Pay at Intact is about much more than just salary.
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Salary range (but not limited to):
101,800 - 124,400Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):
12%As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.
Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.
About the role
We’re looking for a Findings and Remediation specialist to join our Cyber Governance & Compliance team and help scale our governance program across the IT structure.
This role will own the end-to-end lifecycle of audit/compliance findings and remediation commitments, ensuring consistent execution, strong accountability, and measurable reduction of repeat findings. You will partner with IT teams, Finance stakeholders, and auditors to drive delivery and improve control maturity in support of 52-109 and other applicable norms (e.g., ISO 27001).
What you'll do here:
Own and operate the enterprise findings and remediation program across all IT (intake, triage, assignment, due dates, status cadence, evidence validation, and closure).
Establish and enforce a consistent remediation methodology (root cause analysis, corrective action design, milestones, risks/dependencies, and closure criteria).
Lead cross-functional remediation governance (weekly/bi-weekly operating cadence), including escalations and executive-ready reporting.
Ensure remediation plans are realistic and control-effective (fix the control, not just the symptom) and coordinate validation readiness for re-testing.
Maintain a single, accurate view of compliance commitments and progress (52-109-related gaps, internal audit/external audit findings, self-assessment results, management action plans).
Track and report key program metrics (aging, overdue, theme analysis, repeat findings, control failure trends) and propose targeted improvement initiatives.
Partner with IT control owners to improve operational discipline (ticket quality, evidence retention, SOP adherence) and reduce friction during audits.
Contribute to continuous improvement of standards, templates, and tooling to make remediation work repeatable and scalable (and reduce manual effort).
Be a key element in our Automation and AI implementation plan.
What you bring to the table:
University degree in information systems, business, cybersecurity, or any combination of equivalent education and experience.
Minimum 3 years of relevant experience in technology risk, audit remediation, IT compliance, or complex cross-functional program management.
Demonstrated experience managing audit or compliance findings and driving remediation to closure in an IT environment.
Solid understanding of IT processes and control concepts (access, change, operations, SDLC fundamentals) and familiarity with compliance frameworks/norms (e.g., 52-109; ISO 27001; familiarity with other industry norms such as SOX is an asset).
Strong stakeholder management skills with the ability to challenge constructively and drive accountability across multiple IT teams.
Strong analytical skills and ability to synthesize complex status into clear, decision-ready reporting.
Highly organized, detail-oriented, and comfortable working with deadlines, ambiguity, and changing priorities.
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
No Canadian work experience required however must be eligible to work in Canada.
#LI-Hybrid
Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.Findings & Remediation Senior Security Advisor, Cyber Governance & Compliance • Laval, Quebec, CAN
A leading cybersecurity firm based in Toronto seeks a Principal Consultant to lead Zero Trust engagements and provide high-level advisory service.The ideal candidate will possess over 6 years of cy... Show more
A top virtual care provider is seeking an IT Operations & Security Advisor in Montreal, Quebec.The ideal candidate will have over 5 years of IT experience with a focus on security and application s... Show more
A global food company is seeking an OT Cyber Security Professional based in Canada.This role will manage cybersecurity solutions and networks for production plants, ensuring compliance with corpora... Show more
A leading consulting firm is looking for a Cyber Security Support Specialist in Bruce County, Canada.This primarily remote role involves developing technical documentation and supporting governance... Show more
Become a key player in cybersecurity as a Senior Analyst.Lead efforts in threat analysis, security posture improvement, and cross-functional collaboration with regulatory bodies.As part of a critic... Show more
We’re one of Canada’s largest pension investors, with CAD$299.We invest funds for the pension plans of the federal public service, the Canadian Forces, the Royal Canadian Mounted Police and the Res... Show more
Drive security innovation and protect infrastructures as a Senior Security Advisor.This hybrid role focuses on enhancing cloud, endpoint, and identity security across our organization.In this impor... Show more
Step into the role of Cyber Security Lead and enhance security practices across multiple platforms.Guide vulnerability management, incident response, and cloud security to protect and serve critica... Show more
A strategic consulting firm in Canada is looking for a Senior Cybersecurity Architect - Operational Technology (OT) to design a security framework for various transportation sectors.This role invol... Show more
Senior Technical Integration Lead – Enterprise Networking & Security (Client-Facing).The Senior Technical Integration Lead – Enterprise Networking & Security is a client-facing technical leadership... Show more
A leading financial institution in Montreal seeks a Senior Operational Risk Advisor to integrate risk management frameworks and ensure compliance during portfolio integration.Candidates must have 1... Show more
Become a vital part of CMHC as a Senior Specialist in IT Vulnerability Management, embracing a hybrid work model.The role is essential for driving security practices across the organization.As a Se... Show more
Shape the future of information security as a Governance and Risk Compliance Advisor.Your expertise will drive the security program and support teams in achieving compliance and security excellence... Show more
Join Malleum as an Executive Advisor and lead cutting-edge governance, risk, and compliance projects.This remote role offers the chance to influence defense and aerospace sectors significantly.You ... Show more
At Alto, we are actively contributing to the transformation of Canada's future with our high-speed train project connecting Quebec City and Toronto.With the support of the Government of Canada, thi... Show more
Security Governance, Risk and Compliance Specialist.Having recognized the advantages of remote work, such as improved employee morale, increased productivity, and positive impacts on both employee ... Show more
Become an Expert Senior Security Advisor in cyber defense focused on safeguarding critical environments.Apply your expertise in cloud, endpoint, and email security within a flexible hybrid work arr... Show more
The Cyber Security Risk Specialist ensures that third party services across North, Central, and South America meet clients’ business, regulatory, and security standards.The role partners with Relat... Show more
Our Krakenites are a world-class team with crypto conviction, united by our desire to discover and unlock the potential of crypto and blockchain technology.Kraken is a mission-focused company roote... Show more
Lead AI security initiatives as a Senior Advisor for AI Security Frameworks.Focus on developing comprehensive strategies to govern the use of generative AI while minimizing inherent risks.Bringing ... Show more
