Senior Information Governance Security Consultant helping clients strengthen information governance and cyber security. Engaging in consultancy to enhance resilience, compliance, and risk management.
About the role
- Cyber Security Risk Manager supporting Cybersecurity business functions with risk assessments and control management. Collaborating with management to ensure overall risk function supports strategic goals.
Responsibilities
- Apply knowledge of cybersecurity regulations, best practices, and maturity opportunities to support our Cybersecurity business function
- Evaluate effectiveness of controls and escalate as appropriate
- Support the identification and quantification/qualification of risks
- Manage the governance of issues through their lifecycle
- Execute risk assessments against defined scopes
- Support and execute various processes such as Risk and Control Self-Assessment (RCSA)
- Provide advisory and guidance on control design, cybersecurity standards/policies
- Support executive reporting on the health and status of our risk, issues, and control portfolio
- Act as a trusted advisor to your customer
- Deliver timely escalation of all issues requiring attention
Requirements
- Bachelor’s degree
- Minimum of 5 years of experience in Audit, Compliance, Risk Management or Operational Risk
- In lieu of a Bachelor’s degree 4 additional years of segment-specific or risk related experience may be considered
- 2 years’ experience in cybersecurity or related domain
- 2 years’ experience in one or more cloud platforms AWS, Azure, GCP
- 2 years’ experience with deployment pipelines, DevOps, Containers, and API’s
- 2 years’ experience with threat modeling
- 2 years’ experience with cybersecurity related policy, procedures, or standards governance
- 2 years’ experience with quantitative/qualitative risk assessments
- CISSP, CISM, CISA, GIAC, CIPP/US or other security/privacy certifications preferred but not required
Benefits
- Health insurance coverage
- Wellness program
- Life and disability insurance
- Retirement savings plan
- Paid leave programs
- Paid holidays
- Paid time off (PTO)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cybersecurity Engineer for integrating security in product life cycle at Ingeteam, a leader in electrical engineering. Collaborating with R&D teams to enforce security from design to operations.
Senior End User Computing Analyst managing Active Directory operations for RBC. Ensuring system stability, security, and regulatory compliance while collaborating with various teams.
IT Security Architect for Rock - it Cargo designing secure enterprise infrastructure and guiding cybersecurity governance. Collaborating across teams and creating policies for incident response and infrastructure security.
Senior Cyber Security Engineer at Surfshark developing strong security posture and threat monitoring solutions. Collaborate with the team to prevent cybersecurity incidents and optimize security processes.
Information Security Intern managing compliance and documentation at papernest, a tech scale - up in Barcelona. Collaborate with the Infrastructure & Security team to ensure security processes are documented and compliant.
Join GitGuardian as a Staff Software Engineer developing endpoint security solutions. Drive architectural decisions and mentor engineers while working closely with product teams.
National Corporate Security Manager responsible for managing security threat programs and compliance at PwC Canada. Leading policies, training, reporting for enhanced security resilience and preparedness.
Lead Offensive Security Engineer at College Board overseeing Red Team initiatives and enhancing security posture. Collaborating on advanced penetration tests and fostering a learning culture within Cyber Operations teams.
Senior Security Engineer securing AWS cloud environments for Snap Finance. Leading incident response and vulnerability management while ensuring compliance with security standards.