Senior IT Risk and Compliance Consultant

Toronto, ON
Jul 25, 2024

Our client

One of the world's best pension investment funds undergoing major technology transformation and modernization


What's in it for you

Help to grow and mature an increasingly important key function within the enterprise. Lots of new and challenging projects.



• Connect with IT teams to understand their business processes, how they manage risks, and respond / advise on their risks and concerns.
• Develop and update IT Governance documents including policies, standards, procedures, and guidelines in support of GRC practices.
• Perform risk assessments for existing processes and new IT initiatives.
• Assist in defining and maintaining IT Risk metrics and dashboards.
• Design controls in partnership with IT teams to address risks.
• Drive compliance related initiatives including the performance of gap assessments for new and existing policies and standards.
• Promote risk awareness and culture.
• Provide regular status updates ensuring stakeholders are aware of progress and roadblocks.
• Maintain a thorough understanding of technology and GRC practices to assist with IT risk management in a rapidly changing IT environment.
• Handle Ad-hoc requests or inquiries related to Risk and Control initiatives and function.

Required Experience

• Over 7 years of experience in IT Governance, IT Risk & Compliance, and IT Audit.
• Bachelor’s degree in Business, Computer Science, Information System, Engineering, or equivalent experience
• Experience in developing and/or reviewing IT Governance documents such as policies, standards, and procedures.
• Experience with control and risk frameworks, performing compliance and risk assessments, designing controls, and overseeing mitigation projects.
• Experience in developing and reporting performance and risk metrics, such as KPIs, KRIs, SLA’s, OKR reporting and dashboards for executive leadership teams.
• Understanding of risk methodologies, frameworks, and practices – (ISO standards, COBIT, CIS, COSO, NIST, etc.)
• Good verbal and written communication skills, especially communicating across all levels and cross functional teams.
• Technical knowledge of technology platforms (Operating systems and Databases).
• Experience in the Financial Services Industry is an asset.
• Knowledge of public cloud infrastructure (Azure and Amazon Web Services) is an asset.
• Experience working in an agile environment (software development, infrastructure, and shared services)
• Experience with ServiceNow GRC platform is preferred.
• Preference given to candidates with one or more industry certifications such as CRISC, CISA, CISM, CGEIT, CISSP etc.
• Independent and results oriented • Collaborative, independent, and forward thinking
• Pays attention to detail
• A team player with excellent interpersonal skills 

Send to Friend

Send to Friend