Security GRC Specialist
Job Description & How to Apply Below
We're looking for an experienced Security GRC Specialist to join our growing Security GRC team.
Reporting to the Director of Security Governance, Risk & Compliance (GRC), the Security GRC Specialist will govern the risk management lifecycle, including monitoring findings remediation, assurance programs and reporting appropriate metrics to senior leadership.
Who you are
Service - You put your clients' needs first, advocate service excellence, and work to deliver client‑centric solutions, proactively developing strategic partnerships.
Execution - You are committed to achieving your goals, focus on "getting things done," and continually improve yourself, taking accountability and learning from mistakes.
Collaboration - You collaborate with others, build trust and inclusion, and establish effective relationships inside and outside the organization.
What your day looks like
Risk Management
Conduct risk assessments of IT infrastructure, applications, third parties and critical processes to identify, assess and report on technology and cybersecurity risks.
Track and manage mitigation plans, ensuring timely resolution.
Support the development and maintenance of the cybersecurity risk register, KPI monitoring and reporting.
Governance
Assist in developing, reviewing and maintaining Technology & Cybersecurity Policies, Standards and procedures.
Ensure alignment of internal policies with industry frameworks (NIST, ISO, COBIT).
Support audits and board‑level reporting, including preparing key metrics.
Assurance
Monitor compliance with external regulatory and internal control requirements.
Support internal and external audits and conduct periodic control testing, including design and operating effectiveness.
Third Party Risk
Support vendor risk assessments, reviewing responses to questionnaires.
Maintain and enhance governance processes through GRC tools (e.g., Archer, Service Now GRC, Resolver).
Support reporting, dashboard creation and automation of risk and compliance processes.
GRC Tools
Maintain and enhance governance processes through GRC tools such as Archer, Service Now GRC, Resolver.
Support reporting, dashboard creation and automation of risk and compliance processes.
Requirements
Bachelor's Degree in Information Security, Computer Science, Business, Risk Management or a related field.
Relevant certifications such as CRISC, CISA, CISSP are an asset.
5–8 years of experience in IT risk, cybersecurity risk, audit, compliance or equivalent roles.
Working knowledge of IT governance frameworks and standards (e.g., NIST CSF, ISO 27001, ITIL).
Familiarity with regulatory and compliance requirements.
Experience with GRC platforms and tools.
Ability to work in a fast‑paced environment and stay updated on emerging threats and vulnerabilities.
Proactiveness, curiosity, willingness to learn, adaptability and strong problem‑solving mindset.
Ability to work across multiple business units and collaborate across teams.
Fluent communication skills in English; bilingual skills in French are an asset.
Benefits
Competitive compensation package that rewards and recognizes individual contributions.
Excellent health, dental and insurance benefits.
Generous vacation time, fitness benefits, parental leave top‑up options.
Matching contributions to our retirement program.
Commitment to continuous improvement through learning & development and an education assistance program.
Regular social events to foster teamwork.
Salary
Expected salary range: $105,000 – $125,000 CAD annually.
Equal Employment Opportunity
Aviso welcomes and encourages applications from all qualified individuals including persons with disabilities, and will provide accommodation as required.
#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×