Information Security Analyst

Posted last week

Apply Now

Resume Score

Check how well your resume matches this job before you apply.

Sign in to check score

About the role

  • Information Security Analyst conducting audits and managing IT security risks for EllisDon. Supporting compliance activities and contributing to GRC program initiatives.

Responsibilities

  • Conduct IT audits, collect and validate evidence to support GRC program and audit readiness
  • Support identification, assessment, and tracking of IT/cyber risks; maintain the enterprise risk register and remediation lifecycle
  • Perform risk assessments for systems, projects, and vendors; support ongoing third-party compliance activities
  • Contribute to GRC program operations (policies, standards, procedures, exception tracking, evidence workflows)
  • Support remediation of risks, control gaps, and audit findings across teams
  • Partner with IT (Service Delivery, Operations, DevOps) to enable secure system and solution implementation
  • Support security awareness program, including training, reporting, and modern threat simulations (phishing, social engineering, AI-driven attacks)
  • Support compliance across SOC 2, NIST, ISO 27001, and CMMC / CPCSC / ITSP, ensuring consistent control implementation
  • Contribute to key GRC initiatives, including risk maturity, audit readiness, vendor compliance, and standardization of security requirements across the organization

Requirements

  • Strong interpersonal, oral, and written communication skills
  • Post-secondary education in IT, Information/Cyber Security, or relevant experience
  • Experience in Information/Cyber Security, GRC, or Risk Management
  • Hands-on experience supporting risk assessments, audits, compliance, or vendor reviews
  • Strong analytical and technical problem-solving skills
  • Ability to work independently, self-start, and quickly learn new tools and systems
  • Industry certifications (e.g., CISSP, CEH, CISA, Security+) considered an asset
  • Working knowledge of NIST Cybersecurity Frameworks
  • Familiarity with industry standards (CIS, SOC2 Type II, ISO) and CMMC / CPCSC or similar frameworks

Benefits

  • Continuous learning opportunities
  • Opportunity for growth
  • Competitive compensation package
  • Commitment to inclusion and diversity

Job type

Full Time

Experience level

Mid levelSenior

Salary

CA$66,000 - CA$80,000 per year

Degree requirement

Bachelor's Degree

Tech skills

Cyber Security

Location requirements

OnsiteMississaugaCanada

Report this job

Found something wrong with the page? Please let us know by submitting a report below.