IT GRC Manager (Governance, Risk, Compliance)
Location
Oakville, ON | Canada
Job description
About the Company
Our client is a leading investment firm and they are looking to hire an IT GRC Manager (Governance, Risk, Compliance).
About the Opportunity - This role is responsible for performing Information Security assessments against industry frameworks, third-party risk management & vendor management, implement & manage ISO 27001 program, and other Information Security projects
- Work closely with other business units in the organization including the IT Team and vendors
- Will not be managing anyone
- Lead ISO 27001 program: management & implementation
- Great communication skills to deal with different stakeholders
- Currently outsourcing vendors: Security & Data Warehousing
- Some tools: Qualys, Windows Defender (365)
About You - History of progressive GRC / cybersecurity positions
- Experience leading (or being one of leads for) GRC for an organization (strategy / risk / governance)
- Experience implementing and understanding of maintaining ISO 27001 certification/processes/audits
- Experience with vulnerability management, IAM
- Great communication skills
- Ability to travel to Toronto or Oakville office 2x/week
Bonus Items:
- Any Certs: CISSP, CISM, CISA, etc.
- IT technical background (eg. started as sys admin/etc.)
- Investment / financial industry experience
Salary Range $110,000-$130,000/year
Job tags
Salary
$130k per year