TEEMA -
455 emplois
Edmonton, AB
Job Title: Information Security GRC AnalystJob ID: TW225892930
Role Summary:The GRC Analyst primary responsibilities relate to the maintenance of the governance, risk, and compliance components of the organization. GRC Analyst will be responsible for maintaining the control framework and will recommend, develop, and document appropriate information security controls/policies, procedures, standards, and guidelines. The GRC Analyst will conduct and document threat and risk assessments and assist in the delivery of the ongoing Compliance Programme assessment.
Accountabilities:
For more information about TEEMA and to consider other career opportunities, please visit our website at www.teemagroup.com
By applying to TEEMA on any job portal implies you are entering into a business relationship with us and therefore grants TEEMA consent to send you further job updates or industry and company related information.
Role Summary:The GRC Analyst primary responsibilities relate to the maintenance of the governance, risk, and compliance components of the organization. GRC Analyst will be responsible for maintaining the control framework and will recommend, develop, and document appropriate information security controls/policies, procedures, standards, and guidelines. The GRC Analyst will conduct and document threat and risk assessments and assist in the delivery of the ongoing Compliance Programme assessment.
Accountabilities:
- Creation of information security objectives, develop and maintain security metrics and effectiveness testing relating to the ongoing measurement of the program.
- Support annual compliance audits including the Interac Compliance Program, internal and external audits and the creation and governance of the action plans to correct situations of non-compliancy.
- Assess, evaluate, and make recommendations regarding the adequacy of the security controls for the organizations information technology systems and infrastructure with respect to the confidentiality, integrity, and availability of organizational data.
- Write and maintain information security policy documents and execute the sign-off, ongoing maintenance, and annual review process.
- Facilitate threat and risk assessments in a workshop setting with business stakeholders, document risk, understand and model threats, and recommend relevant risk treatment and remediation strategies. Perform ongoing maintenance of the risk register.
- Assist the vulnerability management program by documenting discovered vulnerabilities on information assets and providing recommendations in the form of remediation action plans.
- 2 – 5 years related information security or related experience
- Experience with information security technologies including GRC technology platforms, Security Incident and Event Management (SIEM) systems, network and application firewalls, intrusion prevention, web proxies, encryption, vulnerability management, public key infrastructure (PKI), malware prevention.
- Experience with enterprise technology infrastructure, application security, database security, and information systems auditing.
- Experience with the financial services industry is considered an asset.
- Required: College diploma or University degree in a relevant area e.g., Computer Science, IT, Security etc.
- Desired: CISA, CISM, CISSP, CGEIT CRISC or CDPSE
For more information about TEEMA and to consider other career opportunities, please visit our website at www.teemagroup.com
By applying to TEEMA on any job portal implies you are entering into a business relationship with us and therefore grants TEEMA consent to send you further job updates or industry and company related information.