IT Risk and Compliance Specialist
2 weeks ago
About the Role
The Senior IT Governance Analyst will play a key role in managing IT Governance, Risk Management, and Compliance activities within Canada and the US, as part of the IT Governance, Risk, and Compliance (IT GRC) team. Reporting directly to the Director, IT GRC, this individual will be instrumental in collaborating across IT, business, and internal/external audit teams, particularly for compliance processes.
Key Responsibilities
- Manage IT policies, standards, guidelines, procedures, plans, playbooks, and standard operating procedures (SOPs) to ensure alignment with industry standards, best practices, regulatory requirements, and IT enterprise policy framework and management requirements.
- Ensure policies are reviewed on schedule and communicated to relevant parties in compliance with processes.
- Perform gap analysis of IT governance and remediate gaps or work with department management to remediate gaps.
- Support the Data Governance program and records information management programs.
IT Risk Management
- Perform all aspects of an IT risk management program, including assessing risk to industry frameworks and in line with Enterprise risk tolerance and appetite.
- Review and assess management responses to ensure risks are sufficiently mitigated and document justification and reasoning.
- Perform risk assessments of vendors and provide advice on iterative improvements to the process.
- Facilitate periodic risk review sessions with IT leadership and perform assessments to ensure consistent patterns of risk management processes across the company.
- Manage the third-party risk management process for external vendors.
IT Compliance
- Assist with IT Compliance programs (e.g., SOX, PCI DSS) including planning, testing, execution, monitoring, and reporting of new and existing processes and controls.
- Participate in annual and ongoing IT Compliance (e.g., SOX) scoping to identify changes to systems, applications, and automated controls considered in-scope for the current fiscal year.
- Manage IT Compliance readiness, including control identification and testing for new systems, applications, and automated controls.
- Lead IT General Control (ITGC) and application control (ITAC) walkthroughs for new or complex processes and systems.
- Develop, update, and/or review IT process documentation for accuracy, completeness, and relevance and update as necessary.
- Coordinate IT SOX program testing for ITGC and ITAC with co-sourced internal audit IT team members, external audit IT team members, control owners, managers, and executive management.
- Evaluate IT control deficiencies for impact and perform root cause analysis to determine appropriate management actions.
- Monitor management's remediation efforts to closure, including review of supporting evidence.
- Provide regular IT Compliance program status reporting to the IT team, Internal Audit, and Senior IT management as needed.
- Assist with benchmarking and other initiatives to improve controls, make processes more efficient, effective, and/or reduce cycle time for IT SOX and PCI DSS compliance.
- Work closely with cross-functional teams, including IT Operations, Accounting/Finance, and Internal/External Audit.
- Collaborate with internal and external auditors to ensure IT SOX and other compliance program requirements are being met.
- Ensure new software programs meet compliance requirements before they are made operational.
- Support and manage detailed testing of controls to ensure risks are appropriately identified, associated audit procedures are applied, and related controls are designed and operating to mitigate the identified risks.
- Train IT GRC to the IT and Business teams.
- Build trust and positive working relationships with auditors, business stakeholders, IT teams, and senior management to ensure alignment between IT strategy and business objectives.
- Collaborate with Project, IT development, and operations teams to identify, collect, and optimize IT resources to meet business requirements.
Qualifications
- Bachelor's degree or higher, preferably in Information Technology (IT), Information Security, Computer Science, or other technical discipline; Finance/Accounting is acceptable.
- 5+ years of progressive experience in IT Governance, Risk Management, Compliance, and/or Audit (e.g., Operations, Financial, IT); Project management experience is desired.
- Designations and Certifications in one or more of the following areas: CPA (CA, CMA, CGA), CISA, GRCP, CGRC, CIA is preferred.
- CISSP, GIAC, CGEIT, CRISC, CISM, CDPSE, ISO 27001 are an asset.
- Demonstrate previous success working with IT GRC programs.
- Advanced knowledge and experience with SOX, PCI DSS, and related industry standards/frameworks is required.
- Knowledge of CIS, ISO 27001, COBIT, NIST, and related industry standards/frameworks is preferred.
- Possess strong communication and collaboration skills to provide solutions and translate in both technical and non-technical manners.
- Illustrated ability to deliver projects on time and within budget in a fast-moving environment and competence in managing several projects.
- Prior experience in large professional services, consulting, and audit companies, including Big 4 firms, is strongly desired.
- Experience in supporting compliance with applicable privacy laws is an asset.
About Enercare
Enercare is an equal opportunity employer. We are committed to equal employment opportunity regardless of race, color, ancestry, national origin, religion, sex, age, sexual orientation, gender identity, citizenship, marital status, disability, pregnancy, military status, protected veteran status, or other characteristics protected by applicable law. Enercare's recruitment process includes accommodation for applicants with disabilities in accordance with applicable provincial accessibility laws and regulations. All accommodations will take into account the applicant's accessibility needs due to disability and are available upon request.
-
IT Risk and Compliance Specialist
3 days ago
Markham, Ontario, Canada Astellas Full timeAbout AstellasAstellas Pharma Inc. is a global pharmaceutical company dedicated to delivering innovative and effective medicines to patients and physicians worldwide. Our commitment to addressing unmet medical needs and conducting business with ethics and integrity enables us to improve the health of people globally.Job SummaryThis role will collaborate...
-
IT Risk and Compliance Specialist
3 days ago
Markham, Ontario, Canada Astellas Full timeAbout AstellasAstellas Pharma Inc. is a global pharmaceutical company dedicated to delivering innovative and effective medicines to patients and physicians worldwide. Our commitment to addressing unmet medical needs and conducting business with ethics and integrity enables us to improve the health of people globally.Job SummaryThis role will collaborate...
-
IT Risk and Compliance Specialist
2 weeks ago
Markham, Ontario, Canada Astellas Full timeAstellas is committed to developing innovative therapies for patients. Our team works to develop and deliver effective new medicines to patients and physicians. We are driven to address unmet medical needs and conduct our business with ethics and integrity.This role will collaborate closely with partners in DigitalX, Technology X, Ethics and Compliance, and...
-
IT Risk and Compliance Specialist
1 week ago
Markham, Ontario, Canada Astellas Full timeAstellas is committed to developing innovative therapies for patients. Our team works to develop and deliver effective new medicines to patients and physicians. We are driven to address unmet medical needs and conduct our business with ethics and integrity.This role will collaborate closely with partners in DigitalX, Technology X, Ethics and Compliance, and...
-
IT Risk and Compliance Specialist
6 days ago
Markham, Ontario, Canada Astellas Full timeAstellas is committed to developing innovative therapies for patients. Our team works to develop and deliver effective new medicines to patients and physicians. We are driven to address unmet medical needs and conduct our business with ethics and integrity.This position is part of our efforts to ensure compliance with policies, data governance, and...
-
IT Risk and Compliance Specialist
7 days ago
Markham, Ontario, Canada Astellas Full timeAstellas is committed to developing innovative therapies for patients. Our team works to develop and deliver effective new medicines to patients and physicians. We are driven to address unmet medical needs and conduct our business with ethics and integrity.This position is part of our efforts to ensure compliance with policies, data governance, and...
-
Risk Management Specialist
3 days ago
Markham, Ontario, Canada Aviva Full timeJob SummaryWe are seeking a highly skilled Risk Management Specialist to join our team at Aviva Canada. In this role, you will be responsible for designing, implementing, and maintaining our Third Party Risk Management program.Key ResponsibilitiesDevelop and maintain a comprehensive risk management framework to ensure compliance with regulatory requirements...
-
Risk Management Specialist
3 days ago
Markham, Ontario, Canada Aviva Full timeJob SummaryWe are seeking a highly skilled Risk Management Specialist to join our team at Aviva Canada. In this role, you will be responsible for designing, implementing, and maintaining our Third Party Risk Management program.Key ResponsibilitiesDevelop and maintain a comprehensive risk management framework to ensure compliance with regulatory requirements...
-
Risk Management Specialist
4 weeks ago
Markham, Ontario, Canada Stantec Full timePosition Overview: The Risk Management Specialist plays a crucial role in identifying, assessing, and mitigating risks that could potentially impact the organization. This position requires a keen analytical mindset and the ability to develop strategies that enhance operational efficiency while ensuring compliance with relevant regulations.Key...
-
Risk Management Specialist
2 weeks ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain a...
-
Risk Management Specialist
1 week ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain a...
-
Risk Management Specialist
6 days ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain a...
-
Risk Management Specialist
6 days ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain a...
-
Risk Management Specialist
2 weeks ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain Aviva...
-
Risk Management Specialist
1 week ago
Markham, Ontario, Canada Aviva Full time**About the Role**Aviva Canada is seeking a highly skilled and experienced Risk Management Specialist to join our team. As a key member of our Third Party Risk Management (TPRM) program, you will play a critical role in ensuring the effective management of third-party risks across the organization.**Key Responsibilities**Design, implement, and maintain Aviva...
-
IT Governance Risk and Compliance Senior Analyst
4 weeks ago
Markham, Ontario, Canada Enercare Full timeJob Overview:The Senior Analyst – IT Governance, Risk and Compliance will oversee initiatives within North America as part of the IT GRC team, reporting directly to the Director of IT GRC. This position requires collaboration with IT, business units, and audit teams to ensure compliance with established processes. Candidates should possess a solid...
-
Risk Management Specialist
4 weeks ago
Markham, Ontario, Canada Stantec Consulting International Ltd. Full timeRisk Management SpecialistStantec Consulting International Ltd. is seeking a dedicated Risk Management Specialist to enhance our esteemed program management team. The selected candidate will play a pivotal role in managing all facets of risk, encompassing risk identification, assessment, response strategies, mitigation, and ongoing monitoring. This position...
-
Environmental Risk Specialist
7 days ago
Markham, Ontario, Canada Canada North Environmental Services Full timeJob Title: Environmental Risk SpecialistJob Summary:Canada North Environmental Services is seeking an experienced Environmental Risk Specialist to join our team in Markham, ON. As an Environmental Risk Specialist, you will be responsible for leading and completing risk assessments, data management, and quantitative analyses.Key Responsibilities:Lead and...
-
Environmental Risk Specialist
7 days ago
Markham, Ontario, Canada Canada North Environmental Services Full timeJob Title: Environmental Risk SpecialistJob Summary:Canada North Environmental Services is seeking an experienced Environmental Risk Specialist to join our team in Markham, ON. As an Environmental Risk Specialist, you will be responsible for leading and completing risk assessments, data management, and quantitative analyses.Key Responsibilities:Lead and...
-
AML Compliance Manager
1 week ago
Markham, Ontario, Canada Robertson & Company Ltd. Full timeJob Title: AML Compliance ManagerRobertson & Company Ltd. is seeking a highly experienced AML Compliance Manager to join our team.Job Summary:We are looking for a seasoned professional to lead our Anti-Money Laundering (AML) compliance efforts. The successful candidate will have a strong background in AML regulations and experience in managing AML teams.Key...
