Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Risk/Compliance Specialist - Senior at Procom
Toronto, ON, Canada -
Full Time

Start Date

Immediate

Expiry Date

08 Nov, 25

Salary

0.0

Posted On

09 Aug, 25

Experience

7 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Iso, Nist, Contract Negotiation, Vendors, Risk Management Tools, Servicenow, Communication Skills

Industry

Financial Services

Description

RISK/COMPLIANCE SPECIALIST - SENIOR:

On behalf of our public sector client, Procom is searching for a Risk/Compliance Specialist - Senior for a 6 month contract role. This position is a hybrid position with 2 days onsite at our client’s Toronto office.

RISK/COMPLIANCE SPECIALIST - SENIOR - JOB DESCRIPTION:

This role involves a critical project focusing on risk assessments and cybersecurity governance. The position is part of a new cybersecurity initiative requiring the development and implementation of governance frameworks and policies.

RISK/COMPLIANCE SPECIALIST - SENIOR - MANDATORY SKILLS:

  • 7+ years of experience leading security and vendor risk assessments.
  • 7+ years developing and implementing cybersecurity governance frameworks.
  • 7+ years collaborating with internal teams and vendors for cybersecurity requirements.
  • 7+ years developing security processes, procedures, and governance artifacts.
  • 7+ years of experience in contract negotiation through RFP processes.
  • Strong knowledge of industry standards such as PCI-DSS, NIST, ISO 27001.
  • Exceptional verbal and written communication skills.

RISK/COMPLIANCE SPECIALIST - SENIOR – NICE-TO-HAVE SKILLS:

  • Experience with GRC (Governance, Risk, Compliance) tools.
  • Public sector experience.
  • Proficiency in cybersecurity risk management tools like ServiceNow, OneTrust, Audit Board.
  • Experience with development of security processes and standards documentation.
  • Familiarity with a broad range of technical concepts such as secure coding principles and security architecture.
Responsibilities
  • Lead security and vendor risk assessments, identifying risks and gaps, and developing mitigation strategies for third-party vendors.
  • Conduct detailed assessments of third-party vendors’ security domains, communicate findings, and prepare regular reports.
  • Develop and implement cybersecurity governance frameworks, policies, and procedures in collaboration with cross-functional teams.
  • Collaborate with internal teams and vendors to develop cybersecurity requirements for new solutions.
  • Provide support for audit, compliance, and regulatory requests with thorough documentation and analysis.
  • Work with project teams to recommend and implement security controls to address identified risks.
  • Assist with security audits and threat/risk assessments to ensure compliance with security policies and standards.