More jobs:
Information Security GRC Analyst
Job in
Richmond Hill, Ontario, Canada
Listed on 2026-07-18
Listing for:
TryApplyNow
Full Time, Per diem
position Listed on 2026-07-18
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
Role Overview Paymentus is hiring a mid-level Information Security GRC Analyst. This is a full-time role in Richmond Hill. Part of Paymentus's Risk hiring, posted today. applications are still in the early window, before most candidates have applied. Full responsibilities, required qualifications, and the apply link are listed in the description below.## Salary Context Salary is not disclosed in this posting.
Market median for Mid-level Risk roles is $110k-$148k (based on 145 comparable listings). Many employers share specifics during the interview process or after an initial screen.## Resume Keywords to Include Make sure these keywords appear in your resume to improve ATS scoringORRisk Management
CompensationKPIsComplianceGDPRCCPASOC 2
Sign up free to auto-tailor your resume with all these keywords and get a higher ATS score## Job description
Summary/Objective The Information Security GRC Analyst, will report to the Director, IT Compliance. This role will interact with multiple departments, manage compliance readiness, provide support for our central GRC repository, and conduct risk/gap assessments based on industry leading frameworks including remediation recommendations, tracking and associated metrics.
Essential Functions
* Support audit and compliance activities by gathering evidence, conducting preliminary assessments, and assisting in the remediation of audit findings.
* Maintain and monitor a central repository of audit evidence
* Conduct gap analysis on various industry standard compliance and regulatory requirements
* Track, update, and draft clear, concise policies, standards and procedures
* Maintain an up-to-date risk register and track remediation status
* Collaborate with various departments on GRC related objectives
* Track and ensure compliance with IT and security controls covering a wide range of regulations
* Follow up with team members driving progress on tracked issues
* Develop and contribute to metrics and KPIs for CISO and executive management review
* Review, update, and test governance plans such as the BCP, IRP and DR plans
* Assist in the Development and delivery of security awareness and training programs to educate employees on security policies, procedures, and best practices### Work Environment This job operates in a professional office environment. This role routinely uses standard office equipment such as laptop computers, photocopiers and smartphones.
Physical Demands While performing the duties of this job, the employee is regularly required to talk or hear. This would require the ability to lift files, open filing cabinets and bend or stand on a stool as necessary.
Position Type/Expected Hours of Work This is a full-time position. Days and hours of work are Monday through Friday, during normal business hours. Occasional evening and weekend work may be required as job duties demand.
Travel Little to no travel is expected for this position.
Education and Experience
* A bachelor's degree and 2 years of regulatory compliance or similar experience in payments or consumer finance, or similar combination of education and experience are preferred.
* Working knowledge in risk management, audits (SOC 1, SOC 2, PCI DSS) and information security best practices.
* Basic understanding of regulatory compliance and information security frameworks such as GDPR, CCPA, NIST, CIS Controls, etc.
* Experience in dealing with internal / external resources across a variety of departments and office hierarchies
* Self-driven and high attention to detail
* Fantastic written and verbal communication skills
* Ability to operate in and maintain a fast pace and cadence
Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
EEO Statement Paymentus is an equal opportunity employer. We enthusiastically accept our responsibility to make employment decisions without…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×