Information Technology Risk Manager
About the role
Job Title : IT Risk Manager
Full-time Opportunity, based in Greater Calgary Metropolitan Area
Must hold a valid Canadian Work Visa
This position is responsible for the execution of a Technology first-line of defence (LOD1) risk and internal control program for our client. The role will be required to execute with the company’s leadership to ensure consistency in the implementation and operationalization of controls across the enterprise.
Responsibilities
- Develop and maintain technology policies, standards, procedures, and guidelines.
- Ensure that the policy approval process exists and is followed.
- Help maintain Technology’s process inventory and internal control environment inventory.
- Act as point of contact for technology-focused external and internal audits and assessments (SOC2, PCI DSS, & others).
- Effectively communicate technology and security-related risks and vulnerabilities.
- Validate solutions being implemented are in line with currently approved policy, in conjunction with Technology and Security teams.
- Perform control testing of technology controls for correct implementation and operation.
- Create, facilitate, and manage risk identification and remediation processes.
- Ensure risk remediation plans exist and are sufficient; track remediation plans to ensure remediation of issues by Risk Owner.
- Assist Technology teams in driving improvements in confidentiality, integrity, and availability.
- Identify and implement process improvement efforts.
- Work with process and control owners to better define and implement control performance requirements.
- Support the company’s commitment to risk management and protecting the integrity and confidentiality of systems and data.
Qualifications
- Education and/or experience typically obtained through completion of a bachelor’s degree in Computer Science, Business Administration, Finance, or Accounting, or equivalent experience.
- 5+ years of work experience in security, governance, compliance, IT audit, information technology, or related.
- Certification in one of CISA, CISSP, CCSP, CRISC, or equivalent, or ability to sit for one of the certifications within the first 12 months of hire.
- Experience with security-related technologies including firewalls, IDS, SIEM, vulnerability scanners, anti-virus, data leak prevention, two-factor authentication, and VPN.
- Experience in managing business continuity and disaster recovery initiatives.
- Additional related education and/or experience.
NOTE: Only shortlisted candidates will be contacted
About Benchmark Recruitment
Unleash the full potential of your workforce with Benchmark Recruitment - the boutique agency that's shaking up the industry! With over 100 years of combined experience, our leadership team is fueled by a passion for delivering outstanding results for both clients and candidates.
We've seen it all, worked with the biggest names in the game, and listened to what truly matters to you. That's why we created Benchmark Recruitment - to put the focus back on the customer experience and simplify the hiring process. From sourcing top talent to retaining them, we partner with you every step of the way.
From high-growth startups to established enterprises, we have the expertise and network to meet your staffing needs, be it permanent, contract, or contract-to-hire. We're not just talking the talk, we walk the walk too. Our team is equipped with the latest technology and empowered with a work-life balance that their families deserve.
Join the next generation of recruitment with Benchmark Recruitment - where exceptional service meets exceptional results.
Information Technology Risk Manager
About the role
Job Title : IT Risk Manager
Full-time Opportunity, based in Greater Calgary Metropolitan Area
Must hold a valid Canadian Work Visa
This position is responsible for the execution of a Technology first-line of defence (LOD1) risk and internal control program for our client. The role will be required to execute with the company’s leadership to ensure consistency in the implementation and operationalization of controls across the enterprise.
Responsibilities
- Develop and maintain technology policies, standards, procedures, and guidelines.
- Ensure that the policy approval process exists and is followed.
- Help maintain Technology’s process inventory and internal control environment inventory.
- Act as point of contact for technology-focused external and internal audits and assessments (SOC2, PCI DSS, & others).
- Effectively communicate technology and security-related risks and vulnerabilities.
- Validate solutions being implemented are in line with currently approved policy, in conjunction with Technology and Security teams.
- Perform control testing of technology controls for correct implementation and operation.
- Create, facilitate, and manage risk identification and remediation processes.
- Ensure risk remediation plans exist and are sufficient; track remediation plans to ensure remediation of issues by Risk Owner.
- Assist Technology teams in driving improvements in confidentiality, integrity, and availability.
- Identify and implement process improvement efforts.
- Work with process and control owners to better define and implement control performance requirements.
- Support the company’s commitment to risk management and protecting the integrity and confidentiality of systems and data.
Qualifications
- Education and/or experience typically obtained through completion of a bachelor’s degree in Computer Science, Business Administration, Finance, or Accounting, or equivalent experience.
- 5+ years of work experience in security, governance, compliance, IT audit, information technology, or related.
- Certification in one of CISA, CISSP, CCSP, CRISC, or equivalent, or ability to sit for one of the certifications within the first 12 months of hire.
- Experience with security-related technologies including firewalls, IDS, SIEM, vulnerability scanners, anti-virus, data leak prevention, two-factor authentication, and VPN.
- Experience in managing business continuity and disaster recovery initiatives.
- Additional related education and/or experience.
NOTE: Only shortlisted candidates will be contacted
About Benchmark Recruitment
Unleash the full potential of your workforce with Benchmark Recruitment - the boutique agency that's shaking up the industry! With over 100 years of combined experience, our leadership team is fueled by a passion for delivering outstanding results for both clients and candidates.
We've seen it all, worked with the biggest names in the game, and listened to what truly matters to you. That's why we created Benchmark Recruitment - to put the focus back on the customer experience and simplify the hiring process. From sourcing top talent to retaining them, we partner with you every step of the way.
From high-growth startups to established enterprises, we have the expertise and network to meet your staffing needs, be it permanent, contract, or contract-to-hire. We're not just talking the talk, we walk the walk too. Our team is equipped with the latest technology and empowered with a work-life balance that their families deserve.
Join the next generation of recruitment with Benchmark Recruitment - where exceptional service meets exceptional results.