Senior Info Security Analyst

Senior Info Security Analyst

• Contract Duration + months
• Pay range $ - $ / hr

Summary Of Day-To-Day Responsibilities :

• Our client is looking for someone who is well-versed in providing technology issue management expertise, guidance, and support, but also motivated to implement oversight and control best practices that meet the client's overarching business management, strategy, and governance objectives.
• The individual will be responsible for partnering with Technology segments to support the timely closure of remediation efforts impacting the business' control environment.

Here's some of what you may be asked to perform :

• Conduct Quality Assurance and Challenge activities of IT Audits / Audit Finding Remediation, working with stakeholders across the three lines of defense to ensure effective risk mitigation and remediation.
• Provide advice and guidance to Technology segments and Technology Risk Services on various areas requiring subject matter expertise and interpretation : Audit & Assurance Standards;

IT Risk Governance Control Frameworks, Governance Oversight, and independent Challenge framework.

• Senior Info Security Analyst will contribute to the development of mature Governance Oversight & Control practices, through improvement of Risk Identification, Control Design and Operating Effectiveness, and modernization activities, leveraging innovation technology.
• Identify systemic and thematic issues, understand trends, and provide specialized business management advice to senior management and respective teams while raising industry, external and internal, enterprise, and business awareness
• Apply metrics, perform weekly analysis of key metrics measure results of operational effectiveness, and identify change opportunities.
• Stay apprised of Industry Best Practices as well as the Technology and Information Security Audit and Regulatory environment.
• Provide advice and guidance to Technology segments and Technology Risk Services on various areas requiring subject matter expertise and interpretation : Regulatory Change;

Risk Governance Control Frameworks, and GRC (Governance, Risk, and Compliance) frameworks.

• Senior Info Security Analyst contributes to / provides Business Intelligence and assessments of complex issues / findings
• Experience providing in-depth knowledge on requirement definitions and guiding business partners through the implementation of best practices.

Job Requirements :

• Relevant experience with Information Security, IT Risk Management, and Issue Remediation / Risk
• Acceptance practice
• IT governance experience in lifecycle methodology, operations, and frameworks (, COBIT , NIST, Agile, etc.)
• Expert knowledge of various technology tools : including RSA Archer, JIRA, Confluence, Sharepoint, MS Office, Excel, etc.
• Information Security or technology risk and controls background
• CRISC certification or equivalent experience
• CISA certification or equivalent experience
• CISSP certification or equivalent experience is a plus
• University degree or relevant field / equivalent experience
• Remediation packages experience
• RFI experience
• Quality Assurance work process documentation, etc
• Former Audit experience

Note :

Work Location : (Hybrid - days a week in office)

About the Company

• As a top North American bank, our client aims to stand out from its peers by having a differentiated brand anchored in a proven business model and rooted in a desire to give its customers, communities, and colleagues the confidence to thrive in a changing world.
• Our client engages in providing financial products and services. They offer various financial products and services, telephone, Internet, and mobile banking services, retail and commercial banking services, and wealth management services.

The Wholesale Banking segment provides capital markets, investment banking, corporate banking products, and investment needs to companies, governments, and institutions in financial markets.

gttca

LI-Hybrid