IT Risk Specialist (Software Development)

About Staffing® is an Alberta-based recruitment company that connects jobseekers to employers across Canada. Established in 1996, About Staffing is a proud BBB Accredited business.

We have partnered with a growing, Calgary-based technology firm to support them in the recruitment process to find their next IT Risk Specialist (Software Development)

Job ID: 42897

Job Type: Direct Hire

Category: Information Technology

Location: Calgary, Alberta

Our client is a forward-thinking, high-performing technology firm based in SE Calgary. Known for their collaborative culture, innovative mindset, and a driven team of both technical and non-technical professionals, they are seeking to add an IT Risk Specialist (Software Development) to their team. With a bright, modern office space that fosters connection and productivity, they are committed to operational excellence while encouraging creativity and autonomy across all departments.

The team operates with a laid‑back but focused approach—where work gets done with a smile and where initiative, motivation, and humility are highly valued. They thrive in a collaborative environment that celebrates ownership, transparency, and cross‑functional problem‑solving.

If you’re a proactive do‑er who thrives in building and owning systems from scratch and who can speak the language of both risk and innovation, we encourage you to apply!

Duties and Responsibilities:

This niche position will take over the responsibilities currently held by an external consultant and bring the role in‑house. The IT Risk Specialist (Software Development) will play a crucial role in designing, implementing, and owning the internal audit, compliance, and policy frameworks for the organization.

The right candidate will roll up their sleeves to create, audit, and execute policies from the ground up while effectively communicating across all teams to ensure adoption and accountability. This is not a cybersecurity role, but rather one focused on building and maintaining the foundation of a strong risk and compliance environment.

The key job functions are:

• Develop and maintain IT policies, standards, procedures, and internal guidelines.
• Ensure the policy approval and governance process is followed and documented.
• Act as the point of contact for technology‑focused external and internal audits and assessments including SOC2 and PCI DSS.
• Create, facilitate, and manage risk identification and remediation processes.
• Validate technical implementations against approved policies in collaboration with Technology and Security teams.
• Perform control testing to ensure proper implementation and performance of technology controls.
• Ensure adequate and timely risk remediation plans are developed, tracked, and completed.
• Support business continuity and disaster recovery efforts across the organization.
• Identify and implement improvements for better confidentiality, integrity, and availability of systems.
• Drive process improvement and assist control owners in refining control performance requirements.

Education:

• A Bachelor’s degree in Computer Science is strongly preferred.
• COBIT certification is required.
• Additional certifications such as CISA, CISSP, CCSP, or CRISC (or equivalent) are considered assets.

Qualifications:

• Ability to clear full background check including RCMP Criminal record check and credit check.
• Willing to work 100% in‑office (SE Calgary).

Experience:

• Minimum 5 years of experience in IT risk, audit, security, compliance, or a related discipline.
• Hands‑on experience with technologies such as firewalls, IDS, SIEM, vulnerability scanners, antivirus, data leak prevention, two‑factor authentication, and VPN.
• Proven experience managing audits and external assessments such as SOC2 Type II and PCI DSS.
• Strong familiarity with industry frameworks and standards including ISO 27000, COBIT, NIST 800-53a, SOC2, GLBA, FCRA, and FISMA.
• Experience developing and executing end‑to‑end risk frameworks and audit processes.

Skills:

• Ability to operate effectively in both technical and business contexts, bridging communication between engineers and executive leadership.
• Outstanding communication and interpersonal skills to influence, guide, and reinforce compliance and policy adherence across teams.
• Highly self‑motivated with a strong sense of ownership; thrives when working autonomously with minimal oversight.
• Collaborative team player who excels in fast‑paced, high‑growth environments.
• Strong attention to detail paired with the ability to maintain a strategic, big‑picture perspective.
• Excellent organizational and project management capabilities, with a knack for managing multiple priorities.
• Exceptional written and verbal communication skills, tailored to both technical and non‑technical audiences.
• Skilled at educating and influencing stakeholders at all levels to ensure consistent adherence to compliance frameworks.
• Proven analytical thinker with the ability to independently solve complex problems and identify areas for process improvement.

Base Salary: $120,000+ per year

• Salary based on experience and qualifications.
• Full benefits package after 3‑month probationary period.

Work Hours:

• 40 hours per week.
• Monday – Friday.

Additional Notes:

• This opportunity does not include relocation. It will be the responsibility of the candidate should relocation be required.
• All applicants must be authorized to work in Canada to be considered for employment.