Senior Security Analyst, Third Party Risk

Senior Security Analyst, Third Party Risk

Posted 1 day ago

Base pay range: CA $50.00/hr - CA $55.00/hr

We’re seeking a seasoned security professional to join a Cybersecurity Governance, Risk & Compliance (GRC) team for a leading retail and wellness client in Vancouver. This team serves as trusted advisors, problem solvers, and innovators—helping the business manage risk, ensure regulatory compliance, and drive continuous improvement. You’ll collaborate across departments (Brand, Product, IT, Finance, and more) to deliver creative, secure solutions that protect our organization.

This is a 6‑month contract with potential extension.

• Conduct IT risk assessments for new projects and technology implementations.
• Define security risk profiles for systems, assets, and data using internal policies, frameworks, and industry best practices.
• Identify threats, vulnerabilities, and control gaps; perform impact analysis; and recommend compensating controls.
• Escalate security exceptions, threats, and delivery issues as needed.
• Automate GRC workflows, track risk lifecycle, and report on risk status.
• Collaborate with IT Security and Policy teams on complex risk matters.
• Drive continuous improvement initiatives within the department.

• 8–10 years of IT risk management or combined GRC and information security experience.
• Strong knowledge of data security and privacy regulations (NIST CSF, ISO 27001, PCI DSS, GDPR).
• Proven ability to assess technology and security risks, including third‑party vendor risk.
• Exceptional stakeholder management and presentation skills, including executive‑level communication.
• Proficiency with documentation tools (Confluence, Jira).
• Bachelor’s degree in MIS or related field.
• At least one certification: CISSP, CISA, CRISC, or ISO
  27001 Lead Auditor.

Mid‑Senior level

Contract

Information Technology

Retail Apparel and Fashion

Location:

Burnaby, Langley, Richmond – British Columbia, Canada