Job Description
Job Title: IT Security TRA and C&A Analyst
Location: Ottawa, Ontario (Hybrid, 2-3 days per week on-site)
Language: English required (strong written and verbal communication)
Duration: Contract (varying durations)
Security Clearance: Must be eligible to obtain Government of Canada Reliability Status
Compensation: TBD
About the Opportunity
This role is posted for proactive sourcing purposes only. Compensation and contract specifics will be confirmed once client requirements are finalized. We are actively building a pipeline of experienced IT Security Threat and Risk Assessment (TRA) and Certification & Accreditation (C&A) Analysts for upcoming Government of Canada initiatives.
As demand arises, you may be called upon to support federal departments in strengthening the security posture of critical IT systems. You will work closely with security architects, project teams, and business stakeholders to conduct security assessments, perform certification and accreditation activities, and ensure compliance with Government of Canada security policies and standards.
What's in It for You
You'll join a collaborative, people-first consulting environment that values innovation, partnership, and continuous learning. This work offers the opportunity to support high-profile Government of Canada initiatives that protect critical information and services. You'll gain exposure to enterprise-scale security programs while working alongside experienced security professionals and contributing to projects that directly support secure digital government.
Your Responsibilities
- Conduct Threat and Risk Assessments (TRAs) and Harmonized Threat and Risk Assessments (HTRAs) for Government of Canada systems.
- Perform Certification and Accreditation (C&A) activities throughout the system development lifecycle.
- Complete information and system sensitivity assessments in accordance with Government of Canada security standards.
- Review security architectures and identify risks, vulnerabilities, and mitigation strategies.
- Support vulnerability assessments, security audits, and risk assessments for new and existing systems.
- Prepare certification reports, accreditation packages, Statements of Residual Risk, briefing notes, executive summaries, and other security documentation.
- Collaborate with project teams, security architects, and technical stakeholders to ensure security requirements are integrated into solution designs.
- Provide recommendations to support compliance with Government of Canada security policies, standards, and best practices.
- Participate in security reviews and provide guidance throughout project planning, implementation, and deployment.
Skills and Qualifications
- 5+ years of experience in IT Security, with demonstrated experience performing Threat and Risk Assessments (TRA) and Certification & Accreditation (C&A) activities.
- Experience working within Government of Canada security environments and following federal security standards and frameworks.
- Knowledge of Government of Canada security policies, ITSG guidance, and Harmonized Threat and Risk Assessment (HTRA) methodologies.
- Experience conducting security architecture reviews, vulnerability assessments, and information/system sensitivity assessments.
- Ability to prepare clear technical documentation, certification reports, accreditation packages, and executive-level security correspondence.
- Strong analytical, problem-solving, and communication skills with the ability to work effectively with both technical and non-technical stakeholders.
- Professional security certifications (CISSP, CISM, CCSP, or similar) are considered an asset.
Why Partner with Altis
If you've never responded to a Government of Canada request, you're in good hands with Altis. With 35+ years of experience staffing federal projects, we understand procurement processes, hold multiple standing offers, and know how to position candidates competitively. We'll guide you through every step—gathering required information, presenting your experience accurately, and ensuring the process feels transparent, supportive, and personal.
We appreciate the time and effort all applicants invest in their submissions. Please note that only candidates shortlisted for this role will be contacted directly. However, your profile will remain under consideration for future opportunities that align with your experience and career goals. All qualified applicants will receive fair consideration for employment. We welcome individuals of all backgrounds, experiences, and identities including those who identify as women, members of racialized groups, Indigenous Peoples, persons with disabilities, and 2SLGBTQIA+ communities. If you require an accommodation, please review our
accessibility policy and reach out to our accessibility officer with any questions. Our human recruiters review all applications and always make the final hiring decision. On occasion, we also use AI-assisted tools to help review applications.