Talent.com
Manager IT Security Governance Risk Compliance
Manager IT Security Governance Risk ComplianceSonepar Canada, Inc. • Laval, QC, CA
No longer accepting applications
Manager IT Security Governance Risk Compliance

Manager IT Security Governance Risk Compliance

Sonepar Canada, Inc. • Laval, QC, CA
30+ days ago
Job type
  • Full-time
Job description

Manager IT Security Governance Risk Compliance

Location : Laval, QC, CA, H7P 5P9

About Us :

Sonepar Canada is an independent family-owned company with global market leadership in the business-to-business distribution of electrical, industrial and safety products and related solutions. In Canada, we are represented by 9 locally managed electrical and industrial distributors and have over 100+ locations with coverage in 8 provinces.

We are a proud member of the Sonepar Group, the world's largest privately-held electrical distributor. The Sonepar Group is present in more than 40 countries with over 45,000 employees.

To explore and learn more about Sonepar opportunities, please visit www.career.sonepar.com

What’s In It For You?

  • You will be joining a market leader with over 40 years of experience to help you elevate your potential.
  • You will be working for the world's #1 privately held business to business distributor of electrical products and related solutions.
  • A chance to get involved in the forever growing electrical industry.
  • We house the largest inventory to better service our customers and deliver on sales commitments.
  • An opportunity for career development across many business departments within our organization.

The Manager, IT Security, Governance, Risk and Compliance (GRC) is responsible for designing, implementing, and maintaining enterprise IT security programs and governance frameworks across the organization. This individual ensures cybersecurity posture, risk management practices, and regulatory compliance are embedded into all IT operations and business processes. Working cross-functionally, this role oversees security controls, audit readiness, risk assessments, policy development, and vendor compliance while fostering a culture of cybersecurity awareness.

Major Responsibilities

  • Lead the development and implementation of IT policies, procedures, and controls in line with standards (e.g., ISO 27001, NIST, SOC 2)
  • Manage IT security operations, including vulnerability management, incident response, and access controls
  • Conduct risk assessments and plan mitigation measures across applications, infrastructure, vendors, and data processes
  • Oversee audit preparation and responses, ensuring alignment with internal and external compliance frameworks
  • Guide the implementation of governance tools, GRC dashboards, and risk monitoring mechanisms
  • Collaborate with Legal, Finance, Operations, and HR teams to support privacy, ethics, and compliance initiatives
  • Promote cybersecurity training, awareness, and education among users
  • Support business continuity and disaster recovery planning from a risk and security perspective

    • Detailed responsibilities

    IT Governance & Policy Management

  • Develop, implement, and maintain IT governance frameworks aligned with business objectives, organization-wide
  • Ensure IT strategy and initiatives comply with internal and external regulatory requirements
  • Maintain governance framework documentation and ensure alignment with corporate objectives
  • Lead IT risk assessments to identify potential threats and vulnerabilities
  • Develop and implement mitigation strategies to strengthen security and operational resilience
  • Oversee risk treatment plans and coordinate risk management activities with other departments
  • Collaborate with internal audit teams to ensure effective IT risk management practices

    • Regulatory Compliance & Audit Preparation

  • Ensure compliance with standards (ISO 27001, NIST, PCI-DSS, GDPR, SOX, HIPAA)
  • Conduct audits, identify gaps, and ensure corrective actions are implemented
  • Prepare and present reports on compliance, risks, and mitigation strategies
  • Maintain relationships with regulatory bodies, external auditors, and stakeholders

    • Incident Response & Business Continuity

  • Develop and improve business continuity and disaster recovery plans
  • Ensure incident response protocols are followed
  • Provide recommendations for continuous improvement of IT security and resilience
  • Coordinate with security teams to assess impact and recovery strategies during incidents

    • Requirements

  • Bachelor’s degree in Information Security, Information Technology, or related field; CISM, CISSP, or CRISC certifications preferred
  • 5+ years of experience in IT security and GRC roles within medium to large enterprise environments
  • Experience with security tools, SIEM platforms, and GRC technologies
  • Solid understanding of enterprise risk management, IT audit, access controls, regulatory standards, and data privacy laws
  • Strong understanding of IT frameworks, regulatory requirements, and governance best practices
  • Strong analytical skills, stakeholder engagement, and reporting capabilities
  • We offer a competitive salary, plus a full set of benefits, including :
  • Flexible benefits program allowing you to choose from options that best fit you and your dependents’ needs. Benefit options include : Medical, Dental, Vision, Health Spending Account & RRSP matching.
  • Employee Assistance Program, Tuition Reimbursement, Employee Discounts and a career path.
  • Regardless of your benefits program, you will receive company paid Life Insurance, and employee paid disability.

    • Sonepar places the planet and diversity and inclusion at the core of its vision driving our business ethos.

    Today, Sonepar is the leading distributor of energy-efficient products, pioneering the energy transition and making sustainability a priority. At Sonepar, we firmly believe that every action is crucial in safeguarding the environment, driving our commitment to a more sustainable future. We have accelerated our own transition to efficient generation and use of electrical energy across our business and champion the innovation of sustainable solutions in the market.

    This commitment is tangible in our detailed Global CSR report, to learn more please visit https : / / www.sonepar.com / en / commitments / sustainability.

    Sonepar has been recognized as a Diversity Leader by the Financial Times’ 2024 Diversity Leaders ranking and was awarded GEEIS Certification in 2022. We are proud to be an equal opportunity employer, welcoming submissions from all candidates. We believe in creating a work environment where everyone can feel safe, use their voice, and know that they belong. Diversity and Inclusion (D&I) is a central focus of our global, strategic impact plan. We value diversity and inclusion in the workplace because it allows us to better meet the needs of the communities we serve. It helps us foster greater creativity, breadth of experience, and it’s essential to our success as an organization. All qualified individuals, regardless of race, ethnic or national origin, colour, religion, sex, sexual orientation, age, marital status, neurodiversity, disability status, gender identity, veteran status or any other aspect which makes them unique are encouraged to apply.

    For more information about our Inclusion and Diversity initiatives, please visit https : / / www.sonepar.com / en / commitments / diversity-and-inclusion.

    Sonepar is an equal opportunity employer and welcomes submissions from all candidates. Accommodation is available to all applicants upon request. If selected for an interview, please advise the Sonepar representative of your accommodation needs at that time. We will work with all applicants to accommodate their accessibility needs.

    Next steps

    We are interested in knowing more about you. Start an exciting new career and enjoy a number of benefits by applying online. While we are very grateful for your interest in joining the team, only those selected for an interview will be contacted.

    #J-18808-Ljbffr

    Create a job alert for this search

    Manager It Security • Laval, QC, CA

    Similar jobs
    Manager, IT Security Architect

    Manager, IT Security Architect

    CMC Electronics • Montreal
    Full-time
    Manager, IT Security Architect.CMC Electronics (CMC) has earned an international reputation for innovation and excellence in the design, manufacturing and support of electronic products for the avi...Show more
    Last updated: 30+ days ago • Promoted
    Manager, Cyber Security

    Manager, Cyber Security

    Innocap • Montreal
    Full-time
    Innocap is the world’s leading firm of managed account platform services.With over US$89 billion in assets under management, over 500 employees and offices in five countries, we are shaping the fut...Show more
    Last updated: 30+ days ago • Promoted
    Plant IT Site Lead - Digital Transformation & Security

    Plant IT Site Lead - Digital Transformation & Security

    Kruger Inc. • Montreal
    Full-time
    A leading paper and forest products company in Montreal is seeking an IT Site Lead to oversee all IT operations at the plant. You will ensure the efficiency and security of IT systems, drive digital...Show more
    Last updated: 30+ days ago • Promoted
    Governance, Risk & Compliance Consultant

    Governance, Risk & Compliance Consultant

    Malleum • Montreal, QC, CA
    Full-time
    Quick Apply
    About Us We are a premier cybersecurity consultancy, blending advanced offensive and defensive strategies to safeguard our customers. With a team known for its contributions to cybersecurity researc...Show more
    Last updated: 30+ days ago
    Cyber Governance & Compliance Manager – Awareness & Risk

    Cyber Governance & Compliance Manager – Awareness & Risk

    Queer Tech • Montreal
    Full-time
    A leading insurance company in Montreal is seeking a Manager of Cyber Governance, Compliance, and Awareness.This role involves leading a team, developing cybersecurity policies, and ensuring compli...Show more
    Last updated: 10 days ago • Promoted
    Senior IT Auditor & Team Lead – Cyber Risk & Controls

    Senior IT Auditor & Team Lead – Cyber Risk & Controls

    Crédit Agricole Group • Montreal
    Full-time
    A prominent financial institution is seeking a Lead Auditor / Vice President for its Montreal team.This role involves conducting comprehensive audits for regional operations across the Americas, pa...Show more
    Last updated: 30+ days ago • Promoted
    IT Manager : Security, Strategy & Growth Leader

    IT Manager : Security, Strategy & Growth Leader

    Mecademic • Montreal
    Full-time
    A robotics automation company in Montreal is seeking an IT Manager to manage and streamline their IT environment to support growth. Responsibilities include defining policies, ensuring IT security, ...Show more
    Last updated: 10 days ago • Promoted
    Senior Network Security Transformation Lead

    Senior Network Security Transformation Lead

    Domtar Corporation • Montreal
    Full-time
    A leading producer in industrial products is seeking a Senior Analyst, Network Security in Montreal to enhance network infrastructure security. Responsibilities include designing robust security str...Show more
    Last updated: 10 days ago • Promoted
    Cloud Security & IT Admin – Hybrid Role in Life Sciences

    Cloud Security & IT Admin – Hybrid Role in Life Sciences

    GenAIz • Montreal
    Full-time
    A cutting-edge technology firm in Montreal seeks an IT Admin & Cybersecurity Specialist to manage and optimize cloud infrastructure across Azure, AWS, and GCP. The ideal candidate has over 5 years o...Show more
    Last updated: 10 days ago • Promoted
    IBM Security Access Manager

    IBM Security Access Manager

    freelance.ca • Montreal, Canada
    Full-time
    Job Title : IBM Security Access Manager.Location : Montreal, QC (Hybrid) .Experience with ISAM base, Advance Access Control and Federation modules Must have experience on Junction creation , Policy s...Show more
    Last updated: 30+ days ago • Promoted
    Hybrid IT Auditor – Banking Cyber Risk & Controls

    Hybrid IT Auditor – Banking Cyber Risk & Controls

    Societe Generale • Montreal
    Full-time
    A leading global bank is seeking an IT Auditor Associate.In this role, you will participate in audits, create diagnostic matrices, and communicate findings. The ideal candidate has a Bachelor's in C...Show more
    Last updated: 10 days ago • Promoted
    Enterprise Network Architect - SD-WAN & Cloud Security

    Enterprise Network Architect - SD-WAN & Cloud Security

    CGI • Montreal
    Full-time
    A leading IT consulting firm in Montreal is seeking an Enterprise Network Architect to design and implement advanced network solutions. This role involves building next-generation networks, integrat...Show more
    Last updated: 25 days ago • Promoted
    IT Audit & Technology Risk Manager

    IT Audit & Technology Risk Manager

    KPMG LLP Canada • Montreal
    Full-time
    A leading professional services firm in Montreal is seeking a Manager / Senior Manager for their Technology Risk Services team. You will conduct IT audit procedures, manage project tasks, and guide ju...Show more
    Last updated: 30+ days ago • Promoted
    Manager, Cyber Governance, Compliance and Awareness

    Manager, Cyber Governance, Compliance and Awareness

    Intact • Montreal
    Full-time +1
    Manager, Cyber Governance, Compliance and Awareness.We are seeking a highly skilled and motivated Manager of Cyber Governance, Compliance, and Awareness to join our cybersecurity team.This role rep...Show more
    Last updated: 10 days ago • Promoted
    Strategic BISO - Cyber Risk & Governance Leader

    Strategic BISO - Cyber Risk & Governance Leader

    McKesson • Montreal
    Full-time
    A leading healthcare company in Montreal is seeking a Business Information Security Officer (BISO) to lead cybersecurity initiatives. The ideal candidate will possess over 15 years of experience and...Show more
    Last updated: 10 days ago • Promoted
    Cyber Governance, Compliance & Awareness Manager

    Cyber Governance, Compliance & Awareness Manager

    Intact Financial Corporation • Montreal
    Full-time
    A leading financial services provider in Montreal seeks a Manager of Cyber Governance, Compliance, and Awareness to oversee cybersecurity policies, ensure regulatory compliance, and promote securit...Show more
    Last updated: 10 days ago • Promoted
    Senior Manager, Information Security Governance and Risk Management

    Senior Manager, Information Security Governance and Risk Management

    CMHC • Montreal
    Full-time +1
    The work you do and the work we do together matters.We come to work every day with a common purpose : to contribute to a well-functioning housing system. At CMHC, we hold ourselves accountable for ou...Show more
    Last updated: 10 days ago • Promoted
    Information Security Supply Chain, Governance and Compliance Manager

    Information Security Supply Chain, Governance and Compliance Manager

    International Air Transport Association • Montreal
    Full-time +1
    Why you will love working here.At IATA, we represent over 350 airlines worldwide, striving to make aviation safer, smarter, more sustainable, and inclusive. We embrace diverse perspectives.With over...Show more
    Last updated: 10 days ago • Promoted