Do you have 7+ years developing and implementing cybersecurity frameworks, policies, and procedures in collaboration with cross-functional teams? Do you have 7+ years experience in contract negotiation with procurement and legal teams through RFP processes and vendor evaluations throughout procurement life cycle? If so, this would be a great opportunity for you!
...
Our client is looking for a Senior Risk/Compliance Specialist for a 6 month contract in Toronto.
This is a hybrid role.
Advantages
• Hybrid: 2 days onsite / 3 days remote
• Earn a competitive rate within the industry
Responsibilities
• Coordinate and perform risk assessments against a wide variety of inputs.
• Analyzes data from various sources to identify remediation of risks. Interprets policies, legislation and standards to adequately provide advice for management and executives.
Qualifications
Must Haves:
· 7+ Leading security and vendor risk assessments, identifying risks and gaps, and developing mitigation strategies for third-party vendors.
· 7+ years Developing and implementing cybersecurity frameworks, policies, and procedures in collaboration with cross-functional teams.
· 7+ Collaborating with internal teams and vendors to develop cybersecurity requirements for new solutions
· 7+ Developing the security process, procedure, artifacts and security controls within the Cybersecurity Risk Management and Compliance Programs.
· 7+ years experience in contract negotiation with procurement and legal teams through RFP processes and vendor evaluations throughout procurement life cycle
· 7+ years experience knowledge of industry standards and regulations such as PCI-DSS, NIST, ISO 27001
· 7+ years experience facilitating cybersecurity awareness training
General Skills:
Experience interpreting requirements from those standards and translating them into actionable implementations Strong understanding of internal control frameworks, control mappings, and scoping Familiar with a broad range of technical concepts: logical access control, agile development process, secure coding principles, security architecture, information security, network security, and privacy Expertise in gap analysis, remediation, control design and risk assessments Exceptional verbal and written communication skills
Desirable Skills:
Experience with GRC (Risk, Compliance) tools is a plus
Experience/skills required:
A minimum of seven (7+) years of experience in information security. Including working with large security projects
Strong communication, interpersonal and presentation skills for engaging with diverse stakeholders
Expertise in security risk management, and compliance, including developing road maps, policies, standards, procedures and processes
Proven experience in contractual security requirements and third-party risk management through RFP processes and vendor evaluations throughout procurement life cycle
Ability to work in cross-functional teams, communicating complex technical information to all levels of the organization, including the leadership team
Proficient in cybersecurity risk management and third-party risk management tools (e.g., ServiceNow, OneTrust, Audit Board).
Experience with development of security processes, procedures and standards documentation
Strong knowledge of industry standards and regulations such as PCI-DSS, NIST, ISO 27001 and the ability to ensure compliance
Strong time management skills and the ability to prioritize project work and ongoing responsibilities
Self-motivated with the ability to work independently in a fast-paced environment in a fast-paced environment
Proficiency with standard Microsoft Office tools such as Word, Excel, PowerPoint, PowerBI and Visio
Education:
A current security designation (CISSP, CISM, CCSP or CISA)
Summary
If you are interested in the Senior Risk/Compliance Specialist role in Toronto, please apply online at www.randstad.ca. Qualified candidates will be contacted.
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
Do you have 7+ years developing and implementing cybersecurity frameworks, policies, and procedures in collaboration with cross-functional teams? Do you have 7+ years experience in contract negotiation with procurement and legal teams through RFP processes and vendor evaluations throughout procurement life cycle? If so, this would be a great opportunity for you!
Our client is looking for a Senior Risk/Compliance Specialist for a 6 month contract in Toronto.
This is a hybrid role.
Advantages
• Hybrid: 2 days onsite / 3 days remote
• Earn a competitive rate within the industry
Responsibilities
• Coordinate and perform risk assessments against a wide variety of inputs.
• Analyzes data from various sources to identify remediation of risks. Interprets policies, legislation and standards to adequately provide advice for management and executives.
Qualifications
Must Haves:
· 7+ Leading security and vendor risk assessments, identifying risks and gaps, and developing mitigation strategies for third-party vendors.
· 7+ years Developing and implementing cybersecurity frameworks, policies, and procedures in collaboration with cross-functional teams.
...
· 7+ Collaborating with internal teams and vendors to develop cybersecurity requirements for new solutions
· 7+ Developing the security process, procedure, artifacts and security controls within the Cybersecurity Risk Management and Compliance Programs.
· 7+ years experience in contract negotiation with procurement and legal teams through RFP processes and vendor evaluations throughout procurement life cycle
· 7+ years experience knowledge of industry standards and regulations such as PCI-DSS, NIST, ISO 27001
· 7+ years experience facilitating cybersecurity awareness training
General Skills:
Experience interpreting requirements from those standards and translating them into actionable implementations Strong understanding of internal control frameworks, control mappings, and scoping Familiar with a broad range of technical concepts: logical access control, agile development process, secure coding principles, security architecture, information security, network security, and privacy Expertise in gap analysis, remediation, control design and risk assessments Exceptional verbal and written communication skills
Desirable Skills:
Experience with GRC (Risk, Compliance) tools is a plus
Experience/skills required:
A minimum of seven (7+) years of experience in information security. Including working with large security projects
Strong communication, interpersonal and presentation skills for engaging with diverse stakeholders
Expertise in security risk management, and compliance, including developing road maps, policies, standards, procedures and processes
Proven experience in contractual security requirements and third-party risk management through RFP processes and vendor evaluations throughout procurement life cycle
Ability to work in cross-functional teams, communicating complex technical information to all levels of the organization, including the leadership team
Proficient in cybersecurity risk management and third-party risk management tools (e.g., ServiceNow, OneTrust, Audit Board).
Experience with development of security processes, procedures and standards documentation
Strong knowledge of industry standards and regulations such as PCI-DSS, NIST, ISO 27001 and the ability to ensure compliance
Strong time management skills and the ability to prioritize project work and ongoing responsibilities
Self-motivated with the ability to work independently in a fast-paced environment in a fast-paced environment
Proficiency with standard Microsoft Office tools such as Word, Excel, PowerPoint, PowerBI and Visio
Education:
A current security designation (CISSP, CISM, CCSP or CISA)
Summary
If you are interested in the Senior Risk/Compliance Specialist role in Toronto, please apply online at www.randstad.ca. Qualified candidates will be contacted.
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
