OT Risk Security Analyst
2 weeks ago
Our client is a leader in its industry and is considered one of the top 25 most engaged companies globally.
Operational Technology - OT GRC Security Risk Analyst
Contract Position: 6 months to start
Hybrid
The Information Security Risk and Governance Analyst supports the Information Security Risk Management and Governance programs. The candidate will work with technology and business.
Stakeholders are to identify information security risks, conduct risk assessments, recommend risk mitigation strategies, and monitor identified risks throughout their lifecycle. They will contribute to the
creation of management reporting to convey the status of Information Security risks and governance metrics across the organization.
This role requires a basic understanding and a willingness to learn about Information Security, Governance, Risk, and Compliance standards and controls across a broad range of technologies and
platforms.
You will have experience supporting BAS - Building Automation Systems and BACnet - Building Automation and Control Networks. Must have experience in Operational Technology
JOB ACCOUNTABILITIES:
Understand Information Security risks pertinent to the organization's business goals and work with various departments to identify, measure, monitor, and report on risk based on information assets.
Develop, document, and communicate risk mitigation strategies to risk owners; document and monitor the implementation of security controls and adjust risk rating accordingly.
Engage in the Implementation and operation of risk and governance technology tools and processes to enhance the effectiveness of the practice.
Contribute to the development of new Information Security policies; ensure all existing policies and related documents are up-to-date.
Provide support for internal and external audits, including the collection of requested artifacts, review and prioritization of findings and recommendations.
Maintain an up-to-date understanding of emerging trends in Information Security risks and threat vectors; apply new techniques in-line with overall Information Security objectives and risk tolerance
of the organization.
Work with internal stakeholders to develop strategies and implementation plans to enforce Information Security requirements and address identified risks.
SCOPE OF RESPONSIBILITY:
Identification, assessment, and monitoring of Information Security risks.
Recommendation of compensating controls to reduce inherent risks to an acceptable level. Support for security audits, prioritization and remediation of identified gaps.
Creation and maintenance of Information Security policies and other risk and governance
documentation.
Implementation and operation of risk and governance technology tools and processes.
Maintenance of Third-Party Risk Management program.
Collaboration with different stakeholders to manage Information Security risks in a timely matter
Other responsibilities as assigned by management.
EDUCATION AND EXPERIENCE REQUIREMENTS:
Post-secondary degree in Computer Science or equivalent combination of education and experience that satisfies the position's requirements.
Minimum 1 to 3 years of progressive responsibilities in developing and supporting Information Security risk management programs.
Knowledge of Information Security controls for Mobile, IoT, Cloud, Applications, Network, and System infrastructure.
Experience or knowledge with RSA Archer GRC tool or equivalent is an asset.
Understanding security technologies commonly used in enterprises to protect information systems, both on-premise and in the Cloud. Hands-on design, implementation, and management of
variety of security technologies are strong assets.
Understanding of Information Security and Risk Management frameworks like SOC2, ISO27001, ISO27005, NIST CSF, and NIST
Understanding of legal and regulatory compliance standards and requirements like PCI-DSS, GDPR, CCPA, and PIPEDA.
Audit experience with PCI DSS, SOC2, and/or other compliance and regulatory standards is an asset.
Desire to achieve or currently maintain CISSP, CISA, CRISC and other security certifications a strong asset
#J-18808-Ljbffr
-
Toronto, Ontario, Canada Canadian National Railway Full timeAt CN, we collaborate to drive our company-and North America-forward. Be part of our Information & Technology (I&T) team, a crucial piece of the engine that keeps us moving.From enterprise architecture to operational technology, our teams utilize the agile methodology to automate and digitize our railroad, ensuring our operations run optimally and safely...
-
Senior Manager Governance, Risk
7 days ago
Toronto, Ontario, Canada Canadian National Railway Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Security Risk Management Specialist
11 hours ago
Toronto, Ontario, Canada Canonical - Jobs Full timeIn security risk management we're looking to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this...
-
Toronto, Ontario, Canada Canadian National Railway Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Senior Manager Governance, Risk
3 weeks ago
Toronto, Ontario, Canada CN Rail Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Sr Analyst, Governance, Risk, and Compliance
2 weeks ago
Toronto, Ontario, Canada Tucows Inc. Full timeTucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you've never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.What's next at TucowsWe embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that...
-
Sr Analyst, Governance, Risk, and Compliance
4 weeks ago
Toronto, Ontario, Canada Tucows Inc. Full timeTucows (NASDAQ:TCX, TSX:TC) is possibly the biggest Internet company you've never heard of. We started as a simple shareware site in 1993 and have since grown into a stable of businesses: Tucows Domains, Ting Internet and Wavelo.What's next at TucowsWe embrace a people-first philosophy that is rooted in respect, trust, and flexibility. We believe that...
-
Security Ambassador
1 week ago
Toronto, Ontario, Canada Paladin Security Full timePosition: Security AmbassadorSite: Mount Sinai HospitalCity: 600 University Avenue, TorontoStatus: Full-TimeHours: Continental Rotation / Pay Rate: $25.50Get hired in healthcare Security Start hereSteps to get your immunization records:Immunization Form:Successfull candidates will be asked to attend mandatory 5 day virtual and in-class training at our...
-
Security Ambassador
2 days ago
Toronto, Ontario, Canada Paladin Security Full timePosition: Security AmbassadorSite: Mount Sinai HospitalCity: 600 University Avenue, TorontoStatus: Full-TimeHours: Continental Rotation / Pay Rate: $26.27Get hired in healthcare Security Start hereSteps to get your immunization records:Immunization Form:Successfull candidates will be asked to attend mandatory 5 day virtual and in-class training at our...
-
Security Guard
1 week ago
Toronto, Ontario, Canada Paladin Security Full timePosition: Security GuardSite: Mount Sinai HospitalCity: 600 University Avenue, TorontoStatus: Full TimeHours: Continental Rotation / Pay Rate: $22.50 /hr.Successful candidates will be asked to attend mandatory 5 day virtual and in-class training at our Etobicoke officeA Valid Immunization Record (Measles, mumps, rubella, varicella, and TB skin tests 1 and...
-
Security Guard
3 weeks ago
Toronto, Ontario, Canada Paladin Security Full timePosition: Security GuardSite: Bridgepoint HospitalCity: 1 Bridgepoint Dr, Toronto, ON M4M 2B5Status: Full TimeHours: Monday to Friday Pay Rate: $22.50 /hr.Successfull candidates will be asked to attend mandatory 5 day virtual and in-class training at our Etobicoke officeA Valid Immunization Record (Measles, mumps, rubella, varicella, and TB skin tests 1 and...
-
Security Guard
2 weeks ago
Toronto, Ontario, Canada Paladin Security Full timePosition: Security GuardSite: Mount Sinai HospitalCity: 600 University Avenue, TorontoStatus: Part TimeHours: Saturday & Sunday Pay Rate: $22.50 /hr.Successfull candidates will be asked to attend mandatory 5 day virtual and in-class training at our Etobicoke officeA Valid Immunization Record (Measles, mumps, rubella, varicella, and TB skin tests 1 and 2)...
-
Compliance/Operational Risk Analyst II
3 weeks ago
Toronto, Ontario, Canada FIS Global Full timePosition Type : Full time Type Of Hire : Experienced (relevant combo of work and education) Education Desired : Bachelor of Business Administration Travel Percentage : 1 - 5%Are you ready to unleash your full potential? We're looking for people who are passionate about payments to chart Worldpay's path to being the largest and most-loved payments company in...
-
Information Security Analyst
2 hours ago
Toronto, Ontario, Ontario, Canada Delpath Full timeTypical Day in Role:• Assess and analyze low complexity data protection exceptions to ensure bank standards are adhered to and risks are mitigated accordingly.• Work with the Data Protection Advisors when assessing high complexity data protection exceptions and participating in controls assessment evaluations, tasks, and ruleset revisions.• Collaborate...
-
Technical Business Analyst
4 weeks ago
Toronto, Ontario, Canada Vectaur Full timeRole: IT Technical Business AnalystCONTEXT: Work must be done from within Canada, due to network and data security issues. This is a Hybrid role, and the expectation is that the resource will work from the office at least 2 days per week, and as required to support project needs.Description: Our team is looking for a Technical Business Analyst who will have...
-
Senior Credit Risk Analyst
4 weeks ago
Toronto, Ontario, Canada CIBC Full timeWe're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients.At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and...
-
AVP, ALM and Risk Management
7 days ago
Toronto, Ontario, Canada CGI Njoyn Full timeCIBC Mellon is a leading provider of asset servicing solutions to institutional investors in Canada, including multi-currency accounting, fund valuation, and investment information reporting. We are passionate about providing exceptional client service backed by our culture of innovation and success. Our outstanding employee experience will provide you with...
-
Toronto, Ontario, Canada Royal Bank of Canada Full timeJob SummaryJob DescriptionWhat is the opportunity? The ideal candidate is passionate about information security for Identity Access Management capabilities across tools, applications, and systems. As a Senior Cyber Security Analyst in the Identity Access Management (IAM) Team, you will work with the IAM Application Onboarding Team to integrate RBC...
-
Portfolio Management Team
1 week ago
Toronto, Ontario, Ontario, Canada Optimize Wealth Management Full timeCompany OverviewOptimize is a leading investment management firm dedicated to delivering a high-touch experience to our network of clients. We specialize in managing diverse portfolios across various asset classes, employing rigorous risk management practices to ensure the security and growth of our investments.Position OverviewWe are seeking a highly...
-
Toronto, Ontario, Canada Healthcare of Ontario Pension Plan (HOOPP) Full timeWhy you'll love working here:high-performance, people-focused cultureour commitment that equity, diversity, and inclusion are fundamental to our work environment and business success, which helps employees feel valued and empowered to be their authentic selveslearning and development initiatives, including workshops, Speaker Series events and access to...