Senior GRC Analyst at McCarthy Tétrault | Hybrid Hired

About the role

Implementing and maintaining GRC policies, procedures, and controls aligned with ISO/IEC 27001:2022, NIST, and other relevant standards.
Conducting risk assessments across business units, IT systems, and third-party vendors.
Tracking and reporting on risk mitigation plans and residual risk.
Monitoring regulatory changes (e.g., PIPEDA, GDPR, Quebec Law 25) and ensuring timely updates to internal controls and documentation.
Coordinating internal and external audits, including evidence collection, control testing, and remediation tracking.
Preparing dashboards and reports on risk posture, compliance status, and control effectiveness for review by the GRC Manager and senior leadership.
Developing and delivering GRC-related training and awareness sessions to promote a culture of compliance and risk ownership.
Capturing and documenting risks for inclusion in the enterprise risk register, ensuring traceability and accountability.
Administering GRC platforms (e.g., Archer, ServiceNow GRC) and contributing to automation of workflows and reporting.
Identifying opportunities to enhance risk management processes and drive a culture of security and compliance across the organization.
Advising senior leadership on emerging risks, regulatory trends, and best practices.
Influencing and building consensus among diverse stakeholders, including both technical and non-technical teams.

Requirements

Bachelor’s degree in Information Security, Risk Management, or a related field.
Minimum 5 years of experience in GRC, risk management, or compliance roles.
Certifications such as ISO/IEC 27001 Lead Auditor, CIPP, CISM, CRISC, or CISSP preferred.
Strong analytical, communication, and interpersonal skills, with the ability to translate technical risks into business impact, influence decision-making, and build consensus across diverse stakeholders.
Experience working in cross-functional teams and managing multiple priorities.
Familiarity with change management, disaster recovery, and business continuity practices.
Experience with workflow automation and reporting within GRC or AI platforms is an asset.
Hands-on experience with GRC tools (e.g., Archer, ServiceNow GRC) is preferred.

Benefits

Outstanding benefits from day one, including insurance premiums paid by the Firm and wellness and technology reimbursements.
Competitive compensation, paid overtime and generous time off, including a day off to volunteer and a day off for your birthday.
A commitment to professional development and growth opportunities for our people at all levels, supported by a culture that fully embraces and encourages two-way feedback.
Strong community involvement and a commitment to equity, diversity and inclusion.
A collaborative, cohesive culture that connects lawyers and business teams through collective purpose.

Similar roles

Browse all Compliance jobs

1 hour ago

MM

Marsh McLennanCompliance Officer

Compliance Officer role at Marsh McLennan, managing regulatory compliance and serving as subject matter expert. Collaborating with teams on compliance enhancements and regulatory filings.

Hybrid Role

New York City United States Compliance

$91,400 - $183,000 per year

1 hour ago

JG

juris GmbHLegal, Compliance Advisor

Compliance Officer responsible for legal queries, risk management coordination, and compliance training. Focus on minimizing risks and integrating compliance into business processes.

Hybrid Role

Saarbrücken Germany Compliance

2 hours ago

UH

Uwi (AI Recruiter by HeroHunt.ai)Senior Manager, Ethics & Compliance Investigator

Senior Manager leading internal investigations across various issues for compliance at Lonza. Strengthening whistleblower programs and leveraging innovative tools for integrity.

Hybrid Role

Morristown United States Compliance

$129,600 - $170,100 per year

5 hours ago

DL

Demarest & Demarest LLCAdvogado(a) Júnior/Pleno – Compliance e Investigações

Junior/Intermediate Lawyer handling Compliance and Investigations at a respected law firm in Brazil. Focusing on integrity programs and due diligence processes while fostering client relationships.

Hybrid Role

São Paulo Brazil Compliance

7 hours ago

IG

ICL GroupAnalista de Assuntos Regulatórios

Regulatory Affairs Analyst at ICL analyzing compliance and collaborating with teams on regulatory issues. Contributing to high - performance agriculture solutions in Brazil.

Onsite Role

Suzano Brazil Compliance

8 hours ago

RI

RiachueloEstágio Administrativo – Compliance

Intern role in compliance at Riachuelo, a leading retail brand. Engaging in financial mapping and processes within a diverse team.

Hybrid Role

São Paulo Brazil Compliance

8 hours ago

TI

Tempest Security IntelligenceJunior Vulnerability Management and Compliance Analyst

Junior Analyst in Vulnerability Management and Compliance at Tempest, focusing on technical guidance and vulnerability assessments. Collaborating with experts and working in a tech - driven environment.

Hybrid Role

São Paulo Brazil Compliance

14 hours ago

XE

Xcel EnergyRegulatory Policy Specialist

Regulatory Policy Specialist developing regulatory case filings and strategies at Xcel Energy. Collaborating with senior management to ensure compliance and effective communication with stakeholders.

Onsite Role

Amarillo United States Compliance

$109,500 - $155,500 per year

15 hours ago

MA

MassMutualLead, Insurance Product Compliance

Lead, Insurance Product Compliance offering guidance on compliance risks and solutions for insurance underwriting. Collaborate with stakeholders and perform data analysis to recommend compliance actions.

Hybrid Role

Springfield United States Compliance

$152,100 - $199,600 per year

15 hours ago

RB

Regions BankFair Lending Compliance Manager

Compliance Manager overseeing Fair Lending Program at Regions Bank. Directing compliance reviews, advising leadership, and managing training and oversight initiatives.

Onsite Role

Birmingham United States Compliance

$129,319 - $177,880 per year