IT Risk and Compliance Management Specialist

Back to All Jobs
[social_share]

Our client requires an IT Risk and Compliance Management Specialist to define, document, develop, and implement an IT Risk and Compliance Management function, including its framework, policies, standards, organization structure, staffing, process and tools and its integration with Enterprise Risk Management.

Ability to pass criminal record check is required. Enhanced background check may be required for certain projects.

Work is onsite or remote (preference for resources available to be onsite).

Winnipeg, Manitoba (Remote or Onsite)

Mandatory Requirements Bachelors Degree in Computer Engineering, Computer Science, Commerce or an equivalent field Minimum of ten (10) years of experience working as an IT Risk and Compliance Management Specialist Minimum of five (5) years of experience leading an IT Risk and Compliance Management function Familiarity with security, IT process, and control frameworks such as COBIT, ISO 27002, ITIL, and TOGAF. Hands-on experience with Microsoft Azure cloud infrastructure configuration and management. Experience implementing the Government of Canada’s Medium Profile for Cloud (PBMM) and Cloud Guardrails Experience with the Government of Canada’s Security Assessment and Authorization (SA&A) process. Strong analytical and investigative skills to address complex security and risk issues. Excellent organizational, interpersonal, and written communication skills Demonstrated ability to manage multiple priorities under strict deadlines Ability to handle highly confidential matters with discretion. Ability to develop and deliver training programs to technical and non-technical stakeholders. Desirable Requirements Experience applying the Government of Canada’s PBMM and Cloud Guardrails to secure cloud deployments Hands-on experience implementing safeguards and risk mitigation strategies for sensitive IT systems Experience with business impact analysis and risk evaluation in regulated environments Knowledge of industry standards and best practices for cloud security, particularly in Microsoft Azure. Familiarity with contractual security schedules, data security analysis, and technical security documentation development. Experience conducting security testing and evaluation (ST&E) and documenting residual risk assessments Proven experience presenting IT risk reports to executives and delivering actionable recommendations

Job Posting ID: 56035

Location: Winnipeg, Manitoba (Remote or Onsite)

Estimated Starting Date: Negotiable

Estimated End Date: 24 months + excellent pos. up to 18-months extension or more depending on project

Posting Closing Date: February 7, 2025

Back to All Jobs

Apply for this Job Posting

Fill in the form below to submit your application for this position.

Name* First Last Email* Phone*Cover Letter or IntroductionUpload Resume*Accepted file types: doc, pdf, docx, Max. file size: 512 MB.CommentsThis field is for validation purposes and should be left unchanged.