Security Consultant on TELUS's Cybersecurity Platforms Operations team. Providing hands - on support for critical security services and collaborating with industry - leading vendors.
About the role
- Senior Manager SaaS Security at RBC, overseeing SaaS security controls and compliance initiatives. Engaging with stakeholders to enhance cybersecurity for third-party SaaS tools.
Responsibilities
- Lead Key Control Testing, Risk, and Compliance Initiatives: Oversee the design, implementation, testing and continuous improvement of key SaaS security controls to ensure compliance with internal and external security standards
- Investigate, analyze, and report on SaaS configurations and security events using a variety of security tools to identify risks, support incident investigations, and protect the bank’s digital footprint
- Monitor and manage SaaS risk remediation requirements from internal and external security assessments, vulnerability reports, audit findings, and identified security gaps
- Develop and maintain metrics to measure the effectiveness of SaaS Security initiatives, communicating their impact to stakeholders
- Collaborate and Influence Across Teams: Partner with diverse stakeholders, including technology teams, risk leads, 2LOD, 3LOD, and 3rd party suppliers to drive SaaS Security transformation initiatives
Requirements
- 5+ years of experience managing key control testing, risk, and compliance initiatives
- Experience with SaaS and cloud-security concepts and tools (e.g., CASB, SSPM)
- Bachelor’s degree in Computer Science, Business, or related discipline, or a comparable combination of training, experience, and education
- Demonstrated expertise in vulnerability management, including strong knowledge of security frameworks, governance practices, and vulnerability assessment methodologies
- Strong leadership and project management skills, with a proven ability to lead and deliver complex projects
- Exceptional communication, presentation and collaboration skills, with the ability to effectively communicate to diverse audiences, including senior leadership
- A relentless curiosity and enthusiasm for staying ahead of the curve in the ever changing world of cybersecurity
- Cybersecurity certifications (e.g., CRISC, CISSP, CCSP, CISM, CRISC, GCIH) (nice-to-have)
- Hands on experience with vulnerability scanning tools (nice-to-have)
- Hands on experience with JIRA, Confluence, and ServiceNow (nice-to-have)
Benefits
- A comprehensive Total Rewards Program including bonuses and flexible benefits
- Competitive compensation
- Commissions
- Stock where applicable
- Leaders who support your development through coaching and managing opportunities
- Flexible work/life balance options
- Opportunities to take on progressively greater accountabilities
- Access to a variety of job opportunities across business and geographies
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior Cloud Cybersecurity Engineer responsible for cloud security engineering at Tanium. Collaborate to protect cloud infrastructure against threats in Azure, AWS, and Kubernetes.
Managing Consultant in Cybersecurity and NERC Compliance at Guidehouse. Leading client management and project workstreams within the electric utility sector in Canada.
Senior Analyst performing SOC 1 and SOC 2 examinations at Kraken. Leading compliance initiatives and enhancing IT controls in a remote environment.
Security Guard responsible for protecting people and property in Amherst, Nova Scotia. Conducting patrols and monitoring security systems to ensure safety.
Security Lead responsible for driving security function and strategy at Newton, a crypto trading platform. Ensuring CIRO and SOC 2 alignment while embedding security practices across all systems and applications.
Senior Cybersecurity Engineer at Vervent focused on security solution design and incident response. Join a growing team to implement and strengthen enterprise security operations.
IA
Conseiller juridique stratégique au sein des Services juridiques pour la protection des renseignements personnels au Canada. Fournissant des conseils stratégiques en matière de cybersécurité et réglementaire.
Manager, Information Security at Manulife will assess vendor IT risks and security controls. Conducting audits, guiding businesses in IT risk management under a hybrid working model.
Key role in operational security management of IT infrastructures at Xideral. Involves risk management, security architecture, and coordination with various stakeholders.