Talent.com
IT Security Risk Analyst
IT Security Risk AnalystOnico Solutions • Toronto, ON
IT Security Risk Analyst

IT Security Risk Analyst

Onico Solutions • Toronto, ON
30+ days ago
Job type
  • Permanent
Job description

IT Security Risk Analyst

The IT Security Risk Analyst supports the Information Security Risk Management and Governance programs. They work with technology and business stakeholders to identify Information Security risks, conduct risk assessments, recommend risks mitigation strategies, and monitor identified risks throughout its lifecycle. They also update and monitor Key Performance Indicators (KPI’s), Key Risk Indicators (KRI’s), Service Level Agreements (SLA’s), and other documentation related to the Information Security program. They contribute to the creation of management reporting to convey the status of Information Security risks and governance metrics across the organization.

This role requires an experienced subject matter expert who has in-depth understanding of Information Security controls across a broad range of technologies and platforms.

RESPONSIBILITIES

  • Identification, assessment and monitoring of Information Security risks.
  • Recommendation of compensating controls to reduce inherited risk to an acceptable level.
  • Development and maintenance of Information Security risk and governance KPI’s, KRI’s, and SLA’s.
  • Support for security audits, prioritization and remediation of identified gaps.
  • Creation and maintenance of Information Security policies and other risk and governance documentation
  • Implementation and operation of risk and governance technology tools and processes
  • Collaboration with different stakeholders to manage Information Security risks in a timely matter

REQUIREMENTS

  • 3+ years of experience with IT Security Risk Management/Risk Assessments
  • 3+ year of experience with IT Security policies, standards, procedures and guidelines
  • KPI (Key Performance Indicators) & KRI (Key Risk Indicators)
  • Experience working with and managing external vendors
  • Strong knowledge of Information Security controls for Mobile, IoT, Cloud, Applications, Network and System infrastructure
  • Excellent knowledge of security technologies which are commonly used in enterprises to protect information systems, both on premise and in the Cloud. Hands-on design, implementation and management of variety security technologies are strong assets.
  • Working knowledge of Information Security and Risk Management frameworks like ISO27001, ISO27005 and NIST CSF and NIST 800-30
  • Understanding of legal and regulatory compliance standards and requirements like PCI-DSS and PIPEDA
  • CISSP, CISA, CRISC and other security certifications are a strong asset.

This is a permanent position located in Toronto (work from home until deemed safe).

Create a job alert for this search

IT Security Risk Analyst • Toronto, ON

Similar jobs

Experienced IT Security Analyst for Threat Detection and Management

BMO Financial GroupToronto
Full-time

Become a key player as an IT Security Analyst in a highly collaborative team focused on incident response and security threat management.Apply your expertise in vulnerability management and cyberse...Show more

 • Promoted

Remote IT Security Analyst | Vulnerability & TPRM Expert

HarborToronto, ON, CA
Remote
Full-time

A leading security firm is seeking a Security Analyst to enhance its security posture through proactive vulnerability management.This fully remote role requires strong analytical skills, hands-on e...Show more

 • Promoted

IT Security Analyst - Vulnerability & Risk (Hybrid, 8-Mo Contract)

TekStaff IT SolutionsToronto
Full-time

A leading IT solutions provider is seeking an IT Security Analyst for an 8-month hybrid contract based in Scarborough, ON.Candidates should have 5-8 years of experience in cybersecurity concepts in...Show more

 • Promoted

Information Security Risk Analyst

StackAdaptToronto, ON, CA
Full-time

StackAdapt is the leading technology company that empowers marketers to reach, engage, and convert audiences with precision.With 465 billion automated optimizations per second, the AI-powered Stack...Show more

 • Promoted

Sr. Analyst, IT Risk Oversight

HaventreebankToronto, ON, CA
Full-time

Haventree Bank is a private Canadian Schedule 1 bank specializing in alternative mortgage programs and insured GIC deposits.We help hardworking Canadians from coast-to-coast achieve homeownership b...Show more

 • Promoted

Sr. Analyst, IT Risk Oversight

Haventree BankToronto, ON, CA
Full-time

Haventree Bank is a private Canadian Schedule 1 bank specializing in alternative mortgage programs and insured GIC deposits.We help hardworking Canadians from coast-to-coast achieve homeownership b...Show more

 • Promoted

Senior IT Risk Analyst – Hybrid Work Model

HRbrain Inc.Toronto, ON, CA
Full-time

A risk management consulting firm located in Toronto is looking for an IT Risk Management professional with extensive experience.The role involves conducting modeling exercises, reviewing IT Risk a...Show more

 • Promoted

IT Compliance Analyst — Drive IT Risk & Controls

The Citco Group LimitedToronto
Full-time

A global leader in fund services is seeking an IT Compliance Analyst in Toronto.The role involves analyzing and improving IT compliance, coordinating controls testing, and supporting policy reviews...Show more

 • Promoted

IT Compliance & Risk Analyst

The Citco Group LimitedToronto, ON, CA
Full-time

A global leader in fund services is seeking an IT Compliance Analyst in Toronto, Canada.This role involves analyzing and enhancing IT compliance, coordinating compliance testing, and supporting pol...Show more

 • Promoted

Security Architect & Risk Analyst — Drive Cyber Defense

ElectricenergyonlineToronto, ON, CA
Full-time

A major energy provider based in Toronto is looking for a Security Analyst to enhance its cybersecurity posture.You will be responsible for monitoring access logs, coordinating responses to cyber i...Show more

 • Promoted

IT Risk & Controls Analyst — Dashboards & Governance

Compunnel, Inc.Toronto, ON, CA
Full-time

A leading IT services company is hiring an Information Risk Management Analyst to manage IT risks through evaluation and documentation of controls.The role focuses on risk analysis and reporting, r...Show more

 • Promoted

Remote-First Information Security Risk Analyst

StackAdaptToronto, ON, CA
Remote
Full-time

A leading technology company is seeking an Information Security Risk Analyst to help manage and assess information security risks.This role involves collaborating with stakeholders to ensure compli...Show more

 • Promoted

Remote IT Security Risk Analyst: Governance & Risk

Onico SolutionsToronto, ON, CA
Remote
Permanent

A leading IT security firm in Richmond Hill is looking for an IT Security Risk Analyst to support their Information Security Risk Management programs.The role requires expertise in risk assessments...Show more

 • Promoted

IT Security Analyst

ROSSToronto
Full-time

Assist in providing IT security services to the company and it’s customers.Assist management and its customers in defining their IT Security requirements to meet their business needs.Assess, provid...Show more

 • Promoted

IT Security Analyst

Nexus Systems Group Inc.Toronto, ON, CA
Full-time

CWM Job Posting Title: IT Security Analyst - 4.Location: Remote (office days on manager request).Extension: Possible (6 months).Scheduled Hours: Monday to Friday, 9am-5pm.Business Group: The IAM Go...Show more

 • Promoted

Senior IT Risk and Compliance

MorningstarToronto, ON, CA
Full-time

The Information Security department is responsible for setting enterprise security policies and standards that are designed to protect the confidentiality, integrity and availability of Morningstar...Show more

 • Promoted

Analyst, IT Security (AIR MILES)

Bank of MontrealToronto, ON, CA
Part-time

Application Deadline:03/02/2026Address:250 Yonge StreetJob Family Group:TechnologyThe AIR MILES Reward Program is one of Canada’s most recognized loyalty programs, with over 10 million active colle...Show more

 • Promoted

Remote Information Risk & Security Analyst

DexianToronto, ON, CA
Remote
Full-time

A leading IT services firm is seeking an Information Control Testing Specialist to manage information risk and ensure compliance with security policies.You will work on global initiatives, conduct ...Show more