Privacy Advisor
Winnipeg, MB
Manitoba Hydro is consistently recognized as one of Manitoba's Top Employers! We are a leader among energy companies in North America, recognized for providing highly reliable service and exceptional customer satisfaction. Join our team of Manitoba's best as we continue to build a company that champions safety, supports innovation, and delivers on our commitment to customer service - while actively fostering a diverse, equitable, and inclusive workplace reflective of the communities we serve.
Great Benefits
- Competitive salary and comprehensive benefits package.
- Defined-benefit pension plan for long-term financial security.
- Nine-day work cycle, typically resulting in every other Monday off to support a balanced approach to work, family life and community.
Position Overview:
The Privacy Advisor is a key member of Manitoba Hydro's Privacy Office and will support the development and advancement of the Enterprise Privacy Program. Reporting to the Chief Privacy Officer (CPO), the Privacy Advisor provides practical privacy guidance and day-to-day support to business areas, helping ensure compliance with applicable legislation, regulations, and organizational requirements in a dynamic and evolving environment. This role requires adaptability, strong organizational skills, and the ability to manage multiple priorities while working collaboratively with a variety of teams.
Working closely with cross-functional partners, the Privacy Advisor works to embed strong privacy governance, effective privacy risk management, and responsible data protection practices across the enterprise. The Privacy Advisor will ensure Manitoba Hydro's compliance with applicable legislations and regulations including Manitoba's Freedom of Information and Protection of Privacy Act (FIPPA) and The Personal Health information Act (PHIA), by providing expert privacy advice, conducting privacy impact assessments (PIAs), performing compliance reviews, promoting best practices for protecting personal and personal health information, and supporting breach management and response.
Under the guidance of the Chief Privacy Officer, the Privacy Advisor contributes to the advancement of the Enterprise Privacy Program by supporting the implementation of policies, standards, and processes, identifying opportunities for improvement, and building knowledge in emerging privacy areas, including new technologies. This role acts as a trusted resource to business partners by providing clear, practical guidance and helping translate privacy requirements into effective, business-aligned solutions.
Responsibilities:
- Support the development, implementation, maintenance, and continuous improvement of the Enterprise Privacy Program, including privacy policy and governance, risk and control frameworks and advanced tools, and procedures and guidelines.
- Contribute and lead access and privacy education and awareness initiatives across an assigned portfolio of business areas across the enterprise.
- Plan, conduct, report and communicate findings related to privacy compliance reviews.
- Participate and contribute to enterprise risk assessments and internal audits.
- Design, develop, implement and maintain the digital platform solution for the Privacy Office.
- Provide expert level analysis and support through independent and objective evaluations of privacy risks through privacy impact assessments (PIAs) varying in complexity.
- Proactively provide expert advice and guidance to business areas on privacy governance, compliance, and risk management including matters involving emerging and rapidly changing technologies, enterprise goals, and strategic initiatives.
- Maintain current knowledge of legislation, regulations, privacy frameworks and tools, and market trends and developments related to privacy and apply insights gained.
- Provide subject matter expertise in the management of privacy incidents/complaints/breaches, of varying complexity, in a timely and professional manner including intake and triage, containment, investigation, reporting, communications, providing recommendations and corrective actions, monitoring and tracking.
- When required, assist with the management of access to information requests.
Qualifications:
- Completion of a four-year degree program in business, law, technology, information management, or other relevant discipline from a university of recognized standing and five years of directly related experience.
OR - Two-year diploma in business, technology, information management, or other relevant disciplines and seven years of directly related experience.
- Directly related experience must include privacy governance, risk management, compliance, investigations, and advisory services, preferably within a Canadian public body or regulated environment, combined with progressively responsible work experience as a professional, demonstrating the skills and abilities required for the position.
- Professional privacy certification (i.e. CIPP/C, CIPM, CIPT) or equivalent is required.
- Expert knowledge and demonstrated experience interpreting and applying applicable legislations and regulations for a public body and in a complex regulated business environment.
- Experience handling access to information requests under FIPPA and PHIA considered an asset.
- Advanced knowledge and demonstrated experience with privacy and risk frameworks, including the NIST Privacy Framework, ISO/IEC 27701:2025, and ISO 31000.
- Results driven and proactive, with a demonstrated ability to manage ambiguity, tight deadlines, and constraints, while adapting to meet the ever-changing needs of the organization.
- Excellent interpersonal skills with the ability to advise and influence stakeholders at all levels.
- Excellent written and verbal communication skills with a demonstrated ability to effectively communicate and influence stakeholders at all levels, deliver reports, recommendations, and presentations.
- Excellent analytical, research, and problem-solving skills.
- High degree of integrity, discretion, and professional judgment.
- Ability to operate effectively at both strategic and operational levels, with a focus on adaptability and continuous improvement.
- Demonstrated experience in medium to complex digital/technological projects and initiatives as it relates to privacy and data protection.
- Knowledge of the utility industry would be an asset.
- Must obtain and maintain a current Personnel Risk Assessment and a "Clear" security rating in accordance with Manitoba Hydro policy P513.
Salary Range
Starting salary will be commensurate with qualifications and experience. The range for the classification is $48.74-$67.29 Hourly, $93,398.24-$128,947.78 Annually.
Apply Now!
Note: This employment opportunity is advertised on Manitoba Hydro's career website, and all candidates wishing to apply must do so using our online application system. Ready to join a team that energizes Manitoba and puts safety, innovation, and inclusion at the heart of everything we do? Visit www.hydro.mb.ca/careers to learn more about this position and to apply online.
Application deadline: JULY 14, 2026.
We appreciate your interest in Manitoba Hydro and thank all applicants. Only those selected for the next stage of the selection process will be contacted.
If you require accommodations during the recruitment process or need this posting in an accessible format, please let us know - we're committed to a barrier-free experience for all candidates.
This employer accepts online applications via AMIK.ca! Apply online now for the following benefits:
- Apply online for any job on AMIK.
- Save jobs for later and track your job applications.
- Add and manage all your resume in one place.