GRC Specilist

Bonjour

afin d'accompagner un de nos clients nous recherchons des specialiste en securite pour integrer une equipe de GRC et travailler sur les recommandations, les plans d'actions a mettre en place pour mettre a jour le IT policy et ligne directrice. La personne a joindre l'equipe sera centrale a l'organisation du departement TI et participera activement au test de control interne.

CHALLENGES TO BE MET

•Apply knowledge and experience in auditing general and application controls across a variety of technologies and platform using industry standards and best practices.

•Audit non-technical areas including IT governance, project management and systems development.

•Synthesize data and observations into findings and effectively communicate conclusions in writing and orally.

•Analyze complex sets of data using Excel, Access, VBA and other advanced scripting and analytical tools that help operate and visualize data.

•Understand Investment Banking and Broker Dealer related risks and regulations.

•Apply strong analytical, problem-solving, and organizational skills.

•Handle multiple, simultaneous, and various ad-hoc requests.

•Exercise strong attention to detail.

•Ability to work independently, prioritize and work in a dynamic, deadline-focused environment.

•Ability to form complex ‘communications / messages’ in a simple, clear and concise manner to the various profiles and departments within our organization in both French and English.

•Excellent verbal and written communication skills in both official languages

Duration: 4 months

Possibility of renewal: Yes

Responsibilities / Accountabilities

•Conduct business process and control walkthroughs

•Gather information to understand the context, risks and intended control operation to be tested.

•Support compliance control audits in design and execute tests to validate application system controls, which may require data analysis, code inspection and re-performance of system processes.

•Analyze the design of controls/observations/recommendations around the underlying system architecture in the context of information technology controls such as security, availability and performance and their impact on business-aligned technology groups.

•Document and maintain the methodology for assessing the security and technological risks of projects (definition of requirements, assessment, implementation, and operational readiness).

•Deliver in-depth risk assessments/reviews, including identifying and documenting risks and controls, creating detailed process flows and assessing the implementation.

•Liaise with the various internal stakeholders for IT Risk Management / IT Internal controls matters.

Requirements

Professional Experience

•3-5 years performing audits of systems, physical, logical, or cyber security in a technical environment using generally accepted auditing standards consistent with internal control frameworks.

•General knowledge of applicable regulatory requirements and expectations related to investment banking and broker–dealer activities.

•Excellent understanding of modern governance, risk and control frameworks, including the three lines of defense

•Excellent knowledge of risk management and internal control frameworks such as Cobit, COSO 2013, Sarbanes-Oxley and SEC NI 52-109, including IT-related controls, audit techniques, risk assessment methodologies and best practices

Educational Experience

• in Computer Science, Information Security, Engineering or equivalent discipline or CPA

Knowledge and Skills

•Relevant IT audit certifications are a plus, such as:

oSystems Auditor (CISA) a plus

oCertified Internal Auditor (CIA) a plus

oAudit experience covering cloud-based infrastructure is a plus, but not required

Language

•Spoken language: French, English / Written language: French, English

Skills:

information security, security, audit security

À propos de TEKsystems:

Nous sommes partenaires dans la transformation. Nous aidons les clients à activer des idées et des solutions afin de profiter d’un nouveau monde d’opportunités. Nous sommes une équipe solide de 80 000 personnes, nous travaillons avec plus de 6 000 clients, dont 80 % faisant partie du Fortune 500, partout en Amérique du Nord, en Europe et en Asie. En tant que chefs de file de l’industrie des services technologiques complets, des services aux talents et des applications du monde réel, nous travaillons avec des leaders progressistes pour favoriser le changement. C’est le pouvoir d’un vrai partenariat. TEKsystems est une société du groupe Allegis.

Québec Numéro du permis d'agence de placement de personnel AP-2000547 

About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

Quebec Personnel Placement Agency Permit Number AP-2000547