Senior Compliance Officer

Overview Introduction: Robertson is seeking a skilled Senior Compliance Officer to join our client in support of future vacancy. Contract Period: 12 months Pay Rate: Starting from $48 per hour Location: Ottawa, ON Location Type: Hybrid; 3 days per week in the office Business Hours: Monday-Friday; 9:00 AM – 5:00 PM Job Responsibilities Cybersecurity Compliance Programs: Serve as the point of contact for managing all compliance and audit activities related to assigned Cloud Services, acting as a trusted partner to the assigned Cloud Services Lead interactions with both internal and external auditors (including external regulatory bodies, internal auditors, and third-party auditors), ensuring efficient and effective audit processes Support the development, implementation, and maintenance of compliance programs to meet the organization\'s strategic objectives and regional regulatory requirements. Audit Strategy and Execution: Lead the preparation and execution of internal and external audits across assigned Cloud Service, ensuring compliance with established corporate policies/standards, industry standards, and regulatory requirements Develop and implement audit strategies for the assigned Cloud Services, ensure audits are proactive, risk-based, and aligned with business priorities, while ensuring a continuous improvement approach Advanced Compliance and Risk Management: Lead and enhance the risk management and improve controls for assigned Cloud Services, ensuring compliance with both internal policies and external regulatory requirements Support and improve the Cloud Services Change Management, Business Continuity Plan (BCP), and Disaster Recovery (DR) related controls to ensure compliance with corporation policies/standards and business continuity regulations and best practices Maintain and update key governance, risk management and compliance documentation, including ISMS 27001, ISO 27017/18 mandatory documents, ensuring alignment with corporate policy and evolving industry standards Policy Development and Process Improvement: Support the develop, review, and implement cybersecurity compliance policies, standards and procedures to ensure continuous improvement of internal controls, audit readiness, and risk mitigation Recommend and drive the implementation of cybersecurity policies and standards aimed at improving Cloud Services’ compliance posture, ensuring policies are aligned with business objectives and regulatory expectations Regularly assess and refine compliance workflows to optimize efficiency and alignment with evolving compliance frameworks Global Compliance Management: Partner with cross-functional teams in analysing cybersecurity compliance requirements cross functions, ensuring adherence to local and international regulations (e.g., GDPR, CCPA, etc.) Support the development of global compliance strategies, ensuring supported Cloud Services units are aware of evolving global cybersecurity and privacy laws and that cross-border data transfers are compliant with corporate policies and standards Support and Advisory for Cloud Services Units: Provide cybersecurity compliance guidance and support to sales, presales, product management, and other business units on cybersecurity compliance-related matters, including RFPs, RFIs, security & compliance questionnaires, and client security inquiries Be the primary advisor to assigned Cloud Services on complex compliance and security topics, providing recommendations for risk mitigation, process improvements, and regulatory adherence Customer and Stakeholder Engagement: Engage directly with key customers to address complex compliance and security questions, and to support ongoing trust-building initiatives Ensure the communication of compliance requirements and audit results to relevant stakeholders, including customers, partners, and regulators Continuous Monitoring and Reporting: Oversee the ongoing monitoring of compliance programs to ensure that they remain effective and aligned with the organization’s security goals and business objectives Develop and provide regular compliance reports to senior management, highlighting audit results, risk areas, and the status of corrective actions Experience & Qualifications 7-10 years of experience in cybersecurity compliance, risk management, or information security Experience in cloud computing or SaaS environments is highly preferred Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or similar certifications are strongly preferred Expertise in Standards & Frameworks Strong knowledge and practical experience with ISO 27001, SOC 2, PCI DSS, and other relevant frameworks (e.g., GDPR, NIST) Proven experience in leading complex audits, with the ability to work closely with senior leadership, legal, data privacy, operations, and technical teams Excellent written and verbal communication skills, with the ability to present complex compliance and audit findings to both technical and non-technical stakeholders Ability to take a strategic approach to compliance management, with a focus on risk mitigation, continuous improvement, and aligning compliance initiatives with business goals Background screening is required as part of the onboarding process. The type of screening required (criminal, credit, or other verifications) will vary based on the position and client requirements. We use AI technology as part of our application review process to assist with screening and assessment. All applications are also reviewed by our recruitment team. How to Apply: If you are a motivated professional looking to contribute to a leading team, please submit your resume outlining your qualifications and experience relevant to this role. Robertson & the clients we represent value diversity and are committed to creating an inclusive workplace. We invite all qualified individuals to apply. Robertson & the clients we represent are equal opportunity employers, committed to diversity and inclusion. Robertson is a certified diverse supplier and actively seeks to foster a representative and inclusive workforce. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, Aboriginal status, or any other legally protected factors. We champion building a diverse and inclusive environment. Note: This description focuses on current responsibilities and qualifications; other job postings listed below are for reference and may reflect different roles or locations. #J-18808-Ljbffr