We are a Risk and Compliance Consulting services organization experiencing rapid growth. We offer a unique environment that promotes collaboration and continuous learning, all while working with a deeply experienced group of Business, Audit, IT and Cyber Security professionals. At Cyberium, we believe in a culture that values work-life balance and having fun as a team, both in and out of the office.

• We follow a creative, agile approach to working with our clients that forges long term relationships and continuous high value delivery.
• We pride ourselves on ensuring the highest standards of quality and service
• We bring creative consulting and technology solutions to help solve our clients' complex problems
• We provide services, using an agile approach, to prestigious clients across North America
• We offer competitive salary and benefits, including health benefits

Company Overview

We are a team of experienced practitioners with diverse backgrounds who take pride in a results-driven approach.

We bring a creative, agile approach and a diverse set of capabilities to solve complex business and IT challenges. You should be comfortable working in a collaborative team environment, possess excellent communication skills, and have an appetite for learning and applying new concepts.

Description of the role

We are looking for a Senior Consultant, IT Risk and Compliance Services with a strong background in IT - Control Testing, Internal Audits and Risk Advisory - to work as an integral part of our experienced service delivery team serving enterprises in financial services, public sector, high technology sector, and other industry sectors. You will be helping our clients to solve complex business and risk challenges.

You will be an integral part of our team, providing support with the following activities:

• Lead and support delivery of client engagements in the domains of – IT Internal Audits, Internal Control Testing (for example SOX ITGC, ISO27001, NIST, SOC 2), IT Process Reviews, and IT Risk Management.
• Support the scoping of audit projects — both business and operational – collaborating with process owners to identify key processes and related controls.
• Lead and conduct control testing to evaluate the effectiveness of IT controls in accordance with SOC 2, ISO27001 or similar financial and technical frameworks.
• Ability to analyze controls across IT processes, identifying and classifying key and non-key controls to optimize the efficiency of testing procedures.
• Assist with preparation for client stakeholder discussions – ensuring clear and effective communication throughout the engagement lifecycle for the clients and internal Cyberium team.
• Liaise with external auditors, providing necessary information and support during the audit process to ensure a smooth and efficient engagement.
• Maintain and update documentation related to internal controls, ensuring compliance with company policies and regulatory standards.
• Lead and support implementation and improvement of control procedures and policies as necessary.

Required Qualifications & Experience:

• Minimum 4+ years of combined relevant experience.
• IT Auditing and Risk Advisory services for mid to large size enterprises.
• CISA, ISO27001 Lead Auditor, ISO27701 Lead Auditor certification preferred.
• Demonstrated engagement execution and delivery skills, including ability to train team members.
• Excellent written and verbal communication skills for effective collaboration with internal and external stakeholders.
• Strong analytical and problem-solving skills with acute attention to detail.
• Strong interest in Privacy, Data Management and AI would be an asset.