Information Security Governance
3 months ago
Role
The information security governance & compliance specialist takes responsibility for overseeing responses to support the client bids and client audit process, and the third-party supplier assessment process. The role is a key part of assuring our clients on the technical security measures NRF has in place for protecting client data. Providing project support for other security functional areas may also be required on an ad hoc basis.
Key Responsibilities
Technical SME for all client bids and client audit responses. Ensure NRF responses to client questions are consistent and appropriate. Lead support for client bids and client audits. This involves the co-ordination of completing complex questionnaires received from clients, often with tight deadlines. Technical assessor for NRF's third-party party supplier onboarding process, to ensure all new suppliers are thoroughly evaluated, and comply with NRF information security requirements Provide information security & IT product knowledge support, including: Deep working knowledge of NRF global controls through liaising with regional IT teams Being responsible for the upkeep of central response and evidence database Continuous process improvements Providing knowledge transfer to other governance & compliance analysts, when needed Research and development of technology and processes to increase team efficiency and speed Escalating appropriately, where policy compliance is not in place and tracking any remediation actions to completion. Performing third-party party supplier risk assessments to ensure the protection of the firm and client data. Remain current with developments in the Cyber domain. Building relationships with key stakeholders to allow regular information sharing. Achieving a balance between protecting the firm and ensuring that users can work effectively Being pragmatic but cognisant of risk.Skills and Experience Required
Education - an IT or information security qualification or + years' experience in a similar role. ISO qualification and / or experience. Excellent communication skills, both written and oral. The ability to articulate complex information security controls to a business audience is essential. Stakeholder management skills. Ability to build relationships with team members and peers across the organization is vital to the success of this role. Experience working in large, matrix and geographically dispersed global organizations where IT and information security have played a key role in the business. Proven ability and understanding of the role of client bids and client audits in business development and the effective management of third-party risk. Experience in using governance, risk & compliance (GRC) tools. OneTrust GRC and BitSight platform experience is an advantage. An ability to learn quickly, solve problems and pragmatically address risk. Experience with creating reports, dashboards and metrics for presentation. A relevant industry certification, such as CISSP, CISM, CRISC, CISA or similar, is an advantage.Ready to join a proactive and modern firm that provides an exceptional career experience in an inclusive and collaborative environment? Come join us
As a global law firm, we embrace a culture of excellence and working hard, but always with a focus on flexibility, respect, diversity and openness. We strive to create an equitable, inclusive environment where everyone can bring their whole self to work and realize their career potential.
To find out more about how we integrate diversity, equity and inclusion in everything we do please click .
If you are unable to apply for a position online or require any reasonable adjustments during the recruiting process, please contact to further discuss your needs.
Please note that applicants who receive an employment offer may be required during their employment with Norton Rose Fulbright to provide proof of vaccinations recommended from time to time by government or public health authorities. Norton Rose Fulbright has a duty to accommodate those who are unable to get vaccinated due to protected grounds. For applicants who require an accommodation, please contact to discuss further.
We thank all candidates for their applications, but please note that we will be contacting only those whom we invite for an interview.
LI-Hybrid
Law around the world
-
Information Security Governance Specialist
1 month ago
Toronto, Ontario, Canada Norton Rose Fulbright Full timeJob SummaryNorton Rose Fulbright is seeking an experienced Information Security Governance Specialist to join our team. As a key member of our security team, you will be responsible for overseeing responses to client bids and client audit processes, as well as third-party supplier assessments.Key ResponsibilitiesProvide technical expertise for client bids...
-
Toronto, Ontario, Canada Norton Rose Fulbright Full timeAbout the RoleWe are seeking a Chief Information Security Governance Officer to join our team. As a key member of our information security governance team, you will play a crucial role in ensuring the protection of client data and maintaining compliance with regulatory requirements.Job DescriptionLead the development and implementation of information...
-
Information Security Governance
3 months ago
Toronto, Canada Norton Rose Fulbright Full timeInformation Security Governance & Compliance Specialist The Team The information security team reports to the global chief information security officer (CISO). The team works with unified principles and processes around the world while maintaining regional stakeholder relationships. High stand
-
Senior Manager, Information Security Governance
1 month ago
Old Toronto, Ontario, Canada TD Bank Full timeSenior Manager, Information Security (DevSecOps Governance)Job Summary:TD Bank is seeking a seasoned Senior Manager, Information Security to lead our DevSecOps Governance team. As a key member of our Information Security organization, you will be responsible for developing and implementing security policies, standards, and guidelines for DevSecOps...
-
Iam Governance
6 months ago
Toronto, Canada Scotiabank Full timeRequisition ID: 179655 Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. The Global Identity & Access Management (GIAM), Governance Team is responsible for the governance of established security controls pertaining to Identity and Access. Our IAM Governance and Control teams work closely with operations...
-
Security Dispatch
7 days ago
Toronto, Canada Paladin Security Full timeSecurity Dispatch - Part-Time - Government of Ontario Office **Position**: Security Operations Centre Operator **Location**: 200 Front Street West, Toronto (Downtown) **Status**: Part-Time - Nights **Schedule**: Saturday & Sunday - 1900-0700 **Pay Rate**: $22.00/ Hr **Averaging Agreement**:Overtime is ESA (Employee Standard Act (44 Hours) **Posting...
-
Old Toronto, Canada Canadian Tire Corporation Full timeAbout the RoleWe are seeking a seasoned Information Security Specialist to lead our Governance and Compliance team. As Senior Information Security Specialist, Governance and Compliance, you will be responsible for maintaining cyber security policies and standards, responding to regulator and auditor inquiries, and providing advisory services to the business...
-
Security Guard
6 months ago
Toronto, Canada Paladin Security Full timeSecurity Guard - Casual - Government of Ontario Office **Position**: Corporate Security Guard **Site**: 200 Front Street W **City**: Toronto **Status**: Casual - Days **Hours: Monday to Friday 0700-1500 or 0800-1600** **Pay Rate**: $19.00/Hr Are you interested in starting a career in a fast-paced and growing industry? As a provider of security...
-
Toronto, Canada Canadian Tire Corporation Full timeWhat you’ll do Reporting to the AVP, Cyber Governance Risk and Compliance, the Senior Information Security Specialist, Governance and Compliance will lead the charge in maintaining cyber security policies and standards, responding to regulator and auditor inquiries, and providing an advisory function to the business surrounding cyber security...
-
Old Toronto, Canada Canadian Tire Corporation Full timeWhat you’ll do Reporting to the AVP, Cyber Governance Risk and Compliance, the Senior Information Security Specialist, Governance and Compliance will lead the charge in maintaining cyber security policies and standards, responding to regulator and auditor inquiries, and providing an advisory function to the business surrounding cyber security...
-
Old Toronto, Canada Canadian Tire Corporation Full timeWhat you’ll do Reporting to the AVP, Cyber Governance Risk and Compliance, the Senior Information Security Specialist, Governance and Compliance will lead the charge in maintaining cyber security policies and standards, responding to regulator and auditor inquiries, and providing an advisory function to the business surrounding cyber security...
-
Toronto, Ontario, Canada BFL Canada Full timeCompany OverviewBFL Canada is a leading employee-owned and operated Risk Management, Insurance Brokerage, and Employee Benefits consulting services firm in North America. With over 1300 professionals across 27 offices, we foster an environment that encourages creativity, leadership, and entrepreneurship.About the RoleWe are seeking a highly skilled...
-
Manager, Information
3 months ago
Toronto, Canada Ontario Health Full timeAt Ontario Health, we are committed to developing a strong organizational culture that connects and inspires all team members across the province. Our vision is that together, we will be a leader in health and wellness for all. Our mission is to connect the health system to drive improved and equitable health outcomes, experiences and value. How we work...
-
Senior Manager, Information Security
4 weeks ago
Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full timeJob SummaryWe are seeking a highly skilled Senior Manager, Information Security (DevSecOps Governance) to join our team. In this role, you will be responsible for developing, implementing, and maintaining security policies, standards, and guidelines for DevSecOps practices.Key ResponsibilitiesDevelop and implement security policies, standards, and guidelines...
-
Cyber Security Governance Specialist
1 week ago
Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full timeJob Overview: The Toronto-Dominion Bank (Canada) is seeking a highly motivated and experienced Cyber Security Governance Specialist to join our Public Cloud Security Governance team. This role will be responsible for integrating security practices and best practices into our SaaS Security Governance processes, ensuring compliance with regulatory standards,...
-
SaaS Security Governance Specialist
4 weeks ago
Toronto, Ontario, Canada The Toronto-Dominion Bank (Canada) Full timeAbout the RoleThe Toronto-Dominion Bank (Canada) is seeking a highly motivated and experienced SaaS Security Governance Specialist to join our Public Cloud Security Governance team. This role will be responsible for integrating security practices and best practices into our SaaS Security Governance processes, ensuring compliance with regulatory standards,...
-
Security Guard
5 months ago
Toronto, Canada Paladin Security Full timeJob Description: Working on assigned shifts, you will provide proactive and reactive security patrols and respond to incidents. You will be required to write reports and investigate routine incidents, as well as respond to emergencies in a quick and efficient manner. In this role, it is essential that you are physically fit and able to stand and walk for...
-
Information Security Manager
3 months ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Plan, coordinate, and direct all information security tasks within the area of responsibility to meet the global and local security goals.Support all security incidents of the location with alignment to the incident management process.Work with the Procurement and Legal departments to review and screen suppliers.Lead IT/security...
-
Information and Security Manager
1 month ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Plan, coordinate, and direct all information security tasks within the area of responsibility to meet the global and local security goals.Support all security incidents of the location with alignment to the incident management process.Work with the Procurement and Legal departments to review and screen suppliers.Lead IT/security...
-
Consultant, Information Security
2 months ago
Toronto, Canada CIBC Full timeWe’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients. At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are...
