Sr Analyst, Governance, Risk, and Compliance
Tucows
- Toronto, ON
- $104,900-123,900 per year
- Permanent
- Full-time
- Monitor and document information security requirements, policies, and compliance standards.
- Document the current control state of the system and communicate that in response to various assurance activities.
- Facilitate security risk management activities, including risk assessments, control activities, advise on threats, vulnerabilities, and risk and control mitigation strategies.
- Track and communicate vulnerabilities and remediation timelines.
- Provide support and guidance to internal teams with security and compliance gaps and concerns. Support various internal assurance assessments as well as external audits such as SOX ITGC, SOC 1 Type 2, SOC 2 Type 2, ISO 27001, and PCI.
- Manage and mature the GRC platform for its use throughout the organization.
- Report on Key Performance Indicators.
- Perform other duties as assigned.
- 5+ years of experience in an information security role, GRC role, or equivalent.
- Experience with GRC platforms such as Auditboard or similar.
- Experience in security risk assessments and ITGC audit.
- Knowledge of Windows and Linux operating systems as well as AWS.
- Knowledge of scripting languages (JavaScript, Python, C, C++, etc.).
- Updating best practices, security procedures, practices and standards.
- Degree or diploma in Computer Science, Cyber Security or related field.
- Security or compliance certifications are an asset. #LI-NA1 #LI-Remote