Product Owner driving evolving proactive security services portfolio across Risk Advisory, Application Security, and Cloud & AI Security. Collaborating with technology stakeholders to deliver high - value outcomes.
About the role
- Security Governance, Risk and Compliance specialist at Tecsys managing risk frameworks and vendor relations. Develops security strategies and collaborates across teams to improve security maturity.
Responsibilities
- Support continuous security risk management framework.
- Collaborate with technical teams for the development, implementation and monitoring of required corrective action plans relating to security compliance issues or audit deficiencies.
- Collaborate with stakeholders to define processes, automate and continuously monitor information security controls, exceptions, risks, testing and evidence gathering.
- Develop reporting metrics and dashboards.
- Help identify cyber risks and solve various governance gaps and process inefficiencies.
- Develop, execute and actively partake in internal and external security and compliance assessment initiatives such as SOC 2, PCI-DSS, NIST, FedRAMP.
- Review and optimize vendor risk management program.
- Monitor existing controls and conduct periodic audits and reviews to ensure their efficiency and operating effectiveness, and to identify and report on potential issues.
- Collaborate with internal IT and business teams to identify cyber risks and prioritize security compliance-related improvements.
- As security subject matter expert, support IT and cyber teams on the implementation of controls to meet security and privacy compliance requirements and best practices.
- Support the development, review, update and optimization of security documentation.
Requirements
- Bachelor’s degree in information systems or equivalent experience
- Minimum 3 years of cumulated hands-on experience
- Experience in the development and implementation of governance, risk and compliance strategy and security control framework.
- Experience in risk assessments and cyber risk management methodology/processes.
- Broad knowledge of defense in depth security concepts and best practices through practical experience.
- Proven experience conducting security audits such as SOC2 or PCI DSS.
- Experience with cybersecurity frameworks such as NIST, CIS.
- Good knowledge of business continuity process and planning.
- Familiarity with IP networking fundamentals and internet protocols.
- Familiarity with Linux, Mac, and Windows operating systems, mobile devices, and the IT application landscape.
- Proven experience with governing the security of public cloud platforms such as AWS and Azure.
- Ability to work with minimal supervision.
- Strong ability to define problems, collect and analyze data, establish facts and draw valid conclusions.
- Positive attitude and agile mindset.
- Motivated, team, and customer oriented.
- Not afraid to fail.
- Excellent interpersonal skills.
- Ability to plan and deliver on commitment.
- Strong proficiency in both written and verbal English communication essential for effective correspondence with clients, suppliers, business partners, and colleagues beyond the province of Quebec.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
LP
Cybersecurity – Identity & Access Management (IAM)
LinkedIn Recruiter Post
Hiring Cybersecurity IAM expert for 12 - month contract in Toronto, ON. Requires 10+ years in IAM, AI/ML Security, and Zero Trust.
Loss Prevention Home Office Security Coordinator ensuring workplace safety and security for TJX Canada. Responsible for day - to - day monitoring and crisis management as a first responder.
Consultant managing complex cybersecurity projects remotely for Optiv in Vancouver. Establishing relationships and leading technology deployment in business continuity and resilience.
Manager of Global Security and Safety at Genetec leading global security programs and protecting physical assets. Collaborating with executive leadership to implement risk - based security strategies.
Product Manager directing the product roadmap and execution for OCIANA capabilities. Collaborating with stakeholders to enhance maritime security and operational decision - making.
Principal Business Information Security Officer at LastPass leading risk advisory and governance processes. Driving cross - functional collaboration to ensure scalable security frameworks in a competitive environment.
Cybersecurity Generalist role at PwC focusing on security solutions and cybersecurity practices. Leading projects and mentoring team members while identifying opportunities for the firm’s success.
Principal Security Researcher for Spellbook, focused on securing legal AI workflows and sensitive data. Engaging in red teaming, security research, and cross - department collaboration for risk reduction.
Security Consultant serving as the main contact for security services at Akamai. Provide guidance and implement solutions for customer needs regarding security products.