Security Analyst – GRC supporting clients on their security journey in a remote role at Kobalt.io. Collaborate with vCISOs and manage compliance programs for cybersecurity.
Responsibilities
Partner directly with clients to draft and implement policies and customized security roadmaps, set up and manage user security awareness training campaigns and manage recurring phishing simulations.
Manage small-scale security compliance programs, guiding clients from initial readiness through successful audit completion.
Lead and assist with regular client meetings to track progress, resolve blockers, and maintain project momentum.
Collaborate with vCISOs to design and execute Incident Response tabletop exercises, test the resilience of client IR plans, conduct various security assessments to identify gaps and mature client security postures.
Leverage GRC platforms to accelerate compliance and streamline security program management.
Act as a responsive subject matter expert across all communication channels, ensuring a "customer-first" resolution to security challenges.
Build automation tools to compress manual tasks.
Capture key performance metrics and contribute to the evolution of Kobalt’s service offerings through documentation and knowledge-base creation.
Requirements
3-5 years of experience in GRC, Internal Audit, Information Security, Technology Risk, or related fields.
Direct experience with governance frameworks (e.g., SOC 2, ISO 27001, HIPAA, etc.)
Strong understanding of cybersecurity domains, including Security Operations, Security Engineering, and Information Risk Management.
Customer-first focus, with the ability to support both internal teams and external client inquiries.
Excellent ability to communicate effectively, both verbally and in writing, with clients and internal audiences.
Can work independently and with teams to identify and resolve challenges and overcome roadblocks.
Ability to adapt security best practices to diverse client tech stacks.
Professional certification is desired but not required.
Intermediate scripting/coding skills for process automation.
A strong team player with the ability to provide on-the-job training and knowledge sharing to other team members.
Self-initiative with strong time management and the ability to perform in high-paced environments.
Solid sense of integrity and identification with the mission.
Understanding and basic level competence with AI systems such as Google Gemini, Google NotebookLM, Anthropic Claude, or OpenAI ChatGPT.
Benefits
Competitive salary
health benefits
RRSP matching
equity
Comprehensive health, dental, and vision insurance
Senior Workday Security Analyst focusing on safeguarding sensitive data and optimizing HR technology. Collaborating across teams to ensure compliance and data integrity in Workday systems.
Data & Reporting Analyst supporting governance, audit, and reporting for Physical Security & Crisis Management at Sun Life. Collaborating with teams to produce actionable insights and improve reporting quality.
Hiring a Cyber Security Analyst for a full - time onsite role in Toronto, ON. Requires 6+ years experience in cybersecurity, AI security, SOC, and cloud security.
Manage and ensure secure production and development environments as a Security Analyst. Analyze incidents, maintain security systems, and collaborate with teams and vendors.
IT Security Analyst responsible for advanced analysis of security incidents and supporting SOC operations in Canada. Collaborating with teams to improve detection capabilities and utilizing AI.
IAM Governance & Control Analyst contract role with a financial institution in Toronto. Focus on documenting and improving IAM processes and governance.
Information Security Analyst conducting audits and managing IT security risks for EllisDon. Supporting compliance activities and contributing to GRC program initiatives.
Security Analyst protecting systems, networks, and data at StarTech.com. Involved in vulnerability assessments, compliance initiatives, and security monitoring.
Information Security Analyst needed for a security transformation project, modernizing policies and integrating Palo Alto with Entra ID for a top financial client.
Hiring Intermediate Security Specialist for 4 - month contract in Toronto, ON. Must have 5+ years cybersecurity experience and relevant certifications.