IT Risk Management Specialist

IT - Systems Integration
Markham, ON
Aug 24, 2019


Our client

One of North America's most recognized and respected brands, voted one of the best companies to work for in Canada, is looking for someone to assist in their continued , large scale business and technology transformation initiatives. A company that believes in work/life balance, promotion from within and recognizing top performers etc.

What’s in it for you?

Join a team in expansion mode. Be at the forefront of transformation in a Fortune 500 firm looking to take advantage of IOT, Big Data, Cloud, Mobile platforms and Agile transition.



  • Perform risks assessments, conducting research to identify emerging trends in risk management and risk mitigation
  •  Support the implementation of risk mitigation programs that ensure or improve the effectiveness of risk management and protection strategies.
  • Conduct technology and business impact and/or risk assessment analysis (examples include, internet attacks, malicious code attacks, security issues, and compliance with regulations) and assist with recommendations and/or mitigation strategies to management
  • Review changes in company processes, standards, and technology to ensure the effectiveness of risk mitigation strategies
  • Support the development of a risk assessment approach for assessment both inside and outside the company (including IT Security, SOX ITGC, PCI DSS (IT).
  • Participate in efforts to analyze technology and business impact and exposure based on emerging threats, vulnerabilities, and risks
  • Assist / Research risk decision making through the use of risk controls frameworks
  • Assist with the risk reporting for appropriate audiences 
  • Participate in efforts to analyze technology and business impact and exposure based on emerging threats, vulnerabilities, and risks
  • Support Development of analytic and visual presentation strategies to ensure risk data is conveyed in meaningful and interpretive formats for all audience levels
  • Support establishing and quantify the organization’s 'risk appetite' and tolerance levels


Skills & Qualifications

  • Education or equivalent working experience:  A bachelor’s degree in Computer science, Risk Management or equivalent.
  • Experience: 5+ years of broad information technology or information technology risk management, of which minimum 3 years should be in risk management or compliance services for a large organization
  • Certifications in areas of speciality would be beneficial. Examples include: CISSP, CISM, CISA, CRISC or CGEIT
  • Hands-on experience conducting risk assessment to assess IT risks and controls across various processes (example Software Development Life Cycle, Web Systems) and regulations (example SOX, Privacy)
  • Experience assessing against leading international risk management standards including COBIT 5, ISO 31000, and NIST RMF
  • Experience assessing against leading international security standards including COBIT 5, ISO27001/ ISO27002, or NIST 

Send to Friend

Send to Friend