Security Advisor, Risk and Audit

3 days ago

Montréal, Canada GIRO Full time

Company Description

Our specialty is to optimize And we are proud of our expertise. We use our collective intelligence to impact people's lives by improving the efficiency of urban mobility.

Our innovative software solutions and expert services in the areas of public transit and postal operations are recognized around the world.

**Job Description**:
Reporting directly to the Director of Security (CSO), your duties are as follows:

- Carry out security threat and risk assessments (STRA) for the IT, software development, project management, and corporate services teams
- Update the security risk register and follow up on mitigation measures
- Participate in defining the security internal control framework
- Keep track of internal security audits for the SOC 2 and ISO 27001 certifications
- Contribute to writing procedures, manuals, and other security documentation
- Assist the Director of Security (CSO) in supporting the teams for implementing security controls
- Collaborate closely with the operational security team to ensure that security requirements are met
- Support the legal services team by validating security requirements in service proposals

**Qualifications**:

- University degree or relevant technical certification
- CISA, CRISC, CISSP, or equivalent certification
- More than 5 years of experience as an expert in security risk analysis and compliance
- Experience in the software-development industry, an asset
- Very good knowledge of security standards such as the ISO 27001 series, SOC 2 and CSA STAR
- Good knowledge of recognized methodologies for assessing risks and threats
- Good knowledge of GRC tools (Archer, ServiceNow, or others)
- Skills for analysis and problem solving
- Sense of initiative and autonomy
- Interest in collaboration and teamwork
- Be thorough, curious and listening to the organization’s needs
- Ability to write documentation in both French and English

Additional Information

At GIRO, you will be integrated quicky and called upon to make a concrete contribution The well-being and satisfaction of our employees is a value that we hold dear. Therefore, we offer a range of benefits, including:

- Flexible work schedule, including telecommuting
- A warm welcome and a progressive learning program
- Many recognition and team-building activities, including team breakfast, yoga or aerobic classes, Christmas party, sports activities, etc.
- A GIRO Day, where employees are encouraged to take part in outdoor activities
- A basic group insurance plan with premiums paid 100% by GIRO
- A health and physical-activity account of $600.00 per year
- Reimbursement of OPUS card or parking space
- Paid days off between Christmas and New Year’s Day.

Looking forward to meeting you

  • Junior Advisor

    6 days ago

    Montréal, Canada Richter Full time

    Richter, one of the largest independent accounting and consulting firms in Canada, is recognized as a Top Employer in Montréal and is always looking for top talent. Our firm, located in Montréal, Toronto and Chicago, distinguishes itself from all other accounting firms because of the commitment and cooperation of our employees, who are the key to our...

  • IT Audit Consultant, Risk

    1 week ago

    Montréal, Canada Richter Full time

    **Richter Office: Montreal** Richter is a Business | Family Office that provides strategic advice on business matters and on families’ financial and personal objectives across generations. With close to 100 years of experience advising at the intersection of family and business, Richter has developed an integrated approach to help business owners find...

  • Advisor, Internal Audit

    1 week ago

    Montréal, Canada Business Development Bank of Canada Full time

    We are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...

  • Chief Advisor Governance Audit

    7 days ago

    Montréal, Canada National Bank of Canada Full time

    A career as a **Chief Advisor Internal Audit, Non-Financial Risks** in the Internal Audit team at National Bank, you will contribute to the team's audit mandates and advisory mandates while developing the knowledge of your colleagues in your area of expertise. As a specialized advisor in non-financial risks, you will be expected to lead and/or significantly...

  • Chief Advisor Internal Audit

    5 days ago

    Montréal, Canada National Bank of Canada Full time

    A career as a Chief Advisor in the Internal Audit - Personal Banking, Client Experience and Compliance team means leading and/or contributing to audit or advisory mandates that are cross-functional in scope and involve multiple sectors. You will be required to train and coach your colleagues by sharing your knowledge in your field of expertise and to support...

  • Chief Advisor Internal Audit

    2 weeks ago

    Montréal, QC, Canada National Bank Full time

    A career in Internal Audit - Operational Excellence and Professional Practice at National Bank, you will be a key resource within the Internal Audit group. As Chief Advisor - Operational Excellence, you will be responsible for providing coaching and training; challenging audit mandate teams as to risk, scoping and extent of testing; and ensuring consistency...

  • Chief Advisor Internal Audit

    17 hours ago

    Montréal, Canada National Bank of Canada Full time

    Attendance: Hybrid Employment Category: Senior Professional Type of Contract: Permanent A career in Internal Audit - Operational Excellence and Professional Practice at National Bank, you will be a key resource within the Internal Audit group. As Chief Advisor - Operational Excellence, you will be responsible for providing coaching and training;...

  • Conseiller Adjoint, Audit Des Ti

    1 week ago

    Montréal, Canada Richter Full time

    **A day in the life of a Junior Advisor**: With experience Information technology security, in addition to audit and risk management, you will participate in the delivery of IT consulting and/or IT internal audit mandates. As a consultant with a focus on delivering mandates, you will mostly advise clients in Montreal, with some travel outside of the...

  • Compliance & Audit Manager, Information Security

    3 days ago

    Montréal, QC, Canada WSP Full time

    The Opportunity: WSP is a global consulting firm assisting public and private clients to plan, develop, design, construct, operate and maintain thousands of critical infrastructure projects around the world. WSP's Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT...

  • IT Security Risk Analyst

    3 days ago

    Montréal, Canada WSP Full time

    WSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...