Senior Cyber Security Risk Management Specialist
MNP
- Calgary, AB
- Permanent
- Full-time
- Assist in the development and implementation of the Cyber Security risk management program based on the Firm’s acceptable risk tolerance levels
- Conduct business impact analysis and information security risk assessments on new projects, initiatives, mergers, and acquisitions
- Advise and support the business on day-to-day activities and provide guidance on remediation plans to mitigate risks
- Document activities and findings in the risk assessment report review and approval processes
- Develop dashboards and reports on firm risk and compliance activities
- Track, monitor, and follow up on all risk findings in the risk register
- Assist in evaluating and improving cyber security policies and ensuring compliance by all stakeholders
- Collaborate with cyber security team members in evaluating the efficacy of each control and providing recommendations to enhance security posture
- Define, capture, and report Key Performance Indicators for security dashboards in the areas of risk and compliance management, cyber security training, and awareness
- Actively participate in tabletop exercises and disaster recovery drills, providing recommendations as part of lessons learned
- Mentor and coach junior and intermediate team members
- At least 10 years of experience in IT
- At least 7 years of experience in Cyber security, including at least 5 years focused on Risk Management or Internal Audit
- Strong knowledge of risk assessment and internal audit frameworks
- Experience with cloud security (AWS & Azure)
- Knowledge and experience with cyber security and Information Technology domains
- Demonstrate proficiency and capability in applying frameworks and controls from international standards such as NIST and CIS
- Completion of CISM, CISSP or other relevant security certificates is considered an asset