OVERVIEW

One of our major clients in Toronto is seeking a highly skilled Cybersecurity Risk & Assurance Analyst. This position plays a critical role in supporting the Cybersecurity Program Manager through detailed risk assessments, threat modeling, and control alignment. The ideal candidate will have extensive experience with risk governance frameworks in Canadian government or public infrastructure projects, and be familiar with national cybersecurity legislation and regulations.

MANDATORY QUALIFYING QUESTIONS

• 7+ years of experience in Cybersecurity Risk & Assurance Analysis.
• Must be able to support the Cybersecurity Program Manager with risk identification, threat modeling, control mapping, and vulnerability analysis.

• Support Cybersecurity Program Manager with risk identification, threat modeling, control mapping, and vulnerability analysis
• Draft portions of the Cybersecurity Risk Management Plan, System Security Controls, and Conformance Protocols
• Participate in workshops, document reviews, and technical alignment across Civil, RSSOM, Operations & Maintenance, and ISA/CA expectations
• Maintain traceability, logs, and submission formatting
• Ensure alignment with Canadian approval structures, terminology, and risk governance
• Interpret and apply federal legislation such as SOR/2020-222, PIPEDA, and other cyber/privacy mandates
• Follow provincial cybersecurity directives and public infrastructure standards
• Incorporate municipal and public transit cybersecurity governance practices