IT Security Compliance and Risk SpecialistNiagara Region • Thorold, Niagara Region, CA
IT Security Compliance and Risk Specialist
Niagara Region • Thorold, Niagara Region, CA
2 days ago
Job type
- Full-time
Job descriptionA minimum of 5 years of experience managing IT audits, risk and compliance is required preferably within the public sector or medium to large-sized organization; A security certification through an accredited organization Addition Information security certifications (CRISC, CISM, CGEIT, CISSP, CCSP or GIAC) are considered an asset Experience working with auditors and the evidence collection process Knowledge of regulatory and industry standards such as ISO, NIST, COBIT, GDPR and other security frameworks Understanding of information systems and networks and all areas of Information Security including data protection, incident management, and vulnerability management Experience working with Security training tools, including creating and launching phishing campaigns, and remedial training Knowledge of development and management of business continuity and disaster recovery planning Previous experience with IT systems threat / risk assessments, IT audits and regulatory compliance such as SOX and GDPR would be an asset Experience with cloud security controls and administration such as AWS and Azure would be an asset Assesses risks and internal control dependency on systems by identifying areas of non-compliance and evaluating risks related to key technology processes. Co-ordinates timely activities as it relates to internal, external and regulatory audit requests including SOX, SOC1, SOC2; Conducts and reviews business impact analysis, implements and coordinates disaster recovery planning and disaster recovery exercises where required; Conducts risk assessments and supports the invested parties in determining the appropriate treatment of identified risks; identify appropriate action plans for risk remediation; Inventory, assess significance, assign accountability, and develop appropriate monitoring for the control environment; Conducts IT compliance reviews including user access reviews, risk assessments, control objectives monitoring, and third party assessments; Liaises with Information Privacy Assessment Office and identify IT compliance requirements and assist with creation and maintenance and coordinate IT responses to regulatory audits; Works with and supports the development of the risk and compliance practice with IT management and the leadership team. Assists in the creation and maintenance of the information security risk register, audit requests, and third party consultant / vendor assessments. Assist in gathering information asset inventory, including identification and valuation, including any strategies and methodologies around loss scenarios Leads complex analysis, develops and generates KRIs / KPIs, validates compliance and develops actionable recommendations. Works with and supports the existing IT Security training platforms to identify high risk business users within the organization. Conducts information systems controls assessments. Reviews and administers the Incident Response Process, and ensures updates to and ongoing assessments are coordinated as required. Reviews and actions the latest Indicators / Endpoints of Compromise as required, ensuring issues are addressed in a timely fashion to mitigate any potential attack(s). Performs the necessary technical support as required, in order to support the Corporate Security strategy and processes, such as remediation actions and / or tactics that may be deployed as a result of a security scan result. Documents, tracks and investigates information security events, requests, and incidents; Implements and reviews information security policies, guidelines, procedures, training materials, awareness campaigns, internal bulletins and portal contents. Supports the invested parties in understanding and applying IT risks, security best practices and processes framework; Performs consultation and development of the IT objectives and requirements of the risk program; Partners with IT managers and team members to ensure risk and compliance issues are identified, defined, communicated, and addressed. Provides effective mentoring and guidance to other IT personnel and may assist in developing policy, standards and procedures. Collaborates in change management communications and processes, with focus on facilitating risk and compliance training for all affected staff. Business Continuity and Disaster Recovery program administration including conducting impact assessments, disaster recovery plans development and coordinating disaster recovery
Temporary Duration : Approximately 12 months
Job Summary
Salary under Review
Reporting to the IT Security Manager, the IT Security Compliance and Risk Specialist is responsible for analyzing, interpreting and developing solutions and strategies to manage the internal and external IT security audits and assessments. Acting as the liaison between potential auditors and technical teams, this role leads conversations with, and collaborates with key invested parties to identify risks and to ensure IT implemented solutions are compliant with corporate policies, regulations, and standards. The role is also responsible for monitoring remediation of audit findings up to completion, as well ensuring any mitigation strategies and security controls for all IT related findings are completed and documented.
Education
- Bachelor’s degree in Information Technology, Computer Science, related discipline or equivalent combination of education and experience.
Knowledge
Responsibilities
Compliance and Risk Auditing (40% of time)
Information Security (30% of time)
Development, Administration, and Implementation of IT Risk Policies, Procedures, Guidelines and Standards (20% of time)
Disaster Recovery & Business Continuity & Incident Response (10% of time)
#J-18808-Ljbffr
Create a job alert for this search
IT Security Compliance and Risk Specialist • Thorold, Niagara Region, CA
Similar jobs
Be a part of something different.We may offer the same products and services as a big bank, but we couldn’t be more different.
We’re rooted in purpose and we’re on a mission t...Show more
This full-time position offers flexible work hours and ample opportunities for advancement into management roles.You will work remotely to serve clients and offer valuable advice and protection to ...Show more
A leading financial services provider in Canada is seeking a Service Management Analyst to enhance and maintain their Service Management Program.
This role requires strong analytical abilities and k...Show more
Haudenosaunee and Anishinaabe peoples, many of whom continue to live and work here today.This territory is covered by the Upper Canada Treaties and is within the land protected by the Dish with One...Show more
Black & McDonald Limited is actively seeking a.Health & Safety Advisor (Afternoon Shift).Industrial, Commercial & Institutional Sector job sites.
This position will require the successfu...Show more At Meridian our aspiration is to integrate our purpose into everything we do for people, the planet, and communities.We believe that our greatest opportunity is to create opportunity and meet peopl...Show more This full-time position offers flexible work hours and ample opportunities for advancement into management roles.You will work remotely to serve clients and offer valuable advice and protection to ...Show more 
Commercial Insurance Specialist.Salary $60,000-70,000K + Commissions.Our client is looking for a driven Commercial Insurance Specialist who can drive our commercial insurance business to new height...Show more
District School Board of Niagara.Invites applications for the following position : .Working at the District School Board of Niagara (DSBN) means being part of a supportive, innovative community that ...Show more
Ready to suit up as a Tactical Security Guard.What matters most in a role like this is your ability to read the environment, anticipate risk and act accordingly.
Tell us about how your keen sense of...Show more
Investment Solutions Specialist - Fonthill
PenFinancial Credit Union • Saint Catharines, ON, Canada
Full-time
Last updated: 11 days ago • Promoted
Benefits Advisor - Work From Home (69k+ per year)
HMG Careers • Welland, Ontario
Remote
Full-time
Quick Apply
Last updated: 9 days ago • Promoted
Hybrid Service Management Analyst — ITIL, Process Optimization
Meridian Credit Union • St. Catharines, Niagara Region, Canada
Remote
Full-time
Last updated: 14 days ago • Promoted
Spring School Field Trip Instructor
Brock University • St. Catharines, Ontario, Canada
Part-time
Last updated: 30+ days ago • Promoted
Health & Safety Advisor (Afternoon Shift)
Black & McDonald Limited • Port Colborne, ON, Canada
Full-time
Last updated: 4 days ago • Promoted
Service Management Analyst
Meridian Credit Union • St. Catharines, Niagara Region, Canada
Remote
Full-time
Last updated: 14 days ago • Promoted
Sales and Benefits Specialist - WFH (69k+ per year)
HMG Careers • St. Catharines, Ontario
Remote
Full-time
Quick Apply
Last updated: 9 days ago • Promoted
Commercial Insurance Specialist- Hybrid
Royal City Recruitment • Saint Catharines, ON, Canada
Full-time
Last updated: 20 days ago • Promoted
Health and Safety Officer
District School Board of Niagara • St. Catharines, ON, Canada
Full-time +1
Last updated: 5 days ago • Promoted
Security Guard, Education
GardaWorld • St. Catharines, ON
Full-time +1
Quick Apply
Last updated: 30+ days ago