Cyber Security Advisor - Third-Party Risk

Our Technology team wakes up every day with one goal in mind - connecting Canadians to the people and things that matter most. Together, we are proud to support 30 million Canadians each month through managing a robust portfolio that champions leading-edge technology. We drive large-scale, complex, and high-visibility technology projects and programs that shape the future of technology in Canada and expand connectivity from coast to coast. If you are interested in being a part of this, consider applying for the following opportunity :

Are you passionate about managing third-party risk and thrive in a dynamic, fast-paced environment? Are you interested in SOC 2 or security maturity audits and eager to enhance organizational security standards?

At Rogers, we want to support you in building and developing a rewarding career in Cyber Security. Rogers is the place where ideas become reality. We embrace change and find ways to do better. And we deliver on that commitment by fostering an environment of passion and innovation for all people.

Rogers is seeking a Cyber Security Advisor in the Information & Cyber Security Unit (ICSU), focusing on Cyber Security Governance and Compliance. This individual will be responsible for supporting the third-party security risk management program and strategy. Conducting thorough cyber security risk assessments of third-party vendors' information security programs. Working to ensure policies and processes are properly designed and controls are operating effectively to meet regulatory and security requirements. Facilitating internal and external compliance audit and assessment activities for the organization.

Reporting to a Sr. Manager of Cyber Security at the Rogers Brampton Campus, this individual will have the following responsibilities :

What you'll be doing :

• Conduct thorough assessments of third-party vendors' information security, business continuity, and other technical domains
• Evaluate third-party compliance with industry information security standards, corporate policies, regulatory and compliance requirements
• Evaluate implementation of new technologies / processes and agreements with third-party service providers to ensure continual compliance with regulatory requirements
• Identify and document assessment findings, gaps, and risks, and communicate them to relevant stakeholders
• Maintain assessment documentation, reports, and metrics
• Collaborate with internal teams, including Subject Matter Experts (SMEs) and Enterprise Vendor Managers
• Provide support for audit, compliance, and regulatory requests
• Identify and evaluate technology risks, internal controls to mitigate risks, and related opportunities for continuous control improvement
• Maintain knowledge of the information security environment, including development of new attacks and threats

What you bring :

Skills :

What’s in it for you?

We believe in investing in our people and helping them reach their potential as valuable members of our team. As part of our team, you’ll have access to a wide range of incredible resources, growth opportunities, discounts, and perks, including :

Growth & Development Opportunities :

Wellness Programs :

Our commitment to the environment and diversity :

This is a hybrid work position and will require you to be in office three days per week. You can choose which days in office work best for you!

​ To protect our people, brand and assets, a pre-employment background check will be conducted. As part of our selection process, all candidates must clear a criminal background check. Additionally, a credit check and drivers abstract may be required depending on the role.

Schedule :  Full time

Shift : No Selection

Length of Contract : Not Applicable (Regular Position)

Work Location :  8200 Dixie Rd (341), Brampton, ON

Travel Requirements : Up to 10%

Background Check(s) Required : Criminal Record and Credit Check

Posting Category / Function : Technology & Information Technology

Requisition ID : 323683