Overview

Location: Canada

Date published: 12-Apr-2024

Job ID: 126436

Description and Requirements

Work Location: Hybrid - 2-3 days/week onsite
Position Type: 8 Months Contract (high potential of extension)
Location: Mississauga, ON
Expected Salary: $61.60 - $70.41




Our Multinational Retail client is seeking a Security Risk Analyst. The Security Risk Analyst plays a crucial role in supporting the client's audit process by performing IT audits and assessments in accordance with industry best practices (SOX, NIST, PIPEDA, COBIT, ISO, etc).

The ideal candidate possesses a strong understanding of broader cybersecurity concepts, technology risk assessment, and cloud security and can provide detailed responses to client inquiries.


Responsibilities:

  • Partnering with our Global Audit teams to perform IT audits and assessments.
  • Enforcement of our governance model and processes
  • Identify and assist in providing recommendations and guidance in remediating security gaps and vulnerabilities in the IT environment.
  • Collaborate with internal and external teams to support security audit initiatives and projects.
  • Prepare and maintain evidence and documentation for various audits and certifications.
  • Evaluate and analyze information/data from multiple sources to reconcile conflicts, decompose high-level information into details, and make data-driven strategic recommendations.
  • Providing awareness and training on audit, governance and risk processes.

Qualifications:

  • 3+ years in an audit role
  • Subject matter expertise in conducting security risk assessments and evidence collection.
  • Understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business
  • Understanding of respective industry best practices (e.g., SOX, PIPEDA, NIST, ISO, COBIT, OWASP, ITIL, DSS 4.x)
  • Knowledge of risk management policies, methods, standards, processes, governance models, and industry-standard risk analysis approaches
  • Demonstrates agility and possesses the capability to thrive in a dynamic, high-speed setting characterized by evolving priorities and conflicting deadlines.
  • Strong written and verbal communication skills with the ability to effectively communicate with all levels including senior management.
  • Get-it-done attitude with an ability to effectively follow-through and anticipate next steps with all ongoing initiatives.
  • Ability to foster and build relationships, engage, and influence others, work with diverse subject matter experts.
  • Flexible and adaptable when dealing with change, with a strong awareness and understanding of cultural diversity.
  • Proficient in Microsoft Office Suite of products including MS Word, PowerPoint, MS Project, and MS Visio.
  • Excellent presentation and facilitation skills.
  • Understanding of complex/matrix organization.
  • Expertise in working within a global organization.


The indicated pay range for this position is a good-faith estimate based on the qualifications necessary for the position, including experience, training, and other considerations permitted by law. Additionally, it is emphasized that the pay band mentioned herein is the one established by the client company. Factors that may be used when making an offer may include a candidate’s skills, experience and geographic location, the expected quality and quantity of work. Most candidates will start at the bottom half of the pay range, with the upper end reserved for candidates with extensive experience and skills and who live in geographic markets commanding a higher starting pay. An employee’s pay history will not be a contributing factor where prohibited by local law. 

  

This information is subject to change and serves as a general guideline for compensation discussions. Actual offers may vary based on specific circumstances and company policies.  

 
All interested applicants who meet the qualifications listed above are invited to submit a resume by clicking "Apply Now".