Privacy & Information Security ManagerHillfield Strathallan College β’ Hamilton, Ontario, Canada
Privacy & Information Security Manager
Hillfield Strathallan College
- Hamilton, Ontario, Canada
- Hamilton, Ontario, Canada
About
The Privacy & Information Security Manager is an IT-embedded role focused on the practical implementation of privacy, data protection, and responsible use of information in a PreKβ12 school environment. Reporting to the Director of Technology Integration & Innovation, this position serves as a full member of the IT team, operationalizing privacy requirements across systems, workflows, and student-facing technologies.
This is not a legal or advisory-only role. The successful candidate will be a hands-on team member who enjoys collaborating with College employees, parents and students to translate privacy obligations into workable technical and procedural solutions. The role partners closely with the existing IT team and cybersecurity expertise to ensure a secure, ethical, and future- ready digital environment.
This posting is for an existing vacancy.
Work Environment
This position requires a daily on-site presence in Hamilton, ON and is not available for remote work or telecommuting.
All interviews will be conducted in person.
Responsibilities:
Privacy, Data Protection & Risk
Lead the College's Privacy and Data Protection Program, embedded within IT operations.
Maintain Records of Processing Activities (ROPAs) and conduct Privacy Impact Assessments (PIAs), with particular attention to student data and emerging technologies.
Perform vendor privacy assessments and collaborate with IT on associated security reviews.
Operationalize compliance with PIPEDA, PHIPA, and applicable legislation through system design, access controls, and documented processes.
Develop, implement, and maintain privacy policies, standards, notices, and consent practices appropriate to a school community.
Oversee privacy-related staff awareness and training; collaborate with IT on phishing simulations and security awareness initiatives.
Contribute to the IT Risk Register and support annual cyber insurance renewal from a privacy and governance perspective.
Digital & Data Governance
Support alignment of on-premise and cloud systems within a cohesive digital ecosystem.
Maintain IT governance standards, workflows, and approval processes.
Lead development of a College-wide data governance framework, including data quality, lifecycle management, and integrations.
Collaborate with departments to standardize dashboards, analytics, and reporting practices.
Digital Innovation & Emerging Technologies (including AI)
Evaluate emerging tools, including AI, automation, and workflow platforms, through a privacy and risk lens.
Advise on responsible technology adoption and long-term digital strategy.
Communicate risks, opportunities, and best practices clearly to non-technical audiences.
Student & School Community Support
Work collaboratively with students, faculty, advisors, and school leaders to support privacy-related concerns, digital conduct, and responsible technology use.
Contribute to student-centred responses to privacy or digital incidents, balancing compliance, education, and wellbeing.
Provide guidance that is developmentally appropriate and aligned with the College's educational mission and Code of Conduct.
Emergency & Risk Leadership
Act in partnership with the IT Manager to respond to cybersecurity incidents, privacy breaches, and disaster recovery events, with an emphasis on prevention and learning.
Support investigations related to privacy, cybersecurity, and digital conduct using a proactive, educational approach.
Maintain incident response plans and assist with tabletop exercises and business continuity planning.
Team Mentorship & Engagement
Mentor IT staff, co-op students, and new team members on matters related to privacy and information security
Deliver workshops for parents, faculty, staff, and students on privacy, cybersecurity, digital safety, and AI literacy.
General IT Responsibilities
Support IT projects (device imaging, laptop hardware refreshes, user password/MFA resets) as needed
Contribute to policy development and day-to-day IT operations when needed.
Qualifications
Required
Degree or diploma in Information Technology, Information Systems, Computer Science, or a closely related field.
Formal training or demonstrated professional experience in privacy management (e.g., PIAs, ROPAs, vendor assessments).
Experience working within an IT or technology team, contributing to system design, access controls, and data flows.
Strong knowledge of Canadian privacy legislation, including PIPEDA and PHIPA.
Preferred
Experience in an educational, healthcare, public sector, or other regulated environment.
Privacy certifications such as CIPP/C, CIPM, or CIPT.
Working knowledge of cybersecurity practices sufficient to collaborate effectively with security specialists.
Experience supporting or interacting with students in a school setting.
This school uses artificial intelligence (AI) tools to assist with certain aspects of the hiring process, which may include screening, assessing, or selecting applicants.
Please indicate your interest by submitting a resume and covering letter by 4:00 p.m on Thursday, February 19, 2026 to this
Our commitment to inclusion across gender, age, religion, identity and experience moves us forward and creates a sense of community at HSC that we are proud of, where everyone feels welcome and feels that they belong.
We encourage applicants who may contribute to the further diversification of this community. Pursuant to the Accessibility for Ontarians with Disability Act, if you require accommodations at any time throughout the application process, please contact Human Resources prior to the closing date so the appropriate arrangements can be made.
While we thank all applicants in advance for their interest, only those selected for interviews will be contacted.
Languages
- English
Notice for Users
This job comes from a TieTalent partner platform. Click "Apply Now" to submit your application directly on their site.