Back to Job Search

Senior Cyber GRC Advisor

  • Location: Canada

Posted Il y a 20 jours

  • Sector: IT Support & Tech
  • Working: Remote
  • Start Date: 2023-02-06
  • End Date: 2023-01-26
  • Job Type: Temporary
  • Job Ref: 15801

Job Title: Sr. Cyber GRC Advisor (Remote, Part-Time Contract)

Type: Part-time (possibility for extension), Remote

Location: Work from home

Start: Immediate Start Date (ASAP)

Schedule: Flexible (5-20 hrs/week)

Position Responsibilities:

  • Lead and deliver customer engagements including Cyber Security program development and implementation consulting, control framework assessments (NIST, SOC 2, ISO 27001/02, etc.), and cyber security tabletops

  • Support internal organization's Cyber GRC related activities, including policy, standard, process documentation, execution of internal audits, and facilitation of control assessments

  • Identify, develop, communicate and implement process improvements to streamline service-related practices and enhance the customer experience

Qualifications:

  • Minimum of 5 years of Cyber Security GRC related work experience required

  • College Diploma or University Degree in Computer Engineering or Computer Science preferred

  • Strong background in Cyber Security Governance, Risk, and Compliance (GRC) advisory service delivery, cyber security program best practices, project management, and customer service excellence

  • Strong understanding of Cyber Security Frameworks required: NIST (various), SOC 2 Type II, ISO 27001 / 27002, and Payment Card Industry Data Security Standards (PCI DSS)

  • Expertise in developing and implementing controls based on strong knowledge of on-premise systems and cloud services best practices

  • Experience in designing and executing Cyber Security processes, including Information Protection, Configuration / Vulnerability Management, System Auditing / Logging, and Identity and Access Management

  • Experience in management of Vulnerability Assessments and IT Security Audits required

  • One or more Cyber Security GRC certifications preferred (CISSP, CRISC, CISA, etc.)

  • Working knowledge of software development practices and languages, include Secure Development Lifecycle practices

  • Ability to work with internal teams, external customers and vendors in a professional manner

  • Familiarity with Agile methodologies such as Lean, Scrum and Kanban preferred

  • Strong sense of ownership and teamwork

  • Strong ability to communicate and document clearly and effectively

  • Ability to follow processes and guidelines

  • Ability to work with all levels of staff

  • Ability to take personal initiative and observe confidentiality

  • Ability to multi-task in a fast-paced environment