Analyst, Information Security Governance, Risk
6 months ago
Build something new with a world-class team.
At Genesys, we allow our employees to make their mark by entrusting them to make decisions and do what they’ve been hired to do: their very best. Your potential is waiting; why are you?
The Information Security Governance, Risk & Compliance Analyst will play a key role as part of a group of Information Security Compliance professionals responsible for operational services related to the Information Security Compliance program, facilitating Governance, Risk, & Compliance activities related to various compliance and regulatory requirements, and working with cross-functional teams throughout the company and audit/assurance services for the implementation of security controls.
- The InfoSec GRC Analyst will report to the Director of Information Security, Governance, Risk & Compliance and participate as a key member of the Information Security & Compliance Team.- Responsibilities:- Assist in managing a compliance program for a portfolio of internal/external audits & certifications, ensuring documented and sustainable compliance practices across the company.
- Assist with the implementation and direction of compliance processes to automate and continuously monitor information security controls, exceptions, risks, testing, and evidence artifacts. Develops reporting metrics and dashboards.
- Assists control owners in defining responsibilities and control standards for regulatory and compliance goals - including but not limited to the following audits and certifications: SOX, PCI, HIPAA, SOC1/2, FED RAMP, HITRUST, ISO 27001/27017/27018, Cyber Essentials, etc.
- Map and maintain common controls framework and control scope/applicability for a portfolio of compliance initiatives and information security policies.
- Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares stakeholders' reports to track remediation activities. Evaluate & report any security/compliance risks to track as part of the company risk register. Consults on developing security standards, procedures, and controls to manage risks.
- Gather requirements guide assigned controls within the centralized GRC tool & audit/certification document repository to care for compliance program information across the company. Work with business unit/product level compliance teams to strengthen and align to a shared company compliance plan and organization approach/methodologies to ensure streamlined, lean, effective, and agile processes.
- Provides dashboards and reports based on regular assessments and testing of the effectiveness and efficiency of controls.
- Perform operational activities related to the compliance program and escalate deviations when needed.
- Perform audit services including risk and gap assessments to business units as needed.
- Provide input on responses for company-wide compliance-related customer/partner/third-party requests.
- Practice Agile methodologies and promote/strengthen automation across all initiatives to promote a higher level of work quality and act as a model for others to emulate.- Qualifications:- Bachelor's Degree in Computer Science or equivalent field of study
- 5+ years of experience working with applicable information security management, governance, and compliance principles, practices, laws, rules, and regulations
- 5+ years of experience in Information systems auditing, monitoring, controlling, and assessment process
- Proficiency in Risk assessment and direction methodology
- Proficiency in working with recognized IT Security-related standards and technologies.
- Ability to function effectively within cross-functional and interdisciplinary teams to achieve tactical and strategic goals. This is a highly responsible position that requires both quantitative and interpersonal skills.
- Demonstrated project management, organizational, and facilitation skills.
- Excellent communication and presentation skills. Demonstrated ability to serve as an effective member of the InfoSec GRC team and ability to communicate security-related concepts to a broad range of technical and non-technical management and staff.
- High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity.
- CISSP, CISM, CISA, ITIL, or GIAC certifications desired.- #LI-PS1- #remoteIf a Genesys employee referred you, please use the link they sent you to apply.
About Genesys:
Every year, Genesys orchestrates billions of remarkable customer experiences for organizations in more than 100 countries. Through the power of our cloud, digital and AI technologies, organizations can realize Experience as a Service our vision for empathetic customer experiences at scale. With Genesys, organizations have the power to deliver proactive, predictive, and hyper personalized experiences to deepen their customer connection across every marketing, sales, and service moment on any channel,
-
Analyst, Information Security Governance, Risk
7 months ago
Ontario, Canada Genesys Full timeBuild something new with a world-class team. At Genesys, we allow our employees to make their mark by entrusting them to make decisions and do what they’ve been hired to do: their very best. Your potential is waiting; why are you? The Information Security Governance, Risk & Compliance Analyst will play a key role as part of a group of Information...
-
Information Security Analyst
4 weeks ago
Toronto, Ontario, Ontario, Canada Infotek Consulting Services Inc. Full timeInfotek Consulting is searching for several Information Security Analysts to work on a hybrid contract opportunity in Toronto:MUST HAVE: Issue management experience. Project management experience Strong Technical skills Team Lead experience Risk management exp Cyber security exp Governance exp Info sec experience Coupa 3rd party risk experience 3rd party...
-
Information Security Analyst
2 months ago
Toronto, Ontario, Ontario, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded as...
-
Cyber Security Analyst
4 weeks ago
Toronto, Ontario, Ontario, Canada Infotek Consulting Services Inc. Full timeInfotek Consulting is searching for an Intermediate Cyber Security Analyst - this is a hybrid contract assignment based in Toronto:Global Technology Control Testing The US cybersecurity and IT risk team oversees and advises on cybersecurity and IT risk matter in the US. The team primary focuses is to ensure the bank's security controls are in line with...
-
Business analyst
2 months ago
Ontario, Canada Business Analyst Computer Systems Full timeOverview Languages: English Education: Bachelor's degree Experience: 1 year to less than 2 years On site Work must be completed at the physical location. There is no option to work remotely. Responsibilities:Design, develop and implement information systems business solutions.Assess physical and technical security risks to data, software and...
-
Governance, Risk and Compliance Officer
4 weeks ago
Ottawa, Ontario, Ottawa region, Canada LeverageTek Staffing Solutions Full timeLeverageTek is actively seeking a Governance, Risk and Compliance Officer for a 12-month term position with its Ottawa-based customer.Work LocationRemote (anywhere in Canada)Security RequirementMust be eligible for a Government of Canada Enhanced Reliability ClearanceKey TasksEnsure the organization’s information systems are protected by completing...
-
Technology Risk
4 weeks ago
Toronto, Ontario, Ontario, Canada Raise Full timeLocation: Toronto, ON; Hybrid 2-3 times/week Contract Duration: 12 months Possibility of extensionNumber of Positions: 1 Schedule Hours: Monday-Friday, 9am-5pm; 37.5 hoursStory Behind the NeedBusiness group: Internal Controls and Regulatory ManagementProject: IT Risk Management team plays an important role in the Bank’s Three Lines of Defense Framework,...
-
Information Security Assurance Associate
2 weeks ago
Eastern Ontario, Canada Manulife Insurance Malaysia Full timeWe are seeking an Information Security Assurance Associate to join our team at Manulife Financial Corporation.About the Role:The Information Security Assurance Associate will be responsible for performing information risk assurance assessments and controls testing according to the company's policies and standards.Key Responsibilities:Perform information risk...
-
Information Technology Risk Manager
4 weeks ago
Toronto, Ontario, Ontario, Canada Infotek Consulting Services Inc. Full timeInfotek Consulting is searching for an accomplished Technology Risk Manager - this is a hybrid contract assignment based in Toronto:The main responsibility includes but not limited to: - Review and revise as needed the IT and cyber security risk assessment processes, results, and artifacts to reduce overlaps and gaps and to produce results that are...
-
Sr Info Security Analyst
7 days ago
Toronto, Ontario, C6A, Ontario, Canada Apex Systems Full timeSr Info Security AnalystClient: Big 5 BankLocation: Downtown Toronto. 2 days in officeDuration of Contract/Perm: 6-month rolling contract, up to 2 yearsHours/week: 37.5 hours/weekStart date: JanuaryJob DescriptionKey Responsibilities:Consulting:Review and interpret requirements documentation, architecture diagrams, and solution designs to help determine the...
-
Ottawa, Ontario, H2B, Montréal, Canada S.i. Systems Full timeOur valued public sector client is in need of a Secret cleared, Senior Security Analyst to modernize the departmental IT security program in the public sector and provide surge capacity in various areas related to IT security services delivery, such as security assessment of systems and projects, and risk management. Tasks and Deliverables: ...
-
Information Security Analyst
4 weeks ago
Toronto, Ontario, Ontario, Canada Astek Full timeThe Astek GroupFounded in France in 1988, Astek is a global player in engineering and technology consulting. With its expertise in various industrial and tertiary sectors, Astek supports its international clients in the intelligent deployment of their products and services, as well as in the implementation of their digital transformation.Since its inception,...
-
Credit Risk Analyst
1 month ago
Eastern Ontario, Canada Metrobank Full timeJob Title: Credit Risk AnalystSalary: PHP 80,000 - PHP 120,000 per annum (estimated)Company OverviewMetrobank is a leading financial institution in the Philippines, committed to providing innovative banking solutions to its customers.Job DescriptionWe are seeking a highly skilled Credit Risk Analyst to join our Consumer Business Sector - Credit Operations...
-
Governance, Risk and Compliance Officer
4 weeks ago
Ottawa, Ontario, H2B, Montréal, Canada Canadian Forces Morale and Welfare Services - CFMWS Full timeWHO WE ARECFMWS. A job with purpose. Our 4000+ person strong organization champions a healthy, fun, creative and active lifestyle for Canadian Armed Forces members, Veterans and their families. Help us deliver a variety of recreation and fitness programs, offer family support, organize charity events and make sure our members access retail, travel and...
-
Security Operations Center Analyst
4 weeks ago
Toronto, Ontario, Ontario, Canada Tundra Technical Solutions Full timeJob Title: SOC MDR L2 AnalystLocation: Downtown Toronto (onsite 3 days per week)Term: 10-month (extendable) DescriptionOur client is an industry leading firm that serves clients on a variety of specialized projects that help them to work smarter, grow faster and compete better. Why join their contract workforce?- Interesting work: Deliver work that matters...
-
Information Security Consultant
3 weeks ago
Ontario, Canada Compunnel Inc. Full timeWe are seeking a highly experienced Information Security Architect to join our team on a temporary basis to ensure the protection and optimization of TCHC’s IT systems and infrastructure. This strategic role involves designing and implementing advanced security standards, technologies, and processes to meet operational objectives and regulatory...
-
Information Security Consultant
3 weeks ago
Ontario, Canada Compunnel Inc. Full timeWe are seeking a highly experienced Information Security Architect to join our team on a temporary basis to ensure the protection and optimization of TCHC’s IT systems and infrastructure. This strategic role involves designing and implementing advanced security standards, technologies, and processes to meet operational objectives and regulatory...
-
Senior Director of Information Security
4 weeks ago
Ontario, Canada Quantum Technology Recruiting Inc. (QTR) Full timePosition: Senior Director of Information SecurityLocation: 100% Remote (Ontario or Quebec)About the Role:We are seeking a seasoned Senior Director of Information Security to lead our comprehensive enterprise security strategy. In this role, you will identify security gaps, develop long-term security roadmaps, and communicate effectively with Board members...
-
Senior Director of Information Security
4 weeks ago
Ontario, Canada Quantum Technology Recruiting Inc. (QTR) Full timePosition: Senior Director of Information Security Location: 100% Remote (Ontario or Quebec) About the Role: We are seeking a seasoned Senior Director of Information Security to lead our comprehensive enterprise security strategy. In this role, you will identify security gaps, develop long-term security roadmaps, and communicate effectively with Board...
-
Senior Director of Information Security
4 weeks ago
Ontario, Canada Quantum Technology Recruiting Inc. (QTR) Full timePosition: Senior Director of Information SecurityLocation: 100% Remote (Ontario or Quebec)About the Role:We are seeking a seasoned Senior Director of Information Security to lead our comprehensive enterprise security strategy. In this role, you will identify security gaps, develop long-term security roadmaps, and communicate effectively with Board members...
