IT Auditor

At Green Shield Canada, we're dedicated to creating better health for all Canadians. Our company was founded on the principle of making healthcare more accessible and affordable for everyone. We believe that every individual deserves high-quality care, regardless of their background or financial situation.

We're seeking an experienced IT Auditor to join our Internal Audit Services Team. As an IT Auditor, you'll play a critical role in ensuring the effectiveness of our information technology systems and controls. You'll be responsible for assessing and evaluating our IT risks, identifying areas for improvement, and providing recommendations for remediation.

• Conduct comprehensive IT audits to assess the effectiveness of security controls, compliance with policies, and adherence to regulatory requirements.
• Review and analyze system configurations, network setups, and security measures to identify vulnerabilities and areas for improvement.
• Conduct SOC 1 & SOC 2 audits to ensure compliance with Trust Service Criteria (Security, Availability, Processing Integrity, Confidentiality, and Privacy).
• Conduct process and operational audits to evaluate the efficiency and effectiveness of business operations.
• Identify and assess business risk areas and research relevant best practices and strategies to develop audit programs for individual internal audits.
• Work closely with IT, IT Security, and other business units in an advisory capacity on various IT projects, system implementations, and technology initiatives.
• Provide technical expertise on risk, security, and control matters to support IT and business objectives.
• Build strong relationships with internal partners.
• Partner with management to develop recommendations for changes to processes and systems that will mitigate risk, improve performance and productivity.

• Minimum post-secondary degree or diploma in computer science, information systems, business administration or a related field.
• A professional designation is considered an asset, such as, Certified Information Systems Auditor (CISA), Certified in Information Risk and Control (CRISC), Certified Information Systems Security Professional (CISSP), or another relevant designation/certificate.
• Minimum 3 years of experience in IT auditing, cybersecurity, or related fields.
• Understanding of security frameworks, including NIST, ISO Standards, COBIT and CIS
• Familiarity with cloud services (AWS, Azure, Google Cloud).
• Experience with SOC 2 audits, process audits, and operational audits
• Knowledge of cloud security principles and compliance requirements.
• Experience working with Technology platforms and must be familiar with performing audits of network, operating systems, applications, databases and other technical areas, including but not limited to Active Directory, Microsoft solutions, Firewall Technology, 3rd Party Management and Cloud solutions.
• Motivated to stay current on changes and trends in the IT / cybersecurity fields
• Excellent planning, organizing, and time management skills with strong attention to detail
• Strong written and verbal communication skills
• Strong personal integrity and work ethic
• General understanding of the Canadian regulatory environment
• Must be a team player with the ability to work independently in a rapidly changing environment

We offer a competitive salary range of $80,000 - $120,000 per year, depending on experience. In addition, we provide a comprehensive benefits package, including medical, dental, and vision coverage, as well as a generous retirement plan. We also offer opportunities for professional development and growth, including training and education assistance.

We are an equal opportunities employer and welcome applications from diverse candidates. If you are passionate about creating better health for all Canadians and have the skills and experience to excel in this role, please submit your application.