Technical Lead, Technology Compliance
Top Benefits
About the role
As the Technical Lead, Technology Compliance, you will lead audit and compliance readiness and governance activities across Loblaw Technology and Analytics (LTA). This exciting opportunity will allow you to engage with a variety of stakeholders and management teams across LTA and the business
What You’ll Do:
-
Lead PCI DSS compliance by coordinating scoping and testing activities with the Qualified Security Assessor (QSA) and ensuring successful delivery of the annual PCI DSS audit
-
Lead SOC 2 Type II audit readiness and governance by working with various stakeholders to ensure controls are designed and operating effectively over defined time periods
-
Support the technology compliance team with the delivery of other recurring or ad hoc audit and compliance activities
-
Work with internal and external auditors on stakeholder identification, evidence gathering, audit testing, reporting and delivery management
-
Manage issues identified from audits and assessments including working with stakeholders to define remediation plans and timelines
-
Maintain and improve the integrity and accuracy of risk related data within the GRC system - risk and controls register update, complete and accurate issue log etc.
-
Work with internal and external parties to enhance GRC tools including coordinating the roll out of automation and integrated workflows for compliance activities, coordinating user training, managing configuration updates etc.
What you Bring:
-
Hands on experience in technology and cyber security controls testing and/or technology risk management, typically gained through a 2nd or 3rd line risk management, audit, assurance or advisory type role
-
Solid understanding of IT risk and control frameworks (e.g. NIST CSF 2.0, ISO 27001/2) and regulations (e.g. NI 52-109, PCI DSS etc.) typically gained by having a professional certification (e.g. CISA, CISM, CRISC, CISSP, PCI QSA) and/or related experience
-
Working knowledge of a GRC tool
-
Expert written and verbal skills
-
Recognized for taking initiative and delivering quality work with special attention to details and continuous improvements
-
Known for interpersonal and communication skills that cultivate positive working relationships
What Loblaw Offers You
We offer flexibility and balance, and an environment that sets you up for success no matter where your workspace is located.
Here, you will find a great team to help you achieve your goals as you help us achieve ours! Work in our fast-paced, exciting Technology environment, helping our stores, colleagues and customers every day.
Loblaw colleagues also enjoy:
-
Work Perks Program
-
On-site Fitness, Basketball & Volleyball courts, Dry Cleaning services (1PCC Office)
-
Tuition Reimbursement & Online Learning
-
Pension & Benefits
-
Paid Vacation
About Loblaw Companies Limited
Our Purpose – Live Life Well
Loblaw Companies Limited is Canada’s food and pharmacy leader, the nation’s largest retailer, and the majority unit holder of Choice Properties Real Estate Investment Trust. Loblaw – and its portfolio of grocery, health and beauty, financial services and apparel businesses – provides Canadians with an unparalleled mix of value, assortment and convenience, and offers Canadians two of the country’s most recognized brands – President’s Choice and no name.
The acquisition of Shoppers Drug Mart, along with the powerful Life Brand and Optimum brand, has only served to reinforce our leadership position in the marketplace. As well, our PC Plus program, omni-channel efforts and multicultural merchandising offerings continued to be points of differentiation for our customer experience.
In 2019, Loblaw has been recognized as one of Canada’s Top 100 Employers, Best Diversity Employers by Mediacorp Canada Inc.
IMPORTANT NOTE ABOUT FRAUD AFFECTING OUR JOBSEEKERS.
Please be advised that recruitment fraud has affected a number of Canadian companies. In such schemes, individuals posing as legitimate recruiters may request personal information and payment from those seeking employment.
Loblaw Companies Limited, its subsidiaries, and recruiting agencies will never ask for payment at any stage in the recruitment process. All legitimate postings may be accessed via our career website.
Technical Lead, Technology Compliance
Top Benefits
About the role
As the Technical Lead, Technology Compliance, you will lead audit and compliance readiness and governance activities across Loblaw Technology and Analytics (LTA). This exciting opportunity will allow you to engage with a variety of stakeholders and management teams across LTA and the business
What You’ll Do:
-
Lead PCI DSS compliance by coordinating scoping and testing activities with the Qualified Security Assessor (QSA) and ensuring successful delivery of the annual PCI DSS audit
-
Lead SOC 2 Type II audit readiness and governance by working with various stakeholders to ensure controls are designed and operating effectively over defined time periods
-
Support the technology compliance team with the delivery of other recurring or ad hoc audit and compliance activities
-
Work with internal and external auditors on stakeholder identification, evidence gathering, audit testing, reporting and delivery management
-
Manage issues identified from audits and assessments including working with stakeholders to define remediation plans and timelines
-
Maintain and improve the integrity and accuracy of risk related data within the GRC system - risk and controls register update, complete and accurate issue log etc.
-
Work with internal and external parties to enhance GRC tools including coordinating the roll out of automation and integrated workflows for compliance activities, coordinating user training, managing configuration updates etc.
What you Bring:
-
Hands on experience in technology and cyber security controls testing and/or technology risk management, typically gained through a 2nd or 3rd line risk management, audit, assurance or advisory type role
-
Solid understanding of IT risk and control frameworks (e.g. NIST CSF 2.0, ISO 27001/2) and regulations (e.g. NI 52-109, PCI DSS etc.) typically gained by having a professional certification (e.g. CISA, CISM, CRISC, CISSP, PCI QSA) and/or related experience
-
Working knowledge of a GRC tool
-
Expert written and verbal skills
-
Recognized for taking initiative and delivering quality work with special attention to details and continuous improvements
-
Known for interpersonal and communication skills that cultivate positive working relationships
What Loblaw Offers You
We offer flexibility and balance, and an environment that sets you up for success no matter where your workspace is located.
Here, you will find a great team to help you achieve your goals as you help us achieve ours! Work in our fast-paced, exciting Technology environment, helping our stores, colleagues and customers every day.
Loblaw colleagues also enjoy:
-
Work Perks Program
-
On-site Fitness, Basketball & Volleyball courts, Dry Cleaning services (1PCC Office)
-
Tuition Reimbursement & Online Learning
-
Pension & Benefits
-
Paid Vacation
About Loblaw Companies Limited
Our Purpose – Live Life Well
Loblaw Companies Limited is Canada’s food and pharmacy leader, the nation’s largest retailer, and the majority unit holder of Choice Properties Real Estate Investment Trust. Loblaw – and its portfolio of grocery, health and beauty, financial services and apparel businesses – provides Canadians with an unparalleled mix of value, assortment and convenience, and offers Canadians two of the country’s most recognized brands – President’s Choice and no name.
The acquisition of Shoppers Drug Mart, along with the powerful Life Brand and Optimum brand, has only served to reinforce our leadership position in the marketplace. As well, our PC Plus program, omni-channel efforts and multicultural merchandising offerings continued to be points of differentiation for our customer experience.
In 2019, Loblaw has been recognized as one of Canada’s Top 100 Employers, Best Diversity Employers by Mediacorp Canada Inc.
IMPORTANT NOTE ABOUT FRAUD AFFECTING OUR JOBSEEKERS.
Please be advised that recruitment fraud has affected a number of Canadian companies. In such schemes, individuals posing as legitimate recruiters may request personal information and payment from those seeking employment.
Loblaw Companies Limited, its subsidiaries, and recruiting agencies will never ask for payment at any stage in the recruitment process. All legitimate postings may be accessed via our career website.