Cybersecurity Risk Management Specialist
2 months ago
Domtar Corporation is seeking a highly skilled Cybersecurity Risk Management Specialist to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.
Key Responsibilities:- Maintain and improve an IT/Security Risk Assessment Framework
- Document IT security risks, mitigating controls, and present them to risk owners for decision-making
- Coordinate with the IT compliance team to ensure compensating controls have been put in place
- Maintain the IT risk register throughout the IT risks lifecycle
- Perform 3rd party and cloud vendor security posture assessments, document the assessments, and present the results to business owners
- Review 3rd party contracts for IT security and data privacy-related clauses and work in collaboration with IT Procurement and Legal teams
- Provide vendor selection services for cybersecurity aspects to help business units select a vendor as part of the RFP process
- Document IT Exceptions, validate the needs from exception requestors and owners, and seek exception approval from Cybersecurity management
- Document risk assessments as needed
- Provide project advisory services to Business and IT projects on IT risk matters to ensure risk management activities during the project's lifecycle
- Produce and report IT risk management KPI and KRI on a monthly basis
- Bachelor's degree or 5 years of professional experience in Cybersecurity
- Minimum of 8 years' experience in security governance, risk, and compliance (GRC)
- Holds security-related certifications such as CISSP, CISM, CSSP, or similar considered an asset
- Practical experience with implementing and/or working with IT Risk management frameworks
- Practical experience with performing IT Risk assessments during projects and as part of security operations
- Practical experience with security controls and risk mitigation measures implementation
- Practical experience assessing 3rd party vendor risks and reviewing security and IT controls related assurances documentation provided by 3rd parties
- Experience with project life cycles, particularly security risk analysis, solutions design, and broad systems integration
- Ability to influence and engage with senior management
- Worked in a decentralized environment (both technical and processes)
- Excellent written (documentation) and verbal communication skills (English & French) a strong asset
Domtar Corporation is an equal-opportunity employer. Qualified applicants will be considered without regard to age, race, color, sex (including gender identity or expression, sexual orientation, and pregnancy), marital status, religion, national origin, genetic information, disability, or veteran status. We are also committed to ensuring reasonable accommodations for individuals protected by Section 503 of the Rehabilitation Act of 1974, and Title I of the Americans with Disability Act of 1990.
-
Cybersecurity Risk Management Specialist
2 weeks ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeCybersecurity Risk Management SpecialistAbout ResoluteResolute Forest Products is a leading global player in the forest products industry, with a rich history spanning over two centuries. The company has built a strong foundation through the acquisition of more than 20 predecessor companies, supporting hundreds of communities along the way. With a presence...
-
Cybersecurity Risk Management Specialist
3 weeks ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeAt Produits forestiers Résolu, we are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team. This role will be responsible for maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key Responsibilities:Maintain and improve the IT risk management...
-
Cybersecurity Risk Management Specialist
3 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This role involves the ongoing maintenance and enhancement of the IT risk management framework, overseeing IT...
-
Cybersecurity Risk Management Specialist
3 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management strategy at Domtar Corporation. This position involves refining the IT risk management framework, overseeing IT exceptions, and conducting...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This role involves the ongoing maintenance and enhancement of the IT risk management framework, overseeing IT...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management strategy at Domtar Corporation. This position involves refining the IT risk management framework, overseeing IT exceptions, and conducting...
-
Cybersecurity Risk Management Specialist
3 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the Manager of IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This includes the upkeep and refinement of the IT risk management framework, overseeing IT exceptions,...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management SpecialistIn collaboration with the Manager of IT Compliance & Governance Security team, the Cybersecurity Risk Management Specialist will play a vital role in enhancing the IT risk management practices at Domtar Corporation. This includes the upkeep and refinement of the IT risk management framework, overseeing IT exceptions,...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management RoleAs a Cybersecurity Risk Management Specialist at Domtar Corporation, you will play a crucial part in maintaining and improving the IT risk management framework. This involves managing IT exceptions, performing 3rd party vendor risk assessments, and contributing to the IT risk management practice. You will work closely with...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk Management RoleAs a Cybersecurity Risk Management Specialist at Domtar Corporation, you will play a crucial part in maintaining and improving the IT risk management framework. This involves managing IT exceptions, performing 3rd party vendor risk assessments, and contributing to the IT risk management practice. You will work closely with...
-
Cybersecurity Risk and Compliance Specialist
3 months ago
Montreal, Quebec, Canada Domtar Corporation Full timeCybersecurity Risk and Compliance Specialist In collaboration with the Manager of IT Compliance & Governance Security team, the Cybersecurity Risk and Compliance Specialist will play a vital role in enhancing the IT risk management framework at Domtar Corporation. This position involves the management of IT exceptions and conducting thorough assessments of...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team at Produits forestiers Résolu. As a key member of our IT Security Governance team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Risk Management Specialist to join our team at Produits forestiers Résolu. As a key member of our IT Security Governance team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...
-
Cybersecurity Risk Management Specialist
1 month ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeCybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...
-
Cybersecurity Risk Management Specialist
2 months ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeCybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...
-
Cybersecurity Risk Management Specialist
1 month ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeCybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...
-
Cybersecurity Risk Management Specialist
1 month ago
Montreal, Quebec, Canada Produits forestiers Résolu Full timeCybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...
-
Montreal, Quebec, Canada Transat A.T Inc. Full timeCybersecurity Specialist, Governance, Risks and ComplianceAt Transat A.T Inc., we are seeking a highly skilled Cybersecurity Specialist to join our Governance, Risks and Compliance team. As a key member of our team, you will play a critical role in helping us meet our compliance requirements and identify and monitor business risks.Key Responsibilities:Assess...
-
Montreal, Quebec, Canada Transat A.T Inc. Full timeCybersecurity Specialist, Governance, Risks and ComplianceAt Transat A.T Inc., we are seeking a highly skilled Cybersecurity Specialist to join our Governance, Risks and Compliance team. As a key member of our team, you will play a critical role in helping us meet our compliance requirements and identify and monitor business risks.Key Responsibilities:Assess...
-
Senior Cybersecurity Risk Management Advisor
3 weeks ago
Montreal, Quebec, Canada National Bank Full timeJob Title: Senior Cybersecurity Risk Management AdvisorJoin National Bank as a Senior Cybersecurity Risk Management Advisor and take on a key role in supporting the implementation of the Bank's risk management strategy. As a specialist in technology, cyber, and data risk management, you will contribute to the development and implementation of a risk...
