Cybersecurity Risk Analyst

1 month ago

Montreal, Quebec, Canada Produits forestiers Résolu Full time
Job Title: Cybersecurity Risk Analyst

Resolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.

Key Responsibilities:
  • Maintain and improve the IT/Security Risk Assessment Framework
  • Document IT security risk, mitigating controls, and present them to risk owners for decision-making
  • Coordinate with the IT compliance team to ensure compensating controls have been put in place
  • Maintain the IT risk register throughout the IT risks lifecycle
  • Perform Privacy Impact Assessments (PIA)
  • Maintain and improve 3rd party vendors assessment methodology
  • Perform 3rd party and cloud vendor security posture assessment, document the assessment, and present the results to business owners
  • Review 3rd party contracts for IT security and data privacy-related clauses and work in collaboration with IT Procurement and Legal teams
  • Maintain the Cloud vendor register
  • Provide vendor selection services for cybersecurity aspects to help business units select a vendor as part of the RFP process
  • Manage and maintain the IT Exception Handling Process
  • Document IT Exceptions, validate the needs from exception requestors and owners, seek exception approval from Cybersecurity management
  • Document risk assessment as needed
  • Maintain the IT Exceptions register and follow-up on approved exceptions
  • Provide project advisory services to Business and IT projects on IT risk matters to ensure risk management activities during project lifecycle
  • Occasionally provide support to project security advisory teams to document project security requirements and controls to implement
  • Produce and report IT risk management KPI and KRI on a monthly basis
Requirements:
  • Bachelor's degree or 5 years of professional experience in Cybersecurity
  • Minimum of 8 years' experience in security governance, risk, and compliance (GRC)
  • Holds security-related certifications such as CISSP, CISM, CSSP, or similar
What We Offer:
  • Competitive salary and annual bonus
  • At least three weeks of vacation and three floating holidays a year from the first day of work, depending on experience
  • Full range of group insurance from the first day of work
  • Telemedicine services
  • Defined-contribution pension plan with generous employer participation from the first day of work
  • Employee and family assistance program
  • Education assistance program
  • Health club reimbursement program
  • Hybrid workplace: in-person and remote work
  • Work environment based on respect, inclusion, and diversity
  • Office accessible by public transit

Resolute Forest Products is committed to the principles of employment equity.

  • Cybersecurity Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...

  • Cybersecurity Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Domtar Full time

    Cybersecurity Risk AnalystDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the development and implementation of our IT risk management framework, ensuring the security and integrity of our systems and data.Key Responsibilities:Maintain and...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Domtar Full time

    Cybersecurity Risk AnalystDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the development and implementation of our IT risk management framework, ensuring the security and integrity of our systems and data.Key Responsibilities:Maintain and...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Domtar Full time

    Cybersecurity Risk AnalystDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the development and implementation of our IT risk management framework, ensuring the security and integrity of our systems and data.Key Responsibilities:Maintain and...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionAt Produits forestiers Résolu, we are seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve an...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionAt Produits forestiers Résolu, we are seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve an...

  • Cybersecurity Risk Analyst

    2 weeks ago

    Montreal, Quebec, Canada Resolute Forest Products Inc. Full time

    Cybersecurity Risk AnalystResolute Forest Products Inc. is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the IT risk management practice by maintaining and improving the IT risk management framework, managing IT exceptions, and performing 3rd party...

  • Cybersecurity Risk Analyst

    2 weeks ago

    Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and...

  • Cybersecurity Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Full time

    Job DescriptionDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing third-party vendor risk assessments.Key ResponsibilitiesMaintain and...

  • Cybersecurity Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Full time

    Job DescriptionDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing third-party vendor risk assessments.Key ResponsibilitiesMaintain and...

  • Cybersecurity Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Full time

    Job DescriptionDomtar is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing third-party vendor risk assessments.Key ResponsibilitiesMaintain and...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Governance Risk Analyst

    1 month ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework.Key Responsibilities:Maintain and improve the IT risk...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst RoleDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the IT risk management practice by maintaining and improving the IT risk management framework, managing IT exceptions, and performing 3rd party...

  • Cybersecurity Risk Analyst

    4 weeks ago

    Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst RoleDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will contribute to the IT risk management practice by maintaining and improving the IT risk management framework, managing IT exceptions, and performing 3rd party...