Security Specialist V

Our Client, a Banking company, is looking for a Security Specialist V for their Toronto, ON/Hybrid location.

• Lead assessments of audit and regulatory finding remediations required to mitigate risk within technology infrastructure and applications, working with stakeholders across the three lines of defense to ensure effective risk mitigation and remediation.
• Provide advice and guidance to Technology segments and Technology Risk Services on various areas requiring subject matter expertise and interpretation: Audit & Assurance Standards; IT Risk Governance Control Frameworks; and GRC (Governance, Risk, and Compliance) frameworks.
• Contribute to the development of mature Governance Oversight & Control practices, through improvement of Risk Identification, Control Design and Operating Effectiveness.
• Identify emerging themes, understand trends, and provide specialized business management advice to senior management and respective teams while raising industry, external and internal, enterprise and business awareness.
• Lead continuous improvement projects, leveraging agile / lean continuous improvement practices/methods that demonstrate sustainable and leading edge solutions (e.g., Artificial Intelligence (AI), Machine Learning (ML), Power BI/Apps, Python, etc.).

• Expert knowledge of IT Audit and Control methodology, IT Governance Controls and Standards, and associated tools to ascertain the quality and effectiveness of technology remediation plans.
• Experience with project and change management methods to deliver assurance, governance and oversight initiatives that align with strategic objectives.
• Competencies in technology controls, emerging threats, and technology risk disciplines and practices.
• Strengthen the independent assurance, governance and oversight operations, utilizing lean continuous improvement practices and tools.
• Apply core Agile frameworks such as Scrum, Kanban, and Extreme Programming to execute operational workplan projects.
• Knowledgeable in Artificial Intelligence to lead the design, development and deployment of AI-driven solutions that enhance business operations, decision-making, and innovation.
• Collaborate with data scientists, engineers, information security specialists, and business stakeholders to align AI initiatives with strategic objectives.
• Ability to translate business needs into technical AI solutions.
• Ability to train colleagues and team members related to risk and compliance of issue remediations.
• Excellent verbal and written business communication skills; meticulous documentation.
• Ability to manage multiple efforts simultaneously, prioritize demands, and demonstrate strong organizational skills.
• Ability to effectively interact with individuals across the organization and at various levels (technical, business, Senior & Executive Management).
• Stay current with the latest research and trends in AI/ML and recommend relevant tools, frameworks, and methodologies.

• 10+ years as an IT Risk Specialist with relevant experience in governance, risk and compliance management within regulated industries.
• Information Security or technology risk and controls background in a financial industry is a plus.
• IT governance experience in information security and controls risk frameworks (i.e., ITIL, NIST, COBIT).
• Knowledge and experience with various lifecycle methodologies / frameworks, e.g., Agile, Project Management, IT Processes, Risk Management frameworks.
• Experience with technology tools including RSA Archer, JIRA, Confluence, SharePoint, MS Office, Excel.
• CRISC certification or equivalent experience - Must have.
• University degree or relevant field / equivalent experience.
• Experience or knowledge with AI Co-Pilot, Power BI, and Automate.
• CISA certification or equivalent experience - Preferred.
• CISSP certification or equivalent experience - Nice to have.

• Health Benefits
• Referral Program
• Excellent growth and advancement opportunities

As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or expression, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws.