Security Risk and Privacy Consultant

Security Risk and Privacy Consultant – Toronto, ON (Hybrid)

Job description for a Security Risk and Privacy Consultant with responsibilities in vendor risk assessments, privacy impact assessments, and risk management support.

• Perform vendor risk assessments to evaluate third-party security controls, policies, and procedures.
• Conduct and document Privacy Impact Assessments (PIAs) for new and existing projects, products, and services.
• Collaborate with internal stakeholders (procurement, legal, compliance, and IT teams) to assess risks and recommend mitigation strategies.
• Review vendor contracts and agreements to identify potential security and privacy gaps.
• Develop and present assessment reports with clear findings and actionable recommendations.
• Ensure compliance with relevant regulations and standards (e.g., FIPPA, PHIPA, NIST, etc).
• Provide guidance on privacy, cybersecurity controls, and risk management.

• Bachelor’s degree in Information Security, Computer Science, or a related field (or equivalent work experience).
• 2+ years of professional experience in information security, risk management, or privacy compliance.
• Strong knowledge of information security frameworks and standards (ISO 27001, NIST, SOC 2, CIS Controls).
• Strong hands-on experience conducting vendor risk assessments and privacy impact assessments.
• Familiarity with global privacy regulations (GDPR, FIPPA, PIPEDA, PHIPA etc.).
• Excellent written and verbal communication skills with the ability to present findings to both technical and non-technical stakeholders.
• Strong organizational skills with the ability to manage multiple assessments simultaneously.
• Strong understanding of and experience in information security risk management processes
• Excellent communication skills, strong attention to detail, and go getter mentality.

• Experience working within an education environment is a plus
• Experience within a cyber security environment is a strong plus!

Mindlance is an equal opportunity employer. We are committed to inclusive, equitable, barrier-free recruitment and selection processes, and work environment in accordance with the Accessibility for Ontarians with Disabilities Act (AODA). We will be happy to work with applicants requesting accommodation at any stage of the hiring process