IT Risk and Compliance Consultant — Remote
This open role in the insurance industry offers the opportunity to join a fully remote, cutting-edge team driving innovation and addressing complex challenges. The position focuses on leveraging audit expertise and technical skills to navigate emerging technologies while ensuring compliance and risk management. Operating in a collaborative yet autonomous environment, the team values proactive problem-solving and a forward-thinking mindset to deliver impactful results.
What is in it for you :
- Salaried : $60 to $63 per hour.
- Incorporated Business Rate : $72 to $75 per hour.
- 6-month contract with the potential for permanent employment.
- Full-time position : 37.50 hours per week.
- Weekday schedule from 8 : 30 am to 5 : 00 pm.
- Enjoy the flexibility of remote work.
Responsibilities :
Coordinate and support the annual Sarbanes-Oxley (SOX) audit processes, including collaboration with external auditors, timely collection, vetting, and delivery of audit artifacts.Provide consultancy to business units to define and improve operational information security controls aligned with the organization’s standards and policies.Oversee remediation efforts following business management responses to identified gaps.Monitor compliance with control frameworks and manage escalated exceptions with ownership and oversight.Coach and mentor team members on IT audit, compliance, and operational best practices.What you will need to succeed :
University degree in Computer Science or Information Technology preferred.5 to 8+ years of experience in information security controls, IS audit, and compliance.Proven expertise in SOC 1 Type 2, SOX, and SOC2 Type 2 readiness initiatives and audit coordination.Recognized certifications such as CISA, CIA, CISSP, CISM, or CCSP with proven hands-on experience.Knowledge of multiple technology domains, including software development and IT operations.Familiarity with information security standards and best practices for securing systems and applications.Experience applying security frameworks such as ISO 27001 or COBIT and standards like NIST, GDPR, or Sarbanes-Oxley is an asset.Understanding of cybersecurity concepts, including secure code development, vulnerability management, application security scanning, penetration testing, and cryptography.Exceptional verbal and written communication skills with the ability to convey key messages succinctly.Confident in presenting, facilitating, and engaging effectively with stakeholders at all levels.Strong interpersonal and leadership skills in diverse environments and multi-location settings.Ability to collaborate effectively, build relationships with internal and external stakeholders, and work well in a team environment.Analytical and problem-solving skills with a focus on data-driven decision-making.Effective time management and the ability to meet deadlines and manage workloads autonomously.Why Recruit Action?
Recruit Action (agency permit : AP-2000003) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted.
MFCJP00013908