Description Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation. This team is focused on developing and driving IT risk and cybersecurity compliance strategies, policies/standards, ensuring the effectiveness of solutions, and providing IT risk management and security-focused consultative services to the organization. The analyst will plan, execute, and help efforts to manage risk and mitigation/response, compliance, control assurance, and user awareness for the organization. This role will be reporting to the Manager, IT Risk & Compliance Responsibilities:Assists in developing, implementing, and managing enterprise risk management strategy to ensure thorough and robust approach to monitoring, evaluating, and managing information technology & Cybersecurity risks across the enterprise Ensure adherence to laws and regulations, internal policies, processes, and proceduresIdentify potential information technology & Cybersecurity risks and assess impact, probability of occurrence and timeframeAssist in the development and implementation of a standard framework to assess the relative scope and magnitude of information technology, regulatory and compliance risksAssist in the development, implementation and monitoring approach for evaluating risks, including defining risk categories, tolerances and weightingProvide guidance and subject matter expertise regarding information technology & Cybersecurity risks and mitigation planning to stakeholders across the organizationWorks with enterprise risk groups and co-ordinates internal and external auditsOwns the risk register and compliance action items to ensure IT is compliant to Air Canada’s corporate risk requirements Supports Air Canada’s compliance to PCI- DSS, C-SOX (NI 52-109), SOC2, PEPIDA and other compliance requirements Work closely with relevant stakeholders to collect and use information for improved business and operational performanceReviewing and analyzing data from multiple internal and external stakeholdersCommunicating analysis results and making recommendations to relevant stakeholders Provide support for the business analysis and technology/business integration effortsAnalyze technology trends to determine impact to the achievement of business goalsSupport in creating business casesSupport Planning and monitoring processesSupport definition and maintenance of methods, techniques and calculations for identifying ways to improve business/technical processesWorks within a functional area to ensure synergistic collaboration and attain shared goals.Supports the development of technical capabilities Responsible for actively supporting the development and enhancement of processes, priorities, and goals for Risk & ComplianceResponsible for driving continuous improvement objectives for Risk & ComplianceQualifications 4 or more years of IT Audit/Risk Management/Compliance (consulting experience preferred)Certified Information Systems Auditor is requiredCertified Information Systems Security Professional (CISSP) is an assetExperience in PCI, 52-109, SOC2 and ISO 27001 or equivalentA relevant University degree/technical certification, and/or relevant experience commensurate to the roleDemonstrate significant technical depth to balance tactical and strategic prioritiesExceptional analytical, organizational and communication skillsSelf-motivated and independent workerPossess investigative nature and be self-motivatedResults oriented with proactive and methodical approach to problem solvingAble to multi-task and work under pressure against tight deadlines and changing prioritiesMust be a team player with ability to work closely with diverse groups and working stylesAbility to establish and maintain effective business relationshipsFlexibility and willingness to work extended hours, when requiredConditions of Employment:Candidates must be eligible to work in the country of interest, at the time any offer of employment is made and seeking any required work permits/visas or other authorizations which may be required is the sole responsibility of the candidates applying for this position.Mandatory Covid-19 Vaccination RequiredLinguistic RequirementsBased on equal qualifications, preference will be given to bilingual candidates. Diversity and Inclusion Air Canada is strongly committed to Diversity and Inclusion and aims to create a healthy, accessible and rewarding work environment which highlights employees’ unique contributions to our company’s success. As an equal opportunity employer, we welcome applications from all to help us build a diverse workforce which reflects the diversity of our customers, and communities, in which we live and serve.Air Canada thanks all candidates for their interest; however only those selected to continue in the process will be contacted.