Security Consultant I focusing on compliance and audit within TELUS Health, conducting risk assessments and collaborating with various departments.
Responsibilities
Conduct comprehensive risk assessments and testing of internal controls and systems, ensuring they operate effectively and as documented
Review, evaluate, and maintain documentation of control processes, procedures, and system logs to identify potential security vulnerabilities or compliance issues
Prepare and present detailed audit reports, including findings and recommendations for improvements, to management and stakeholders
Develop and execute audit plans and schedules, while monitoring changes in regulatory requirements and industry standards relevant to SOC compliance
Collaborate with various departments to gather evidence, conduct interviews, and document control processes for the audits and certifications
Monitor and report on remediation efforts for identified control deficiencies, assisting in the implementation of new controls or modifications to existing ones
Serve as primary liaison with external auditors during the audit and certification examinations, while managing relationships with stakeholders across the organization
Requirements
2-4 years of experience in an IT audit, compliance role
2-4 years of experience analyzing and providing cyber compliance recommendations in a large, complex organization
2-4 years of experience collaborating with interdisciplinary team members that are technical and non-technical
Strong understanding of internal controls, risk assessment, and audit methodologies
Knowledge of regulatory frameworks and compliance standards (SOC 1, SOC 2, ISO27000 series, NIST800-53)
Experience with audit tools and documentation software
A genuine passion for building client relationships and interacting with technology and business stakeholders
A desire to continuously improve processes and systems to align with industry standards
An understanding of international cyber security regulations and how they translate into a control framework
Excellent analytical and problem-solving abilities
Strong attention to detail and organizational skills
Superior written and verbal communication skills
Ability to manage multiple projects and meet deadlines
Bachelor’s degree in IT, Information Systems, Computer Science, Engineering or related and/or related experience
Benefits
Comprehensive total rewards package highlighting competitive salary and bonus structures
Minimum 3 weeks of vacation
Flexible benefits plan to meet the needs of you and your family
Flexibility to work in-office, virtually or a combination of both, based on the role's requirements
Generous company matched pension and share purchase programs
Opportunity to give back to communities in which we work, live and serve
Career growth and learning & development opportunities to develop your skills
Hiring Threat Modeler, Security Architect with Development background for full - time permanent role in Toronto, ON. Must have AI/ML, cloud - native, and threat modeling expertise.
Senior Cyber Security & Privacy Architect needed for a 12 - month contract in Toronto to tailor a cyber security and privacy framework for Ontario's education sector.
Cybersecurity & IT Systems Specialist overseeing global technology infrastructure security and compliance. Managing cybersecurity initiatives and supporting innovation in a remote role.
Senior Specialist Legal Editor creating high - quality legal content for Practical Law in data privacy & cybersecurity. Collaborating with teams and leveraging AI technologies for legal solutions while based in Canada.
Senior Technology Architect (Cyber Security & Network Security) needed for a hybrid contract with the Ontario government. 10+ years experience required.
Security Advisor developing and overseeing security measures aligned with corporate goals at Desjardins Group. Diagnosing risks and advising on security policies and solutions.
Business Unit Security Officer conducting risk assessments for technology systems and applications. Collaborating with engineering teams and managing cloud - based security measures at Manulife.
Manager Cyber Cloud Security and AI at PwC protecting organizations from cyber threats. Leading cybersecurity strategy focused on AI security, team collaboration, and stakeholder engagement.
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.