Analyst, Information Security Governance, Risk
4 months ago
Build something new with a world-class team.
At Genesys, we allow our employees to make their mark by entrusting them to make decisions and do what they’ve been hired to do: their very best. Your potential is waiting; why are you?
The Information Security Governance, Risk & Compliance Analyst will play a key role as part of a group of Information Security Compliance professionals responsible for operational services related to the Information Security Compliance program, facilitating Governance, Risk, & Compliance activities related to various compliance and regulatory requirements, and working with cross-functional teams throughout the company and audit/assurance services for the implementation of security controls.
The InfoSec GRC Analyst will report to the Director of Information Security, Governance, Risk & Compliance and participate as a key member of the Information Security & Compliance Team.
**Responsibilities**:
- Assist in managing a compliance program for a portfolio of internal/external audits & certifications, ensuring documented and sustainable compliance practices across the company.- Assist with the implementation and direction of compliance processes to automate and continuously monitor information security controls, exceptions, risks, testing, and evidence artifacts. Develops reporting metrics and dashboards.- Assists control owners in defining responsibilities and control standards for regulatory and compliance goals - including but not limited to the following audits and certifications: SOX, PCI, HIPAA, SOC1/2, FED RAMP, HITRUST, ISO 27001/27017/27018, Cyber Essentials, etc.- Map and maintain common controls framework and control scope/applicability for a portfolio of compliance initiatives and information security policies.-
- Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares stakeholders' reports to track remediation activities. Evaluate & report any security/compliance risks to track as part of the company risk register. Consults on developing security standards, procedures, and controls to manage risks.- Gather requirements guide assigned controls within the centralized GRC tool & audit/certification document repository to care for compliance program information across the company. Work with business unit/product level compliance teams to strengthen and align to a shared company compliance plan and organization approach/methodologies to ensure streamlined, lean, effective, and agile processes.- Provides dashboards and reports based on regular assessments and testing of the effectiveness and efficiency of controls.- Perform operational activities related to the compliance program and escalate deviations when needed.- Perform audit services including risk and gap assessments to business units as needed.- Provide input on responses for company-wide compliance-related customer/partner/third-party requests.- Practice Agile methodologies and promote/strengthen automation across all initiatives to promote a higher level of work quality and act as a model for others to emulate.
Qualifications:
- Bachelor's Degree in Computer Science or equivalent field of study- 5+ years of experience working with applicable information security management, governance, and compliance principles, practices, laws, rules, and regulations- 5+ years of experience in Information systems auditing, monitoring, controlling, and assessment process- Proficiency in Risk assessment and direction methodology- Proficiency in working with recognized IT Security-related standards and technologies.- Ability to function effectively within cross-functional and interdisciplinary teams to achieve tactical and strategic goals. This is a highly responsible position that requires both quantitative and interpersonal skills.- Demonstrated project management, organizational, and facilitation skills.- Excellent communication and presentation skills. Demonstrated ability to serve as an effective member of the InfoSec GRC team and ability to communicate security-related concepts to a broad range of technical and non-technical management and staff.- High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity.- CISSP, CISM, CISA, ITIL, or GIAC certifications desired.
LI-PS1
remote
Compensation:
$77,350.00 - $160,650.00
**Benefits**:
- Medical, Dental, and Vision Insurance.- Telehealth coverage- Flexible work schedules and work from home opportunities- Development and career growth opportunities- Open Time Off in addition to 10 paid holidays- 401(k) matching program- Adoption Assistance- Fertility treatments
More details about our company benefits can be found at the following link:
If a Genesys employee referred you, please use the link they sent you to apply.
About Genesys:
Every year, Genesys orchestrates billions of remarkable customer experiences for organizations in more tha
-
Analyst, Information Security Governance, Risk
3 months ago
Ontario, Canada Genesys Full timeBuild something new with a world-class team. At Genesys, we allow our employees to make their mark by entrusting them to make decisions and do what they’ve been hired to do: their very best. Your potential is waiting; why are you? The Information Security Governance, Risk & Compliance Analyst will play a key role as part of a group of Information...
-
Information Security Risk Analyst
1 month ago
Ottawa, Ontario, H2B, Montréal, Canada Canadian Medical Protective Association Full timeINFORMATION SECURITY RISK ANALYSTCONTRIBUTING TO THE CMPAThe Information Security Office, together with Business Capability Enablement (BCE) and Infrastructure and Operations (I&O), form the CMPA IT team.The Information Security Office plays a pivotal role in safeguarding CMPA’s digital assets, infrastructure, and sensitive information from an array of...
-
Information Security Analyst/GRC
1 month ago
Old Toronto, Ontario, CA BeachHead Inc. Full timeAre you a versatile self-starter with a demonstrated ability to take initiative and work independently with attention to detail? Then, Apply Now! Working with one of the top financial clients, this role calls for an Information Security Analyst/GRC who will be responsible for partnering with Technology segments to support the timely closure of remediation...
-
Information Technology Security Analyst
2 weeks ago
Toronto, Ontario, Ontario, Canada Delpath Full timeSenior IAM Analyst – Risk Management & ComplianceLocation Address: Hybrid – (for meetings as required) @ ScarboroughContract Duration: 10/14/2024 to 04/14/2025Extension Opportunity: YesPossibility FTE Opportunity: YesStory Behind the Need:Business Group - GIAM - IAM GovernanceThe Global Identity & Access Management (GIAM), Governance Team is responsible...
-
Risk Operations Center Analyst
2 weeks ago
Kanata, Ontario, Ottawa region, Canada Prevalent - Third-Party Risk Management Full timeAs a Third-Party Risk Analyst, your day-to-day responsibilities will be to gather information security controls evidence from third-parties on behalf of our clients. This is an entry-level position suitable for an ambitious, hardworking, recent college graduate or college graduate with 1 to 2 years of experience, preferably in information risk management....
-
Senior Information Security Analyst
4 weeks ago
Old Toronto, Ontario, CA Robertson & Company Ltd. Full time*** THIS ROLE IS WITH OUR CLIENT IN THE BANKING INDUSTRY***Title: Senior Info Security AnalystDuration: 6 months (with possibility of extension or conversion)Type: Hybrid (2 days in person at Toronto)MUST HAVE:10+ years of experience in Information SecurityExperience with tools like RSA Archer, Jira, Confluence, etc.Audit experience with CISA/CRISC/CISSP...
-
AVP, Information Security Governance
4 weeks ago
Burlington, Ontario, A9A, Halton, Canada The Co-operators Full timeDescription :Company: CGLDepartment: Information TechnologyEmployment Type: Regular Full-TimeWork Model: RemoteLanguage: This role operates in English.The Opportunity:We are a leading Canadian financial services co-operative committed to being a catalyst for a sustainable and resilient society and our team is essential to deliver on this strategy. That’s...
-
Markham, Ontario, I3P, CA Enercare Full timeSenior Analyst – IT Governance, Risk and Compliance Markham, ON, Canada Req #2497 Proudly Canadian-owned, Enercare is committed to providing the best services, solutions and advice to make customer’s homes as comfortable as they can be. With Enercare Advantage, we provide affordable clean air and water solutions for homes and workplaces. We are...
-
Third Party Risk Analyst
1 month ago
Old Toronto, Ontario, CA Quantum Technology Recruiting Inc. Full timePosition: Third Party Risk AnalystLocation: Remote (EST hours) in Ontario onlyType: Permanent – Full TimeOur Toronto-based client, consistently ranked as one of Canada’s top employers, is looking for a Third Party Risk Analyst, who has done full-cycle 3rd party vendor risk assessments to support their Information Security Risk Management and Governance...
-
Risk Consultant
2 weeks ago
Ottawa, Ontario, Ottawa region, Canada Prevalent - Third-Party Risk Management Full timePrevalent is seeking a highly skilled Risk Consultant with extensive experience in ISO 27001, NIST, SOC 2, and other related risk frameworks. The ideal candidate will have a strong background in information security, risk assessment, and compliance and will be responsible for advising clients on best practices to mitigate risks and ensure compliance with...
-
Senior Analyst
3 weeks ago
Markham, Ontario, York region, Canada Enercare Inc. Full timeEnercare Inc. is one of Canada’s largest home and commercial services companies, providing leading products and services in heating, cooling, plumbing, electrical, water heating and water purification. Our purpose is to provide energy-efficient products and services to our customers, so together we can take action for a greener tomorrow, starting in our...
-
Project Coordinator, Information Security
4 months ago
Ontario, Canada Genesys Full timeBuild something new with a world-class team. At Genesys, we allow our employees to make their mark by entrusting them to make decisions and do what they’ve been hired to do: their very best. Your potential is waiting; why are you? The Information Security Governance, Risk, & Compliance Project Coordinator will play a key role as part of a group of...
-
IT Security Analyst
1 month ago
Golden Horseshoe, Ontario, CA Finance Professionals Inc. Full timeJOB DESCRIPTIONLocation: Hybrid (Downtown, Toronto & Scarborough)Duration: 1 yearOur client, a leading financial institution in Downtown Toronto, is looking for an IT Security Analyst to contribute to achieving the Bank’s regulatory and compliance commitments, as well as keeping the responsibility and commitment to secure the customers. The successful...
-
Sr information security analyst
1 month ago
Old Toronto, Ontario, CA TD Full timeLieu de travail: CanadaHoraire: 37.5Secteur d’activité: Solutions technologiquesDétails de la rémunération :Nous avons à cœur d’offrir une rémunération juste et équitable à tous nos collègues. En votre qualité de candidat ou de candidate, nous vous encourageons à avoir une conversation franche avec votre recruteur et à poser des questions...
-
Information Security Specialist
1 month ago
Old Toronto, Ontario, CA TD Bank Full timeInformation Security Specialist (Vulnerability Governance)Work Location: Toronto, Ontario, CanadaHours: 37.5Line of Business: Technology SolutionsJob Description: We are looking for a dedicated individual to join us and lead our Infrastructure Vulnerability Management Program Governance function. This individual will support the Vulnerability Management...
-
Senior Information Security Advisor
1 month ago
Old Toronto, Ontario, CA Nexus Systems Group Inc. Full timeTypical Day in Role: • Develop and execute a frameworks for risk and audit issues management, including the creation Participate in initiatives and projects driven by various business lines. Guide project and delivery managers to design and establish sound information security practices, facilitating key artifacts such as security design documents,...
-
Old Toronto, Ontario, CA ProViso Staffing Full timeSummary Of Day-To-Day Responsibilities: We are looking for someone who is well-versed at providing technology issue management expertise, guidance, and support, but also motivated to implement oversight and control best practices that meet client’s overarching business management, strategy, and governance objectives.The individual will be responsible for...
-
Information Security Advisor
1 month ago
Old Toronto, Ontario, CA Scotiabank Full timeJoin a purpose-driven winning team, committed to results, in an inclusive and high-performing culture.The Information Security Advisor is responsible for contributing to the overall success of the Information Security & Control Advisory Services in Canada, Latin America, and the Caribbean, ensuring specific individual goals, plans, and initiatives are...
-
Senior Info Security Analyst
1 month ago
Old Toronto, Ontario, CA Global Technical Talent Full timeSenior Info Security Analyst Contract Duration: 12+ months Pay range: $60 - $70/hr Summary Of Day-To-Day Responsibilities: Our client is looking for someone who is well-versed in providing technology issue management expertise, guidance, and support, but also motivated to implement oversight and control best practices that meet the client's...
-
Old Toronto, Ontario, CA Manulife Full timeWe are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and...