Enable job alerts via email!

Governance, Risk & Compliance (GRC) and Business Continuity Program (BCP) Analyst

Global Technical Talent

Regina

On-site

CAD 75,000 - 95,000

Full time

2 days ago
Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Start fresh or import an existing resume

Job summary

A leading company in the sector is seeking a Governance, Risk & Compliance and Business Continuity Program Analyst for their Enterprise Security team. The ideal candidate will have at least 3 years of governance experience and extensive knowledge in security principles, risk, compliance, and industry standards, including specific certifications like CISSP, CISM, or CISA.

Qualifications

  • Minimum of 3 years in governance and security team.
  • Experience with security policies and standards.
  • Proficiency in risk management and compliance frameworks.

Responsibilities

  • Create and maintain governance frameworks.
  • Conduct security compliance reviews.
  • Support third-party security risk assessments.

Skills

Governance frameworks
Security principles
Risk assessments
Communication
Interpersonal skills

Education

CISSP Certification
CISM Certification
CISA Certification

Job description


SaskEnergy is seeking a Governance, Risk & Compliance and Business Continuity Program Analyst, with
broad security and governance-based backgrounds to join the Enterprise Security team. The preferred
resource should have a minimum of 3 years of recent and practical governance experience, and a
minimum of 3 years working as part of a security team. The resources will need to show a broad
understanding of security principles, practices, and security trends. The proposed resource(s) MUST
have experience working in security governance and business continuity, demonstrated experience in
governance risk and compliance, experience with regulations and standards, show what experience they
have with preparing and maintaining policies and standards, and Security Certification (CISSP, CISM,
CISA). Technical experience to coincide with the security governance experience would be considered an
asset.
Relevant Skills and Experience
1. Proven experience in creating, maintaining, and updating governance frameworks
2. Background in Information Technology and/or Industrial Control Systems (ICS) and SCADA
environments
3. Strong track record in conducting third-party security risk assessments
4. Ability to perform comprehensive security compliance reviews and address identified concerns
5. Experience in developing and maintaining security processes, procedures, and documentation
6. Familiarity with industry standards and ability to recommend improvements to security policies
and practices
7. Skilled in conducting threat and risk assessments to identify and mitigate vulnerabilities
8. Experience supporting internal and external audits, including evidence collection and reporting
9. Proficiency in documenting, defining, and managing risks and risk exceptions
10. Demonstrate expertise in Governance, Risk, and Compliance (GRC) frameworks and tools
11. Experience monitoring and reporting on change management compliance
12. Ability to work effectively both independently and collaboratively within a team
13. Experience supporting cybersecurity awareness, training, and incentive programs
14. Strong communication and interpersonal skills
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.