Senior IT Analyst, Governance and Compliance (Remote - Boucherville)

At RONA, our employees let their passion blossom every day. Our teams are driven by the desire to help people bring their projects to life and are committed to making a difference in the communities we serve.

We operate or service corporate and affiliated dealer stores. With a distinctive product and service offering and complementary store formats ranging from neighbourhood hardware stores to big box stores, our RONA+, RONA and Dick’s Lumber banners are well equipped to meet the needs of all DIYers and contractors.

You’ve got the talent? We’ve got the tools! Here, your work and ideas will contribute to building a flourishing organization. Your voice will always be heard and valued. You’ll find career opportunities that live up to your ambitions and be able to further develop your unique set of skills.

If you’re looking to do what you love, we could be a perfect match.

We are seeking a passionate individual to join our team of experts, who will serve as a reference in the development, improvement, and effective application of governance, risk management, and information security practices.

At RONA, you will have the opportunity to influence projects and IT sector managers in managing technological risks and protecting the company’s information. The ideal candidate will have a natural interest in staying up to date with emerging industry trends.

This role offers involvement in various initiatives, supporting leadership in identifying emerging threats and contributing to effective solutions.

Governance:

• Monitor and develop RONA security frameworks and practices considering business requirements, industry risks, and regulations.
• Identify and oversee the implementation of security requirements in RONA and business projects.
• Contribute to IT project success by collaborating on compliant and secure technology solutions.
• Produce and present management indicators/security dashboards to evaluate IT security practices and measures.
• Create phishing simulations and awareness campaigns.

Compliance:

• Oversee audits such as PCI DSS and ITGC in collaboration with stakeholders.
• Assist in developing controls and implementing solutions following audit reports.

Risks:

• Develop and implement IT risk management practices for projects.
• Coordinate security controls to ensure compliance with laws, regulations, and standards.
• Lead IT risk analyses and monitor mitigation activities.
• Act as advisor and contact point for security best practices.
• Manage relationships with stakeholders to identify and communicate risks and mitigation measures.

• Bachelor’s degree in computer science or relevant field.
• Minimum 10 years of IT experience, including 3 years in security, risk management, or audit.
• Strong understanding of security principles, risk management, and industry standards.
• Experience in retail/distribution is a plus.
• Knowledge of PCI and NIST CSF 2.0 (asset).
• Certifications such as CISSP, CISA, CRISC preferred.
• Curiosity, critical thinking, strong communication, synthesis, and leadership skills.

Benefits include childcare, cafeteria, electric vehicle charging, fitness facilities, employee discounts, retirement plans, bonuses, career growth, inclusive environment, and community involvement.

If selected for an interview, please inform HR of any accommodations needed. RONA values diversity and encourages applications from all qualified candidates.