Established in 2013, Teckhorizon has expertise in providing Staffing Solutions, IT managed services, security solutions, cloud solutions, and Software Development services to meet your growing business needs. Technology is our craft and passion. We bring together technologists, creators, and trailblazers who are always on the lookout for solutions to tomorrow’s challenges. Our experience fulfills the needs of small, mid, and large-scale corporations with our certified team of IT professionals.

Our client has an urgent requirement for a Information Security Consultant

About Your Day

• Design and implement low-friction governance mechanisms and processes as needed.
• Maintain expertise on GRC trends to mitigate potential exposures and risks.
• Support internal and external audits of IT processes, facilitate discussions, manage scope, assist with evidence gathering/sharing, progress tracking, and remediation planning and management.
• Develop and test DRP and support BCP and Crisis Management plan development.
• Lead IT on corporate policy-related activities ensuring alignment with corporate guidelines.
• Create, review and update IT policies, standards, guidelines, and procedures at required frequency.
• Lead the creation of a prioritized GRC roadmap, and manage the process, ensuring it complements and supports other teams’ roadmaps.
• IT lead for the design, development, implementation, and monitoring of the data retention program.
• Responsible for the identification, analysis, tracking and remediation of IT-owned risks.
• Support Enterprise Risk Management on corporately-owned risks.
• Oversee formal risk analysis and the self-assessment program for various Information Services systems, processes, and vendors (ex. SOC, TRA, vendor assessments) and prepare reports for leadership teams.
• Assist in maintenance of IT’s risk register by identifying, analyzing, assigning, and monitoring risks as required.
• Iterate and improve the vendor risk assessment process for 3rd party vendors.
• Actively participate in the IT Security training and awareness program.
• Assess, evaluate, and make recommendations to senior management regarding the adequacy of the security controls for OCRC’s information and technology systems.
• Lead the development, monitoring and improvement of a compliance framework for IT processes and outsourced IT services
• Assist in the development and oversight of required corrective action plans relating to technical compliance issues.

Qualifications

• Bachelor’s Degree or higher in Information Security, Computer Science, Information Technology, Engineering or equivalent work experience
• 7+ years of progressive work experience in GRC (preferred) or Information Security including cloud, vulnerability assessments/remediation, security operations, and security architecture
• Experience implementing and/or using ServiceNow’s GRC module
• Experience designing a GRC framework
• 1+ year Project Management experience
• GRC experience in a cloud environment
• Knowledgeable of CIS, ISO 27001, COBIT, NIST and related industry standards/frameworks
• Intermediate knowledge of Threat Risk Assessment (TRA) design and delivery
• Certifications in one or more of the following areas required: CISSP, CISA, CRISC, CISM, GRCP, CGRC, GIAC
• Experience working in regulated industries preferred

Job Type: Fixed term contract
Contract length: 12 months

Schedule:

• 8 hour shift

Work Location: Hybrid remote in TORONTO, ON

Please Note :
clearvoyant.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, clearvoyant.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.