Cyber Security Governance, Risk and Compliance Manager

Toronto, ON
$140,000-180,000 per year
Permanent
Full-time

12 days ago

Job Description:This is a hybrid position (3x a week in the office) in Downtown Toronto.Do you have experience leading ISO 27001 audits? Are you excited by the opportunity to manage cybersecurity programs for AI?This leadership position is focused on building and executing cyber risk management programs aligned with emerging technologies such as AI/ML, quantum systems, and other disruptive innovations. As a hands-on contributor, you will develop and enforce security frameworks that meet compliance obligations. Your work will ensure alignment with enterprise-wide risk management initiatives while supporting regulatory standards.What you will do and how you will make an impact …

Lead ISO 27001 audits from initial assessment and control validation through final reporting and certification processes.

Oversee risk management and compliance for AI platforms and emerging technologies, ensuring alignment with frameworks like the NIST AI Risk Management Framework and ISO/IEC standards.

Collaborate with cross-functional teams to evaluate technology risks associated with new innovations (e.g., generative AI and quantum computing) and implement solutions to mitigate exposure.

Guide risk assessments and develop policies for third-party platforms and vendors.

Establish and operationalize security controls across hybrid cloud and enterprise landscapes, leveraging automation and AI-related safeguards.

Design and enforce governance structures to ensure compliance with industry regulations, including those specific to AI governance.

Represent cybersecurity leadership in enterprise-wide risk discussions, incident response planning, and resiliency testing for advanced technologies.

Support regulatory alignment efforts by tracking developments in cybersecurity laws and standards and incorporating these into organizational compliance programs.

Requirements:· Proven experience in executing end-to-end ISO 27001 audits· Extensive experience developing and managing cyber risk programs in highly regulated industries.· Working knowledge of AI governance practices, including secure model design, bias mitigation, and threat modeling for machine learning platforms.· Expertise in auditing complex systems using global frameworks such as ISO 27001, PCI-DSS, SOC 2, and NIST standards.· A strong technical background in cybersecurity, emerging technology security risks, and compliance frameworks.· Demonstrated ability to manage cyber metrics, security dashboards, and performance scorecardsNice to have: CISSP or CISM, CISA, ISO 27001 Lead Implementer/AuditorDoes this sound like it was written for you? Excellent! Please apply and let's explore this together.The interview process …If you're interested in pursuing this role, please apply to this posting. If you are selected for the next stage, I will contact you for an initial discussion. This will be a chance for us to discuss the job requirements in greater detail, as well as your career goals and preferences for your next position. We can also discuss other opportunities which may fit what you're looking for.Please feel free to reach out and find me on LinkedIn by searching my name: Tanvi KrishnaCompensation & benefits …This is a full-time and permanent position that includes a competitive base salary, pension program, wellness program, extended health and dental benefits, and paid vacation.

Robert Half

Apply Now