GRC Analyst

The Analyst I, Governance, Risk & Compliance (GRC) supports the Information Security team in maintaining compliance, managing risk, and strengthening our security and compliance posture. You will work with senior analysts and managers to perform control testing, document compliance evidence, help with risk assessments, and support regulatory and audit activities.

Location: You will be based in our Toronto office, balancing in-office collaboration with remote flexibility.

Reporting Relationship: You will report to Sr. Manager GRC

• Assist with the administration and tracking of security and compliance controls (e.g., PCI DSS, ISO 27001, NIST CSF, SOC 2).
• Collect, validate, and maintain compliance evidence for audits, assessments, and regulatory reviews.
• Support internal risk assessments, control testing, and issue remediation tracking.
• Help maintain policies, standards, procedures, and control documentation.
• Contribute to the GRC tool (e.g., MetricStream) by entering and updating compliance and risk data.
• Support third-party/vendor risk assessments, including evidence gathering and documentation.
• Assist in preparing reports and metrics for management and stakeholders.
• Participate in security awareness and compliance training initiatives.
• Stay current on regulatory, compliance, and industry standards related to information security and risk management.

• Bachelor\'s degree in Information Security, Information Technology, Business, Risk Management, or a related field (or equivalent experience).
• Minimum 2 years of experience in information security, compliance, risk management, or IT audit
• Exposure to compliance audits, security assessments, or control testing.
• Foundational knowledge of risk management practices.
• Familiarity with security frameworks and standards (e.g., PCI DSS, NIST, ISO 27001).
• Strong attention to detail and organizational skills.
• Ability to analyze data, identify trends, and summarize findings.
• Strong communication and collaboration skills, with the ability to work in a team environment.
• Familiarity with GRC platforms (e.g., Metrics Stream).
• Industry certifications (e.g., CISSP, CISA, CompTIA Security+, CRISC Fundamentals, or similar).

At Moneris, we believe in empowering you to succeed—personally and professionally. As part of our team, you\'ll have access to resources, opportunities, and an inclusive environment that supports your development and career.

• Comprehensive Total Rewards Program, including performance-based bonuses, flexible benefits starting from day one, and your choice of a health spending account (HSA) or personal spending account (PSA)
• Retirement planning support, with profit-sharing programs including company match and a defined contribution pension plan
• Growth & development opportunities, including unlimited access to Coursera, mentorship programs, and an internal gig marketplace
• Holistic wellness support, with an Employee & Family Assistance Program, 24/7 virtual healthcare, and workplace wellness initiatives
• Flexibility that works for you, including hybrid work arrangements, a Work from Abroad program, and paid time off programs
• Recognition and rewards, with company-wide recognition programs, exclusive banking perks from RBC & BMO, and access to great employee discounts

Find out more about the work perks and benefits you get as a Moneris employee at Moneris.com/careers

#LI-Hybrid

#TECH-IND

Note: We welcome and encourage applications from Indigenous peoples, people of colour, people with disabilities, people of all genders, sexual orientation and intersectional identities.

We acknowledge that people from equity-deserving groups (including racialized individuals, women, gender diverse individuals, individuals with disabilities, neurodivergent individuals, members of 2SLGBTQIA+ communities and those born outside of Canada) are less likely to apply for jobs unless they feel they meet all the requirements posted. At Moneris, we believe candidates bring experience to their work in many ways. We encourage you to apply and share, in the application form, the transferrable experience you bring, and how this will support your success in this role.