Financial Security Advisor at RBC Insurance connecting clients with comprehensive insurance solutions. Building client relationships and leveraging RBC’s brand to grow the market.
About the role
- Security & Compliance Manager responsible for protecting information security and compliance at Nestlé Canada. Collaborating with stakeholders to develop and maintain security policies and frameworks.
Responsibilities
- Develop, maintain, and enforce information security policies, standards, and procedures aligned with regulatory and industry frameworks (e.g., ISO 27001, NIST, SOC 2, PCI DSS, GDPR)
- Regularly review and update procedures, and controls to ensure ongoing compliance with Nestlé Global Standards, and local regulatory requirements
- Conduct risk assessments to identify potential security threats and vulnerabilities and develop mitigation strategies
- Collaborate with cross-functional teams to ensure security policies are integrated into all business processes
- Collaborate with business stakeholders to identify required security controls, ensuring risk assessments are conducted and controls have been implemented prior to transitioning technology platforms to the unit’s environment
- Oversee vendor and third-party risk management, including due diligence, ongoing assessments, and contract security requirements
- Ensure the unit meets all relevant legal, regulatory, and contractual obligations related to information security and participate actively in vendor management
- Guide the unit for, support, and manage internal and external audits, including ISO/IEC 27001 certification and surveillance audits
- Develop and maintain documentation required for compliance audits and certifications
- Coordinate with internal and external auditors and facilitate the audit process, addressing any findings or non-conformities
- Support the delivery of training programs to educate employees on information security policies, procedures, and best practices
- Promote a culture of security awareness within the functional unit
- Support regular security awareness campaigns and workshops
- Provide regular reporting to senior leadership on risk posture, compliance status, and key metrics
Requirements
- Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or a related field (or equivalent experience)
- Minimum of 5+ years of experience in information technology or a combination of risk management, compliance, information security and IT jobs
- Understanding of ISO/IEC 27001, NIST Cybersecurity Framework and other relevant standards and regulations
- Experience with risk assessment and management, process and control implementation
- Strong communication and interpersonal skills, to deliver effective understanding of requirements, fostering consensus, and cultivating relationships with stakeholders across the organization
- Relevant certifications such as ISO/IEC 27001 Lead Implementer/Auditor and/or CRISC, are highly desirable
- In-depth knowledge of information security principles, practices, and technologies
- Strong analytical and problem-solving skills
- Strong sense of curiosity, proactive, and demonstrates a proven ability to take initiative
- Ability to work independently and as part of a team
- High attention to detail and organizational skills
- Proven ability to manage multiple initiatives and deadlines effectively
- Strength in prioritizing and managing your own workload to deliver quality results and meet timelines with limited guidance.
Benefits
- Hybrid work arrangement
- Competitive salary based on experience and compliance with Ontario pay transparency regulations
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior IAM Systems Support Analyst responsible for deploying and improving IAM services at RBC. Supporting MFA systems and ensuring platform reliability while collaborating with various teams.
Senior Manager overseeing IAM initiatives and strategic roadmap execution at RBC. Partnering with stakeholders to enhance organizational capabilities in Identity and Access Management.
Senior Security Consultant specializing in penetration testing at TEHORA. Defining security strategies and conducting risk analyses and audits.
Senior Internal Controller in information security defining security strategies and conducting risk analysis. Participating in audits and controls for a multidisciplinary firm in Canada.
Product Manager responsible for managing Microsoft Security Services portfolio at Softchoice. Engaging with customers, Microsoft and stakeholders to drive market success and growth.
LP
Network Security Engineer
LinkedIn Recruiter Post
Network Security Engineer managing operations, implementing security architecture, and providing L3 support. Expertise in Checkpoint, Zscaler, Cloudflare, Aruba Clearpass, and email security required.
Program Manager leading AI and data security initiatives at Canadian Tire Corporation. Maintaining compliance and aligning security strategies with business objectives.
Senior Information Security Governance Advisor at TEHORA defining security strategies and conducting risk analyses. Participating in audits and controls while supporting organizational and technological changes.
Senior Security Advisor at Intact managing cybersecurity across cloud and endpoint environments. Working to protect critical assets like cloud infrastructure and identity landscape.