Enable job alerts via email!
Security Governance, Risk and Compliance Analyst
David Aplin Recruiting
Edmonton
On-site
CAD 70,000 - 110,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a skilled Security Governance, Risk & Compliance (GRC) Analyst to join their expanding security team. This role is pivotal in enhancing cybersecurity maturity and developing robust risk management strategies. You will have the opportunity to implement security policies, oversee compliance initiatives, and mentor junior staff. If you are passionate about cybersecurity and thrive in a dynamic environment, this position offers a chance to make a significant impact while working with diverse teams and cutting-edge technologies.
Qualifications
- 4+ years of experience in Security GRC, IT audit, or IT risk management.
- Preferred certifications: CISSP, CISA, CRISC, or equivalent.
Responsibilities
- Use CIS and NIST frameworks to enhance security maturity levels.
- Develop and implement a cybersecurity risk management program.
Skills
Education
Tools
Job description
Are you passionate about cybersecurity and risk management? Our client is building out their security team and is adding a Security Governance, Risk & Compliance (GRC) Analyst! This exciting opportunity requires a skilled professional to help enhance their cybersecurity maturity, develop risk management strategies, and drive compliance initiatives.
Responsibilities
- Use CIS and NIST Cybersecurity frameworks to assess and enhance security maturity levels.
- Develop and implement a cybersecurity risk management program, including threat assessments and reporting.
- Establish security policies, standards, and guidelines to improve governance and risk mitigation.
- Oversee compliance with audit recommendations and track risk remediation efforts.
- Support vulnerability management by documenting and monitoring residual risks.
- Consult with business units to define and implement security solutions for projects.
- Educate, mentor, and provide leadership to junior staff.
Qualifications
- A degree or diploma in Information Security, Risk Management, or a related field.
- 4+ years of experience in Security GRC, IT audit, or IT risk management.
- Expertise in IT governance, risk assessment, compliance auditing, and security controls.
- Preferred certifications: CISSP, CISA, CRISC, or equivalent.
- Strong business writing, communication, and interpersonal skills.
- The ability to manage multiple tasks, innovate, and adapt to new technology quickly.
- Familiarity with security frameworks and tools, including:
- CIS, NIST, COBIT, COSO
- Risk Assessment & Management Software (RSA Archer, ServiceNow, Ivanti GRC)
- Third-Party Risk Management
- Vulnerability & Patch Management
- Compliance & Audit tools
David Aplin & Associates Inc., operating as Aplin, and its associated brands, CompuStaff and Impact Recruitment, is an award-winning employment agency connecting diverse, top-tier talent with exceptional organizations across North America. We welcome applicants from all backgrounds and charge no fees to apply or engage with our recruiters. Please note that all applicants must be legally entitled to work in Canada, including holding any necessary work permits.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
