×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Business Analyst IT Consultant

Security GRC Specialist

Job in Vancouver, BC, Canada
Listing for: Aviso Wealth
Full Time position
Listed on 2025-12-31
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Business Analyst, IT Consultant
Job Description & How to Apply Below

At Aviso, we are dedicated to improving the financial well-being of Canadians. As a leading wealth management organization, we are committed to leadership, innovation, partnership, responsibility, and community. Working with talented and energetic professionals who exemplify our values every day, you will quickly notice that our people and dynamic ‘oneaviso’ culture sets us apart. If you are looking for interesting and challenging work, at a company committed to its people, find out more about what Aviso has to offer at

The Opportunity:

We’re looking for an experienced Security GRC Specialist to join our growing Security GRC team.

Reporting to the Director of Security Governance, Risk & Compliance (GRC), the Security GRC Specialist will be responsible to govern the risk management lifecycle, including monitoring findings remediation, assurance programs and reporting appropriate metrics to the senior leadership.

Who you are:

  • Service – You put your clients’ needs first. You advocate service excellence, and work to deliver client-centric solutions, and proactively develop strategic partnerships that allow Aviso to become a trusted advisor and partner
  • Execution – You are committed to achieving your goals and to succeed. This includes focusing on “getting things done”, as well as recognizing and taking advantage of opportunities as they arise. You are consistently looking for ways to improve your personal best and see value in continuous improvement. You take accountability for your actions and learn from mistakes
  • Collaboration – You work collaboratively with others with the common goal of driving positive results. Making meaningful contributions to your team to achieve organizational goals is a priority. You proactively encourage collaboration, build trust and inclusion, and work to establish effective relationships both inside and outside of the organization

    • What your day looks like:

    Risk Management

  • Conduct risk assessments of IT infrastructure, applications, third parties, and critical processes to identify, assess and report on technology and cybersecurity risks
  • Track and Manage mitigation plans and ensure timely resolution
  • Support the development and maintenance of cybersecurity risk register KPI monitoring and reporting

    • Governance

  • Assist in development, review and maintenance of Technology & Cybersecurity Policies, Standards, and procedures
  • Ensure alignment of internal policies with industry frameworks (NIST, ISO, COBIT) ·
  • Support audits and board level reporting including preparing key metrics

    • Assurance

  • Monitor compliance with external regulatory and internal control requirements
  • Support internal and external audits
    · Conduct periodic control testing including design and operating effectiveness

    • Third Party Risk

  • Support vendor risk assessments, including reviewing response to questionnaire

    • GRC Tools ·

  • Maintain and enhance governance process through GRC tools (, Archer, Service Now GRC, Resolver etc.)
  • Support reporting, dashboard creation and automation of risk and compliance processes

    • Requirements

    Your experience and skills:

  • Bachelor's Degree in Information Security, Computer Science, Business, Risk Management or a related field
  • Relevant certifications such as CRISC, CISA, CISSP are an asset
  • 5-8 years of experience in IT risk, cybersecurity risk, audit, compliance or equivalent roles
  • Working knowledge of IT governance frameworks and standards (, NIST CSF, ISO 27001, ITIL)
  • Familiarity with regulatory and compliance requirements
  • Experience with GRC platforms and tools
  • Ability to work in a fast-paced environment and stay updated on emerging threats and vulnerabilities
  • Proactiveness, natural curiosity, a willingness to learn, adaptability in an evolving environment, and a strong problem-solving mindset
  • Ability to work across multiple business units and collaborate across teams
  • Fluent communication skills in English are required and bilingual skills in French are an asset

    • Benefits

    Why Aviso?

    At Aviso, you will find a dynamic and inclusive culture that rewards innovation and celebrates success.
    Here are a few things that set us apart:

  • Competitive compensation package that rewards and recognizes individual contributions
  • Excellent…
    • Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search