Risk and Compliance Specialist

3 days ago

Ontario, Canada CyberClan Full time

CybercClan is seeking a Risk and Compliance Specialist to support the delivery of Risk Management Services (RMS), comprised of Cybersecurity Programs, Compliance Standards, Cybersecurity Frameworks, Cyber Risk Assessments, vCISO Services, Governance Risk & Compliance (GRC), Security Awareness and Training Education. Additionally, this individual will serve as a Subject Matter Expert (SME), mentor the team, and work with external clients. This position requires a motivated, fast learner.


The candidate will be required to support the delivery of all security, risk, compliance-related activities for customer accounts. Maintain and oversee relationships for the delivery organizations providing security support. Provide in-house consultancy on information risk management matters and advise on implementing security controls on the accounts. Regularly, meet with the project manager and/or clients to review security status, review any risks, issues, reports, outstanding activities. This role will require security industry knowledge that evolves with current and emerging threats, risk and compliance frameworks, and an ongoing understanding of key business and technological processes. In addition, this role will assist in improving the risk management services process internal delivery capability and helping build an internal practice with a strong focus on delivery expectations and utilization.


Essential Functions

  • Execute cyber security threat, vulnerability, & gap assessments by recognizing all the critical assets & collaborating with the associated stakeholders
  • Certify the cyber resistance of the digital infrastructure from organizational awareness, tools, & technologies to human influences
  • Development of all cyber security activities required for major infrastructure projects from requirements management, early feasibility phases, through design, test, & commissioning, into the revenue demonstration & operations
  • Accomplish & eventually spearhead a team to perform the necessary analysis to deliver all the required evidence to support the project's needs
  • Plan, prepare & implement a cyber security testing strategy to confirm the resilience of the digital infrastructure to external & internal threats
  • Actively plan, develop, deliver, & implement CyberClan risk management services, governance, risk & compliance frameworks, gap assessments, consulting & other services to support CyberClan's global delivery efforts.
  • Develop & implement applicable security policies, procedures & practices
  • Conduct risk & privacy assessments of information systems business processes
  • Collaborate with clients to ensure that appropriate controls are installed & operating correctly, following the corporate policies. Conduct periodic audits where applicable
  • Conduct vulnerability scans & system hardening where applicable
  • Act as an external and/or internal information security consultant to the business & technology units, advising on risks, threats & control practices related to Rapid Response.
  • Establish security event & incident response playbooks for an effective technical response
  • Analyze external sources of threat and vulnerability information to identify actions that need to be taken within the enterprise
  • Coordinate risk assessment & manage the remediation of findings
  • Run & analyze vulnerability & compliance scans to support continuous monitoring reporting & vulnerability management
  • Provide support during annual recertifications & assessments conducted by third parties
  • Document actions in cases to effectively communicate information to internal and/or stakeholders as well as for historical retrieval


Required Skills, Experience, Degrees or Certification

  • 8+ years experience in IT and/or information security, risk management, or information security audit experience in an enterprise environment.
  • B.S. in Computer Science, Engineering, or equivalent degree
  • Strong knowledge in security controls frameworks and the underlying technologies that enable them (endpoint security, firewalls, IDS/IPS, EDR/MDR software, behavioural analytics, anomaly detection, threat intelligence, vulnerability management).
  • Experience with ISO 27001, GDRP, NIST, PCI, SOC, CMMC, Cyber Essentials and regulatory compliance program management.
  • Experience in Secure Enterprise Secure Architecture.
  • Experience in incident response and crisis management with the ability to identify tactical and strategic solutions using strong verbal and written communication skills.
  • Comfortable with interfacing with other internal or external organizations regarding security policy and standards violations, security controls failure and incident response situations.
  • Understanding network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS).
  • The ability to learn and apply new concepts quickly.
  • Resolves problems independently and/or through a support team.
  • Must be trustworthy in keeping sensitive data confidential
  • These certifications are preferred but not required: Certified Information Security Professional (CISSP), Global Information Assurance Certifications (GIAC), Certified Information Security Auditor (CISA), ISO 27001 Lead-Auditor.


Job Type

Full time


Location

100% Telecommuting

The candidate must have legal authorization to work in Canada


% of Travel Required

10-15%


Physical Requirements

Prolonged periods of sitting at a desk and working on a computer.


CyberClan is an equal opportunity employer. All applicants will be considered for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status

  • Risk and Compliance Specialist

    3 days ago

    Ontario, Canada CyberClan Full time

    CybercClan is seeking a Risk and Compliance Specialist to support the delivery of Risk Management Services (RMS), comprised of Cybersecurity Programs, Compliance Standards, Cybersecurity Frameworks, Cyber Risk Assessments, vCISO Services, Governance Risk & Compliance (GRC), Security Awareness and Training Education. Additionally, this individual will serve...

  • Risk Consultant

    2 weeks ago

    Ottawa, Ontario, Ottawa region, Canada Prevalent - Third-Party Risk Management Full time

    GRC Risk/Information Security ConsultantPrevalent is a leading provider of comprehensive third party risk management solutions, dedicated to helping organizations navigate complex regulatory landscapes and protect their information assets. Our team of experts specializes in implementing and managing risk frameworks that meet the highest industry standards.We...

  • Director of Governance, Risk, and Compliance

    2 weeks ago

    Toronto, Ontario, Ontario, Canada Gradient Inc. Full time

    Our client, a global market leader in the Software as a Service (SaaS) space is searching for a Director of Governance, Risk, and Compliance.This is an exciting opportunity to build out a new Security, Risk & Privacy program and create policies that will protect the organization and its partners.Requirements:Bachelor's Degree in the legal or IT field.Has...

  • Audit Risk

    2 weeks ago

    Toronto, Ontario, Ontario, Canada Compunnel Inc. Full time

    Requisition Title: Controls Analyst IILocation: Toronto, Ontario, CANHYBRID – 3 days in Toronto officeDescription:The Alternative Investments Operations and Control Oversight Group resides within our Global Alternative Investment Operations team. It primarily functions to assess the operating and control environment across Alternative Asset Operations...

  • Treasury Cash Manager

    1 month ago

    Ontario, Canada Vantage Risk Companies Full time

    Vantage) was established in late 2020 as a re/insurance partner designed for the future. Driven by relentless curiosity, our team of trusted experts provides a fresh perspective on our clients’ risks. We add creativity to tech-enabled efficiency and robust analytics to address risks others avoid. Vantage provides specialty re/insurance through its...

  • Trade Compliance Manager

    1 week ago

    Markham, Ontario, York region, Canada International eCommerce trading company Full time

    Major Responsibilities: Maintain knowledge and stay current with Canadian trade regulations, providing compliance guidance and advice. Interpret trade regulations, conduct in-depth assessments of their impacts on the business, and prepare guidance documents for relevant stakeholders. Assess business risks, consider trade compliance directives and...

  • Treasury Manager

    1 month ago

    Ontario, Canada Vantage Risk Companies Full time

    Tuesday, January 16, 2024 About the Company Vantage Group Holdings Ltd. (Vantage) was established in late 2020 as a re/insurance partner designed for the future. Driven by relentless curiosity, our team of trusted experts provides a fresh perspective on our clients’ risks. We add creativity to tech-enabled efficiency and robust analytics to address...

  • Compliance Specialist

    2 weeks ago

    Waterloo, Ontario, Ontario, Canada Prime Hires Full time

    Our client is a top financial institution with significant North American holdings. They have operations across most major verticals, including institutional & corporate, wealth management, private client, commercial banking, treasury, and retail banking.Position: Compliance Analyst Location: Waterloo Duration: 6 months Schedule: Can work hours between 7.00...

  • Trade Compliance Specialist

    4 weeks ago

    Mississauga, Ontario, Peel region, Canada Gateway Recruiting - Gateway to Global Careers - Contingent, Retained, Contract Recruiting Services Full time

    JOB RESPONSIBILITIES:Maintain master list of tariff classifications including supporting documentation for documentation for classification.Contact secondary suppliers to determine the trade status of purchased products.Supply required paperwork to end-user customers when required.Liaise with Brokers and Supply Chain to ensure the smooth movement of goods...

  • Trade Compliance Specialist

    2 months ago

    Mississauga, Ontario, Peel region, Canada Gateway Recruiting - Gateway to Global Careers - Contingent, Retained, Contract Recruiting Services Full time

    JOB RESPONSIBILITIES:Maintain master list of tariff classifications including supporting documentation for documentation for classification.Contact secondary suppliers to determine the trade status of purchased products.Supply required paperwork to end-user customers when required.Liaise with Brokers and Supply Chain to ensure the smooth movement of goods...

  • Compliance Support Officer

    1 month ago

    North York, Ontario, Toronto, Canada Resource Productivity and Recovery Authority Full time

    We are looking for a talented and committed individual to join us as a Compliance Support Officer to support the government’s efforts to protect the environment and advance a new economy in which all waste is reused, recycled, and reintegrated.COMPLIANCE SUPPORT OFFICERAs the first point of contact, the Compliance Support Officer is responsible for the...

  • Compliance Support Officer

    4 weeks ago

    North York, Ontario, Toronto, Canada Resource Productivity and Recovery Authority Full time

    We are looking for a talented and committed individual to join us as a Compliance Support Officer to support the government’s efforts to protect the environment and advance a new economy in which all waste is reused, recycled, and reintegrated.COMPLIANCE SUPPORT OFFICERAs the first point of contact, the Compliance Support Officer is responsible for the...

  • Board Director, Chair of Audit Committee

    1 month ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...

  • Board Director, Chair of Audit Committee

    1 month ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...

  • Board Director, Chair of Audit Committee

    4 weeks ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...

  • Board Director, Chair of Audit Committee

    4 weeks ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...

  • Treasury Manager

    3 weeks ago

    Eastern Ontario, Canada Vantage Risk Companies Full time

    Tuesday, January 16, 2024 About the Company Vantage Group Holdings Ltd. (Vantage) was established in late 2020 as a re/insurance partner designed for the future. Driven by relentless curiosity, our team of trusted experts provides a fresh perspective on our clients’ risks. We add creativity to tech-enabled efficiency and robust analytics to address...

  • Board Director, Chair of Audit Committee

    1 month ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight) Organization: An international mid-market financial services institution (confidential) Location: Ontario About Our client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international...

  • Board Director, Chair of Audit Committee

    1 month ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...

  • Board Director, Chair of Audit Committee

    1 month ago

    Ontario, Canada Pender & Howe Executive Search Full time

    Position: Board Director, Chair of Audit Committee (Compliance and Risk Oversight)Organization: An international mid-market financial services institution (confidential)Location: OntarioAboutOur client is an international mid-market financial services institution, that was established in 1984 and has since grown to have a significant international presence...