Information Security Governance Advisor

The company, a national IT consulting company, is seeking a part-time Information Security Governance Advisor to strengthen enterprise-wide security governance frameworks. The successful candidate will play a key role in developing, validating, and implementing governance strategies that align with best practices, compliance requirements, and organizational risk management objectives.

• Develop and maintain information security governance frameworks, policies, and procedures.
• Assess compliance with industry standards, regulations, and internal policies.
• Lead security audits, risk assessments, and maturity evaluations.
• Provide strategic recommendations to executives and IT leadership on security governance improvements.
• Act as a trusted advisor for business and IT teams on regulatory and security control requirements.
• Ensure alignment of governance activities with the organization’s risk management and compliance posture.

• Bachelor’s degree in Information Security, Computer Science, or related field (advanced degree preferred).
• 10+ years of IT experience with at least 5 years in information security governance, risk, and compliance.
• Proven track record designing and implementing governance frameworks (ISO 27001, NIST, CIS, etc.).
• Experience conducting audits, compliance reviews, and risk assessments.
• Strong understanding of privacy regulations, legal requirements, and contractual security obligations.
• Excellent communication and advisory skills to work with executives and stakeholders.
• Certifications such as CISM, CRISC, or ISO 27001 Lead Implementer are a strong asset.
• Must be fluent in French (both written and spoken) and have demonstrated experience working in French-speaking professional environments.