, diversity, and inclusion
About Us
The University of British Columbia is a global centre for research and teaching, consistently ranked among the top 20 public universities globally. A large part of what makes us unique is the community of engaged students, faculty, and staff who are collectively committed to shaping a better world.
Recognized as a leading employer in British Columbia and Canada, UBC supports inspired students, faculty and staff on their journey of discovery, and challenges them to realize their greatest potential. New ideas, changing infrastructure, innovative technology, and fresh approaches are opening up possibilities for the future of research, teaching, and work. Are you ready to embrace the future together?
Equity and diversity are essential to academic excellence. An open and diverse community fosters the inclusion of voices that have been underrepresented or discouraged. We encourage applications from members of groups that have been marginalized on any grounds enumerated under the B.C. Human Rights Code, including sex, sexual orientation, gender identity or expression, racialization, disability, political belief, religion, marital or family status, age, and/or status as a First Nation, Metis, Inuit, and/or Indigenous person.
All qualified candidates are encouraged to apply; however Canadians and permanent residents will be given priority.
If you have any accommodation or accessibility needs during the job application process, please contact the Centre for Workplace Accessibility at
workplace.accessibility@ubc.ca
.
PrISM Business Systems Analyst
About the role
Staff - Non Union
Job Category
M&P - AAPS
Job Profile
AAPS Salaried - Information Systems and Technology, Level C
Job Title
PrISM Business Systems Analyst
Department
Privacy and Information Security | Safety & Risk Services | VP Finance and Operations
Compensation Range
$6,747.50 - $9,701.42 CAD Monthly
The Compensation Range is the span between the minimum and maximum base salary for a position. The midpoint of the range is approximately halfway between the minimum and the maximum and represents an employee that possesses full job knowledge, qualifications and experience for the position. In the normal course, employees will be hired, transferred or promoted between the minimum and midpoint of the salary range for a job.
Posting End Date
March 8, 2026
Note: Applications will be accepted until 11:59 PM on the Posting End Date.
Job End Date
Ongoing
This position is expected to be filled by promotion/reassignment and is included here to inform you of its vacancy at the University.
At UBC, we believe that attracting and sustaining a diverse workforce is key to the successful pursuit of excellence in research, innovation, and learning for all faculty, staff and students. Our commitment to employment equity helps achieve inclusion and fairness, brings rich diversity to UBC as a workplace, and creates the necessary conditions for a rewarding career.
Job Summary:
The PrISM (Privacy and Information Security) Business Systems Analyst operates within the Privacy & Information Security Management (PrISM) Safety & Risk Service (SRS) team. UBC’s PrISM program is an ongoing initiative to reduce the risk of a major privacy or information security breach at UBC through security governance, technology advancement, training, awareness and communications, risk management and compliance support, system identification and classification.
The PrISM Safety & Risk Services team is a key component of the PrISM program, delivering Privacy Impact Assessments (PIA) that consider privacy, operational, application and security risks and threats; campus wide training; and risk advisory services to UBC. The team’s focus is to maintain public trust in UBC, protect personal information of the community and keep confidential information secure, whilst enabling technology-supported business initiatives to succeed.
This role is a combination of business analysis, process design and project coordination. It is a hands-on role that requires experience and expertise managing components of projects and processes related to privacy and security risk assessment and mitigation activities, Governance Risk and Compliance solutions and community engagement, with domain knowledge in Information Security and Privacy.
Organizational Status:
The Privacy and Information Security Business Systems Analyst will support the Privacy and Information Security Management (PrISM) program at UBC as part of the SRS team.
The incumbent will work with and provide support to the Privacy Management and Compliance Support programs, conducting business analyses, project coordination, managing communications, tracking progress, and other associated project tasks.
The incumbent will collaborate and work closely with a variety of constituents at the University, including Office of the University Counsel, Enterprise Data Governance, Records Management Office, Enterprise Risk Management, UBC IT Security and Faculty IT teams.
Specific Duties:
- Lead the assessment of PrISM SRS project needs (risk assessments, i.e. PIA/STRAs, advisory services, information security compliance support, training development), utilizing a structured requirements process (gathering, analyzing, documenting, and managing changes) to identify business priorities and recommend options.
- Lead short-term planning sessions to implement integrated PIA / STRA process improvements and documents discussion and agreements.
- Guided by project managers, and managers, ensures solutions are consistent with the overall technical and business architecture of the university and complies with UBC IT and university policies, as well as governmental legislation and other external entities compliancy requirements on security, privacy, and accessibility.
- Co-ordinate PrISM SRS project-related communication activities and contribute to the development of marketing materials, Privacy Matters website improvements and communications plans.
- Work with SMEs to develop and document guidance for end users of PrISM SRS risk assessment, privacy management and compliance support services.
- Work with risk advisors and the CISO team to develop and document privacy and security risk assessment methodologies, including PIAs and STRAs.
- Identify, elicit and document PrISM SRS requirements, define business rules and communicate requirements for the implementation of business solutions.
- Work with subject matter experts and IT colleagues to document the business/ functional requirements for application and data integrations ensuring that all factors enabling the technical design and implementation of the requirements are included at an appropriate level of detail.
- Prepare functional, system and program specifications for technical solutions.
- Develop test cases and validate test results during user acceptance testing and system acceptance testing stages. Typically performs functional testing.
- Create and maintain project dashboard for PIA/STRA and Compliance Support projects.
- Conduct searches for relevant external articles, publications, monitor news feeds and announcements about legislation, privacy issues, security threats.
- Utilize SMEs and consults leadership to prepare documentation for PrISM SRS projects, including scope, schedule, resources, metrics, project status, RAID logs, RACI charts, Gantt charts, and organization charts.
- Provides input in the preparation of budget estimates and recommendations for staffing requirements for project plans.
- Manage the timely production of Investment Planning and Prioritization documentation such as Investment Request, Business Case, Project Charter, and Implementation Plan.
- Gather information and produce project procurement documentation (PR, RFI, RFP, RFQ) for PrISM SRS projects.
- Participate in the assessment of new technology to support privacy management, information security and risk management and enable business goals.
- Develop and assists in the presentation of business cases to PrISM Senior Managers and Directors.
- Work closely with managers to monitor mobilize and execute projects, plan resource utilization, assist with reporting status to PrISM leadership and Office of the CIO finance management.
Core Duties
- Acquire and maintain a working knowledge of the University's technical and business environment in order to better understand the business and their priorities. Based on client feedback, develop recommendations and present options for security improvements.
- Build and maintain strong and productive working relationships with team members, stakeholders, UBC IT, and other vendors / consultants.
- Manage project meetings including soliciting agenda items, chairing the meeting, and tracking to completion action items across the project within multiple teams.
- Maintain appropriate professional designations and up-to-date knowledge of current information security frameworks, methods, techniques and tools.
- Perform other related duties as required.
Consequence of Error/Judgment:
UBC is a complex organization that collects and uses information to support its mandate. An information breach (especially relating to personal or other high-risk information) could have a significant financial and reputational impact on the University.
The Privacy and Information Security Business Systems Analyst takes an active, participatory role in all aspects of the PrISM SRS Risk Assessment and Compliance Support activities, ensuring services meet or exceed customer service expectations.
Sound judgment must be exercised. Lack of good judgment may result in the failure to detect significant privacy and information security related exposures to the University's confidential information.
Supervision Received:
The Business Systems Analyst reports directly and works under the general direction of the Manager, PIA Operations and Engagement, PrISM SRS. The position may at times also work under the direction of a Project Manager while assigned to a project. The incumbent must be able to work independently, as part of a team, and cross functionally.
Supervision Given:
The Business Systems Analyst will not supervise any staff, but may provide input/recommendations into the hiring and evaluation of staff.
Education/Work Experience:
-
Undergraduate degree in Business, Computer Science or Management Information Systems is preferred. Minimum of 3 years of experience or the equivalent combination of education and experience. Experience in at least one of the following is an asset: communications, project management, privacy, information security or risk management.
-
Expertise in the design, development and implementation of specific applications.
-
Experience with data analysis and modeling, relevant development tools, specific application and system architecture.
-
Knowledge of project management, quality assurance, change management disciplines and best practices, and systems development methodologies.
-
Self-motivated with a strong commitment to providing high quality services, together with a thorough understanding and awareness of information security best practices and the ability to translate them into meaningful and value-added University-wide and local solutions.
-
Demonstrates the willingness, ability, and enthusiasm to learn new processes, methodologies or technologies.
-
Knowledge and ability to effectively use communication and collaboration technologies
-
Ability to effectively facilitate groups to achieve appropriate outcomes.
-
Excellent organizational, planning, and prioritization skills. Able to multi-task and deliver multiple assignments in a fast-paced and changing environment
Expectations for all UBC employees:
-
Willingness to respect diverse perspectives, including perspectives in conflict with one’s own
-
Demonstrates a commitment to enhancing one’s own awareness, knowledge, and skills related to equity, diversity, and inclusion
About Us
The University of British Columbia is a global centre for research and teaching, consistently ranked among the top 20 public universities globally. A large part of what makes us unique is the community of engaged students, faculty, and staff who are collectively committed to shaping a better world.
Recognized as a leading employer in British Columbia and Canada, UBC supports inspired students, faculty and staff on their journey of discovery, and challenges them to realize their greatest potential. New ideas, changing infrastructure, innovative technology, and fresh approaches are opening up possibilities for the future of research, teaching, and work. Are you ready to embrace the future together?
Equity and diversity are essential to academic excellence. An open and diverse community fosters the inclusion of voices that have been underrepresented or discouraged. We encourage applications from members of groups that have been marginalized on any grounds enumerated under the B.C. Human Rights Code, including sex, sexual orientation, gender identity or expression, racialization, disability, political belief, religion, marital or family status, age, and/or status as a First Nation, Metis, Inuit, and/or Indigenous person.
All qualified candidates are encouraged to apply; however Canadians and permanent residents will be given priority.
If you have any accommodation or accessibility needs during the job application process, please contact the Centre for Workplace Accessibility at
workplace.accessibility@ubc.ca
.