*Information Risk Analyst (First Line of Defense) (WTL, ON)Recrute Action • Waterloo, ON, ca
•Information Risk Analyst (First Line of Defense) (WTL, ON)
Recrute Action • Waterloo, ON, ca
2 days ago
Job type
- Full-time
- Permanent
- Temporary
- Quick Apply
Job descriptionConduct comprehensive assessments of IaaS, PaaS, SaaS, and generative AI projects, identifying and mitigating associated risks. Develop and implement governance frameworks tailored to generative AI, aligning with global information risk assessment methodologies. Collaborate with cross-functional teams to integrate risk frameworks with processes such as architecture reviews, project risk management, and business continuity. Manage task priorities to ensure timely delivery of governance assessments and documentation updates. Participate in project meetings to advise stakeholders on risks and potential impacts of proposed changes. Ensure peer review of all completed risk assessments prior to stakeholder distribution. Support operational security tasks including incident response, firewall reviews, and vulnerability management. Provide training on risk assessment procedures and security best practices to internal teams. Respond to audits, regulatory reviews, and internal control assessments. Stay current on emerging AI technologies, evolving threat landscapes, and developments in AI governance. Degree in Computer Science, Information Technology, Data Science, Business Administration, or a related discipline. Relevant professional designations (e.g., CISSP, CRISC, CISM, CISA) are considered an asset. 5+ years of experience in information risk management, including vendor risk, project risk, IT audit, or control assessments. Background in one or more technical security disciplines, such as network security, application security, identity and access management, cybersecurity, or information protection. Strong understanding of cloud computing security in IaaS, PaaS, or SaaS environments. Familiarity with laws and standards such as NIST, ISO27001, GDPR, Sarbanes-Oxley, and the EU AI Act. Strong communication and influencing skills to support a culture of governance and risk awareness. Effective problem-solving and analytical skills with an innovative mindset. Excellent presentation and facilitation skills for technical and non-technical audiences. Strong collaboration, time management, and organizational abilities. Understanding of the financial services industry and its regulatory landscape is an asset. Salaried : $90-95 per hour. Incorporated Business Rate : $104-109 per hour. 12-month contract with the potential for permanent employment. Full-time position : 37.50 hours per week. Hybrid model – 3 days per week on-site. Attendance on Tuesday and Wednesday is mandatory. Responsibilities : Design and implement secure landing zones using AWS Control Tower, AWS Organizations, and Service Control Policies (SCPs). Define multi-account security guardrails for shared services, workloads, and sandbox environments. Create reference architectures covering security zones, network segmentation, and cross-account communication (PrivateLink, AWS WAN). Lead threat modelling and risk assessments for new workloads and services including Lambda, ECS, EC2, S3, RDS, and DynamoDB. Develop security-by-design templates integrated into Infrastructure as Code (IaC) pipelines. Partner with compliance teams to maintain continuous alignment with CIS Benchmarks and organizational risk frameworks. Implement federated access and single sign-on with AWS IAM Identity Center (AWS SSO), Okta, and Azure AD. Manage cross-account roles, STS trust policies, and temporary credentials for developers and third parties. Automate secret and credential rotation with AWS Secrets Manager and AWS Systems Manager Parameter Store. Enforce encryption at rest using AWS KMS, CloudHSM, and envelope encryption patterns. Ensure encryption in transit (TLS 1.2 / 1.3) across internal and public endpoints. Manage key rotation, cross-region replication, and HSM-based root of trust. Implement S3 Object Lock, Macie for data discovery and classification, and Access Points for fine-grained data access. Implement PrivateLink, AWS WAN, and Route 53 Resolver endpoints for service-to-service isolation. Configure Web Application Firewall (WAF) and AWS Shield Advanced for DDoS mitigation. Enforce egress control through Cloud NAT, AWS Gateway Load Balancer (GWLB), or custom proxies. Deploy and integrate AWS Security Hub, GuardDuty, Macie, and Inspector for proactive threat detection. Configure Amazon Detective for forensic investigation and anomaly correlation. Integrate findings into SIEM / SOAR platforms such as FortiSOAR or Azure Sentinel. Automate response playbooks with AWS Step Functions, Lambda, and SNS alerts. Implement AWS Config rules and Conformance Packs to enforce compliance with benchmarks like CIS AWS Foundations. Use AWS Artifact for vendor assurance and control documentation. Manage compliance dashboards via Security Hub, Trusted Advisor, and Control Tower drift detection. What you will need to succeed : Bachelor’s degree in Computer Science, Information Security, or related field. AWS Certified Security – Specialty. AWS Certified Solutions Architect – Professional. CISSP, CISM, CCSP, GCSA, or GIAC Cloud Security Automation certification. 8+ years of experience in cybersecurity. 4+ years of experience in AWS cloud security architecture. Deep understanding of the AWS Well-Architected Framework (Security Pillar). Strong hands-on expertise in AWS identity and access management, encryption, network segmentation, and compliance. Familiarity with AWS security services including GuardDuty, Inspector, Security Hub, and Macie. Experience automating security controls using AWS native tools and IaC pipelines. Proficiency in incident response using Step Functions, Lambda, and Systems Manager. Experience integrating with SIEM / SOAR platforms such as FortiSOAR or Azure Sentinel. Why Recruit Action? Recruit Action (agency permit : AP-2504511) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted. # AVICJP00002833
Job Description
Information Risk Analyst (First Line of Defense)
Step into a high-impact, hybrid role at the forefront of cloud security, AI governance, and information risk within the insurance sector. Leverage your expertise in InfoSec, regulatory frameworks, and emerging technologies to shape secure, future-ready solutions. Work cross-functionally in a dynamic, fast-paced environment.
What is in it for you :
- Salaried : $65-70 per hour.
- Incorporated Business Rate : $79-84 per hour.
- 6-month contract with the potential for permanent employment.
- Full-time position : 37.50 hours per week.
- Weekday schedule from 9 am to 5 pm.
- In-office presence required from Tuesday to Thursday.
- Remote work available on Mondays and Fridays.
Responsibilities :
What you will need to succeed :
Why Recruit Action?
Recruit Action (agency permit : AP-2000003) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted.
# MFCJP00016092
Requirements
Cloud Security Architect Drive AWS cloud security strategy in the insurance industry with a senior-level role focused on secure architecture, compliance, and automation. Leverage your expertise in AWS services, threat detection, and identity management in a hybrid, multi-account environment. Opportunity to lead security-by-design in a regulated sector. What is in it for you :
Create a job alert for this search
Risk Analyst • Waterloo, ON, ca
Similar jobs
We are seeking a dedicated and experienced professional to join our Community Health Organization in an At-Home Care environment, supporting.
This role plays a key part in promoting the health, safe...Show more
Supervises a small group (6-12) of hourly associates in a cross dock, warehouse, or transportation management operation.Monitors day-to-day operations for compliance to establish safety and logisti...Show more As a Program Lead, Therapy, we are looking for a RegusTherapy professional who is an.You will play a key role in providing consultation, assessment, and interventions for diverse client groups acro...Show more 
We are looking for an experienced.Our client is a global enterprise company with a product that you've likely used.This is a really exciting opportunity to work for a company whose product is u...Show more
Full time, permanent role • Office located in Waterloo, ON • Potential to work remotely if you’re located outside the Waterloo area • First year OTE expected to be at least $50,000 • RIBO, OT...Show more
Rural Roads Health Services (RRHS) is actively seeking applicants for a Registered Nurse position for the Emergency Department and Intensive Coronary Care Unit (ICCU) Composite Line.The primary loc...Show more
You’re a Civil Engineering Graduate looking for your perfect entry-level role.You want an exciting, hands-on job in the dynamic telecommunications industry.
You’re driven to prove yourse...Show more
This posting is open to WRDSB employees who are members of the EA Association as well as external applicants.Staff already in an LTO are not eligible to apply to this posting if it will conflict wi...Show more
Customs and Border Protection Officer (CBPO) .Customs and Border Protection (CBP) offers those interested in a career in law enforcement an exceptional opportunity to work with an elite team of...Show more Customs and Border Protection Officer (CBPO) .Customs and Border Protection (CBP) offers those interested in a career in law enforcement an exceptional opportunity to work with an elite team of...Show more 
Superprof is Canada's #1 tutoring platform, and we're actively recruiting passionate tutors! Whether you're a student, a professional, or simply someone who loves teaching, join the largest communi...Show more
CSMC is shaping the future of advanced energy and aerospace technologies through innovation in nuclear microreactors, quantum sensing, and deep-tech engineering.
Were looking for a Full Stack Develo...Show more)
With every job, there’s always the question of “why”.Why join a company? Why be part of their mission? Here, the why is easy.
It’s because at some point, we’ve all need...Show more
Position Overview / Mandate : .We are seeking a Project Manager to plan, coordinate, and facilitate development projects from start to delivery.
F;If you’re looking to be par...Show more
Youth Unlimited YFC Southwestern Ontario is a youth-focused, faith-based, organization that exists to help young people throughout Southwestern Ontario attain their full life potential by showing l...Show more
As Canada’s leading integrated freight, package, and logistics provider, we’ve been helping promises get where they need to be for more than 60 years.
The places we go, the elements we brave, the pr...Show more You’re a civil engineering grad looking for your perfect entry-level role.You want an exciting, hands-on job in the dynamic telecommunications industry.
You’re driven to prove yourself a...Show more 
Hourly Contract (12-18 months).Senior Manager, Safety + Quality.Barton Malow Canada is an Industrial Contractor with clients across Canada and is part of the Barton Malow family of companies.Our se...Show more
Occupational Health and Safety Regional Advisor
CarePartners • Waterloo, ON, CA
Full-time
Last updated: 30+ days ago • Promoted
Shift Supervisor - Contract - 5 : 45pm Start
Penske Truck Leasing • Woodstock, ON, Canada
Temporary
Last updated: 7 days ago • Promoted
Provincial Program Lead- Therapy
CarePartners • Waterloo, ON, CA
Full-time
Last updated: 25 days ago • Promoted
Senior BI Analyst
Targeted Talent • Waterloo, ON, Canada
Permanent
Last updated: 30+ days ago • Promoted
Sales Representative (Insurance)
Mumby Insurance Brokers Inc • Waterloo, ON, Canada
Full-time +1
Last updated: 30+ days ago • Promoted
(TDMH) Registered Nurse - Emergency / ICCU Composite Line
Rural Road Health Services • Tillsonburg, ON, Canada
Temporary
Last updated: 30+ days ago • Promoted
Engineer-In-Training (Bilingual)
Teletek Structures Inc. • Saint Jacobs, ON, Canada
Full-time +1
Last updated: 30+ days ago • Promoted
LTO EA Level D - Extended Day Before School - 10 hrs / wk
Waterloo Region District School Board • Floradale, ON, Canada
Part-time +1
Last updated: 7 days ago • Promoted
United States Customs and Border Protection Officer
U.S. Customs and Border Protection • Plattsville, CT, United States
Full-time
Last updated: 30+ days ago • Promoted
U.S. Customs and Border Protection Officer
U.S. Customs and Border Protection • Plattsville, CT, United States
Full-time
Last updated: 30+ days ago • Promoted
Information Technology Private Tutoring Jobs Elmira
Superprof • Elmira, Canada
Full-time +1
Last updated: 30+ days ago • Promoted
Full Stack Developer
CSMC • Waterloo, ON, Canada
Full-time
Last updated: 1 day ago • Promoted
Vice President, Group Insurance Growth & Health Solutions
Ontario Teachers Insurance Plan (OTIP) • Waterloo, ON, Canada
Full-time
Last updated: 2 hours ago • Promoted • New!
Project Manager
Fidus Systems • Waterloo, ON, Canada
Full-time
Last updated: 30+ days ago • Promoted
Executive Assistant
Southwestern Ontario Youth for Christ • Woodstock, ON, Canada
Full-time
Last updated: 30+ days ago • Promoted
Linehaul Driver P&D Float 331 Job Details | Purolator
Purolator • Woodstock, ON, Canada
Full-time
Last updated: 7 days ago • Promoted
Engineer (Entry Level)
Teletek Structures Inc. • Saint Jacobs, ON, Canada
Full-time +1
Last updated: 30+ days ago • Promoted
Quality Coordinator
Barton Malow Canada • Woodstock, ON, Canada
Full-time
Last updated: 30+ days ago • Promoted