IT Risk Manager

About Staffingis an Alberta-based recruitment company that connects jobseekers to employers across Canada. Established in 1996, About Staffing is a BBB Accredited Business and a proud member of the Calgary Chamber of Commerce.

We have partnered with a growing, Calgary-based technology firm to support them in the recruitment process to find their next IT Risk Manager.

Job ID:42897

Job Type:Direct Hire

Category:Information Technology

Location:Calgary, Alberta

Our client is a forward-thinking, high-performing technology firm based in SE Calgary. Known for their collaborative culture, innovative mindset, and a driven team of both technical and non-technical professionals, they are seeking to add an IT Risk Manager to their team. With a bright, modern office space that fosters connection and productivity, they are committed to operational excellence while encouraging creativity and autonomy across all departments.

The team operates with a laid-back but focused approach—where work gets done with a smile and where initiative, motivation, and humility are highly valued. They thrive in a collaborative environment that celebrates ownership, transparency, and cross-functional problem-solving.

If you’re a proactive do-er who thrives in building and owning systems from scratch and who can speak the language of both risk and innovation, we encourage you to apply!

Duties and Responsibilities:

This niche position will take over the responsibilities currently held by an external consultant and bring the role in-house. The IT Risk Manager will play a crucial role in designing, implementing, and owning the internal audit, compliance, and policy frameworks for the organization.

The right candidate will roll up their sleeves to create, audit, and execute policies from the ground up while effectively communicating across all teams to ensure adoption and accountability. This is not a cybersecurity role, but rather one focused on building and maintaining the foundation of a strong risk and compliance environment.

The key job functions are:

• Develop and maintain IT policies, standards, procedures, and internal guidelines.
• Ensure the policy approval and governance process is followed and documented.
• Act as the point of contact for technology-focused external and internal audits and assessments including SOC2 and PCI DSS.
• Create, facilitate, and manage risk identification and remediation processes.
• Validate technical implementations against approved policies in collaboration with Technology and Security teams.
• Perform control testing to ensure proper implementation and performance of technology controls.
• Ensure adequate and timely risk remediation plans are developed, tracked, and completed.
• Support business continuity and disaster recovery efforts across the organization.
• Identify and implement improvements for better confidentiality, integrity, and availability of systems.
• Drive process improvement and assist control owners in refining control performance requirements.

Education:

• A Bachelor’s degree in Computer Science is strongly preferred.
• COBIT certification is required.
• Additional certifications such as CISA, CISSP, CCSP, or CRISC (or equivalent) are considered assets.

Qualifications:

• Ability to clear full background check including RCMP Criminal record check and credit check.
• Willing to work 100% in-office (SE Calgary)

Experience:

• Minimum 5 years of experience in IT risk, audit, security, compliance, or a related discipline.
• Hands-on experience with technologies such as firewalls, IDS, SIEM, vulnerability scanners, antivirus, data leak prevention, two-factor authentication, and VPN.
• Proven experience managing audits and external assessments such as SOC2 Type II and PCI DSS.
• Strong familiarity with industry frameworks and standards including ISO 27000, COBIT, NIST 800-53a, SOC2, GLBA, FCRA, and FISMA.
• Experience developing and executing end-to-end risk frameworks and audit processes.

Skills:

• Ability to operate effectively in both technical and business contexts, bridging communication between engineers and executive leadership.
• Outstanding communication and interpersonal skills to influence, guide, and reinforce compliance and policy adherence across teams.
• Highly self-motivated with a strong sense of ownership; thrives when working autonomously with minimal oversight.
• Collaborative team player who excels in fast-paced, high-growth environments.
• Strong attention to detail paired with the ability to maintain a strategic, big-picture perspective.
• Excellent organizational and project management capabilities, with a knack for managing multiple priorities.
• Exceptional written and verbal communication skills, tailored to both technical and non-technical audiences.
• Skilled at educating and influencing stakeholders at all levels to ensure consistent adherence to compliance frameworks.
• Proven analytical thinker with the ability to independently solve complex problems and identify areas for process improvement.

Base Salary:$120,000-140,000 per year

• Salary based on experience and qualifications
• Full benefits package after 3-month probationary period

Work Hours:

• 40 hours per week
• Monday – Friday

Remote Work:

• This position is not remote and required to be on-site.

Additional Notes:

• This opportunity does not include relocation. It will be the responsibility of the candidate should relocation be required.
• All applicants must be authorized to work in Canada to be considered for employment.

Equity. Diversity. Inclusion.At About Staffing EDI has always been a business priority and is continually upheld in our business practices. The About Staffing team would like to thank everyone who applies and will contact those potential candidates who are suitable for the position based on the employer’s needs.

About Staffingrecruiters are Alberta’s experts in connecting candidates with information technologyjobs.We focus on temporary, direct hire (permanent) and temporary-to-direct hire placements in the corporate, industrial, management and technical fields.

About Staffing’s recruitment specialists believe in a human-to-human approach in hiring. We read your resume, conduct person-to-person interviews and make our matches to information technology jobs.

Frequently Asked Questions

What happens after I apply?

Our Recruitment Team will be notified once you have submitted your resume. They will review your resume against our current job postings. If you meet the employer’s requirements, a recruiter may be in touch to begin the recruitment process.

Please note we are only contacting applicants who meet the employer’s needs of the positions we are actively working on. We are constantly posting information technology jobs so check back with us regularly.

For more FAQs, feel free to stop by our job seeker page.

Please reference Job ID:42897in your application.

Back to Job Postings