Senior Advisor assisting in property management and building safety at Desjardins. Involves development projects, strategic initiatives, and stakeholder interaction in a hybrid work environment.
About the role
- Senior Analyst performing SOC 1 and SOC 2 examinations at Kraken. Leading compliance initiatives and enhancing IT controls in a remote environment.
Responsibilities
- Lead and manage SOC 1 and SOC 2 examinations under AICPA standards in a complex, rapidly evolving technology environment, partnering with external auditors and internal teams to design, implement, and continuously improve IT control processes
- Support end-to-end SOX planning and execution, including IT system scoping, audit readiness, and development and delivery of training for control owners operating in a high-growth, regulated business
- Act as a trusted advisor to Security, IT, Infrastructure, Engineering, Data, and Finance teams, translating SOX and audit requirements into practical, scalable controls aligned with modern technology stacks
- Lead security and IT control gap assessments, evaluate control design and operating effectiveness, and drive remediation efforts through to completion in partnership with control owners
- Facilitate the ongoing maturation of IT general controls (ITGCs) and IT application controls (ITACs), balancing regulatory expectations with the pace of product and platform innovation
- Oversee the quality and execution of audit initiatives, applying strong professional judgment to identify control gaps, assess risk, and guide teams through complex audit and compliance matters
- Perform impact assessments for SOX control deficiencies and design risk-based, pragmatic remediation plans that stand up to auditor scrutiny without slowing the business
- Implement and enhance controls monitoring and defense-in-depth across key IT risk areas to improve audit outcomes and strengthen the overall control environment
- Partner cross-functionally to identify systemic program challenges, recommend process improvements, and drive durable solutions in a scaling organization
- Develop and maintain clear, auditor-ready documentation, including data flow diagrams and process flowcharts for high-risk security and financial processes
- Work closely with internal and external auditors, helping them navigate a sophisticated IT control environment and ensuring efficient, high-quality audits
- Support audit evidence collection and continuous improvement initiatives, including leveraging automation to improve efficiency, consistency, and scalability
Requirements
- 5+ years of experience in external IT audit and/or technology risk assurance or advisory, with demonstrated ownership of complex audit requirements
- Strong hands-on experience with Internal Controls over Financial Reporting (ICFR), including SOX 404 frameworks, control design, and operating effectiveness testing
- Prior experience at a Big 4 or other large public accounting firm, or equivalent experience working with external auditors in a highly regulated environment
- Proven ability to lead compliance and audit initiatives end to end, from planning and risk assessment through remediation and audit close
- Experience auditing or assessing hybrid and cloud-based environments (e.g., IaaS, PaaS, SaaS), including access management, change management, and logging/monitoring controls
- Ability to operate autonomously in ambiguous, fast-paced environments, driving outcomes across cross-functional teams with minimal supervision
- Strong oral and written communication skills, with the ability to clearly explain technical concepts to technical and non-technical stakeholders
- Demonstrated ability to manage multiple priorities, coordinate cross-functional work, and hold stakeholders accountable to agreed timelines
- Strong organizational and time management skills, with a high degree of self motivation and effectiveness in a remote or distributed working environment
Benefits
- Accelerate your technical depth by working in a cutting-edge, modern infrastructure environment, gaining exposure to cloud-native architectures and complex, real-time systems
- Broaden your impact and perspective by collaborating with highly integrated, globally distributed teams and working alongside world-class professionals across engineering, security, and other technical disciplines
- Move beyond “check-the-box” compliance to influence how controls are designed and scaled in a fast-growing, regulated technology business
- Gain meaningful ownership and visibility while helping shape a maturing audit and compliance program in a dynamic, evolving industry
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Security Engineer enhancing security in Java - based enterprise applications at TopQuadrant. Designing and implementing security solutions while maintaining compliance with data protection regulations.
Senior IT security advisor helping protect IT hardware, software, and data at Desjardins. Leading initiatives, advising clients, and developing policies for strategic projects.
Business strategy analyst developing plans and business intelligence for Desjardins. Analyzing business needs and solutions for various organizational initiatives with a hybrid work setup.
Security Consultant on TELUS's Cybersecurity Platforms Operations team. Providing hands - on support for critical security services and collaborating with industry - leading vendors.
Senior Cloud Cybersecurity Engineer responsible for cloud security engineering at Tanium. Collaborate to protect cloud infrastructure against threats in Azure, AWS, and Kubernetes.
Managing Consultant in Cybersecurity and NERC Compliance at Guidehouse. Leading client management and project workstreams within the electric utility sector in Canada.
Security Guard responsible for protecting people and property in Amherst, Nova Scotia. Conducting patrols and monitoring security systems to ensure safety.
Security Lead responsible for driving security function and strategy at Newton, a crypto trading platform. Ensuring CIRO and SOC 2 alignment while embedding security practices across all systems and applications.
Senior Cybersecurity Engineer at Vervent focused on security solution design and incident response. Join a growing team to implement and strengthen enterprise security operations.