Cyber Security & IT Risk Management Consultant
Top Benefits
About the role
Job Description:
On behalf of our client Affinity is seeking a Cyber Security & IT Risk Management Consultant to play a pivotal role in advancing our organization's technology, risk, security, and operations landscape. You will execute risk-based control testing activities, independently evaluating the design, implementation, and operating effectiveness of these controls to enhance our first line of defense.
Responsibilities:
- Participate in all phases of the internal control monitoring process, including planning, testing, evaluating risk, identifying mitigating controls, developing conclusions, writing reports, and maintaining work papers.
- Perform risk-based control assessments to evaluate the design, implementation, and operating effectiveness of IT and Operational Controls. Document test work while adhering to quality standards, procedures, and organizational best practices. Responsible for executing Control Assessments (i.e., Testing) of Technology and Operation’s [T&O’s] first line Key Controls across various domains (including Cyber security, Cloud Operations, Service and Capacity management, Network Operations). May act as designated lead tester/reviewer of control testing engagements.
- Collaborate internally and externally across multiple concurrent testing engagements of varying complexity, ensuring they are completed efficiently and within timelines. Identify potential issues, conflicts, and risks, and escalating as necessary.
- Analyze, aggregate, and articulate the results, issues, and recommendations related to control testing activities or other control monitoring activities and regulatory exams.
- Establish and maintain strong working relationships across business units and platforms. Collaborate with various groups to define and achieve deliverables, acting as a trusted advisor on control documentation and testing. Collaborate and liaise with 2LOD and 3LOD (Internal Audit) when required.
- Coordinate with stakeholders to log, manage, and track control deficiencies. Assess remediation plans to ensure they are designed to effectively reduce risk and verify that corrective actions are implemented according to plan.
- Serve as a trusted advisor, advising stakeholders on control documentation and testing, ensuring compliance with organizational policies, regulatory requirements, and industry standards.
- Maintain a thorough understanding of external technology and cybersecurity trends, emerging technologies, and internal technology and cyber risk management approaches. Collaborate with other teams on IT risk-related initiatives to provide guidance and ensure the organization's risk posture aligns with its overall risk appetite. Maintain thorough understanding of organization's governing policies and standards, IT control testing methodologies, and related regulatory and compliance standards.
Qualifications:
- Minimum of 3 years’ experience in Information/Cyber Security, IT Risk Management, IT Operations, or Technology, with at least 3 years focused on controls testing, internal audit, quality control, risk management, or compliance.
- A strong understanding of technology and cyber risk management is crucial. Experience with IT risk management practices is highly valued.
- Strong organizational, project management, and time management capabilities are essential. You must be deadline-driven and results-oriented, able to consistently meet high-quality standards while managing multiple tasks and deadlines.
- Demonstrated excellence in both written and oral communication is a must. You should be proficient in effectively and timely communicating with stakeholders, understanding their information and communication needs, and presenting information clearly and persuasively.
- Strong analytical and rational thinking, supported by solid writing skills are essential for documenting and communicating test work effectively. You should be able to grasp stakeholder expectations and align your communication accordingly.
- Familiarity with regulatory environments, will greatly enhance your ability to succeed in this role.
- A Degree in Computer Science, Engineering, or a related field is required. Either CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information Security Auditor), or CISSP (Certified Information Systems Security Professional) is preferred.
Affinity Earn:
Know someone who’s great for this, or any of our open roles? Earn up to $4,000/year for each successful referral through Affinity Earn. You can also earn up to $50,000 for helping us find new clients. Learn about our referral program at https://affinity-group.ca/earn/ or browse our jobs & follow us at https://www.linkedin.com/company/affinity-staffing/jobs/
About Affinity:
Affinity Group is a technology and business consulting and services company. We believe in creating long term relationships between clients and consultants that foster a mutually beneficial partnership. Affinity is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All employment is decided on the basis of qualifications, merit and business need.
For more information on Affinity, please visit www.affinity-group.ca
Job Number: 12246
About Affinity
Welcome to Affinity Group — your trusted partner in business and technology consulting. As a carbon-neutral company certified by ClimatePartner and recognized by the Globe and Mail as one of Canada's fastest-growing companies, we are dedicated to delivering an unrivalled experience for our employees, consultants, and clients.
Professional Excellence Across Disciplines:
- Cyber Security Solutions: Protecting your operations with cutting-edge security measures.
- Data Analytics and Business Intelligence: Transforming data into strategic insights.
- Digital Transformation: Pioneering digital innovations to future-proof your business.
- Enterprise Applications: Streamlining business processes through advanced software solutions.
- Project Management: Delivering projects with precision and efficiency.
- Technology Strategy & Architecture: Crafting robust IT frameworks to support scalable growth.
Delivering Tailored Solutions: We provide flexible, bespoke solutions designed to meet the specific demands of your business, driving your success forward with precision and innovation.
Global Reach with Affinity International: Expand your capabilities with our international talent solutions. Discover how we bring global expertise to your local and international projects at affinity-group.ca/international-companies.
Empowering Our Consultants: We are committed to facilitating professional growth and success. Explore a wide array of job opportunities through our referral program, AffinityEARN. Find your next challenge on our jobs page at affinity-group.ca/jobs or LinkedIn.
Ready to Enhance Your Business? Contact us today to discuss how we can support your goals. Email us at Sales@affinity-group.ca for inquiries and solutions tailored to your needs.
Join the innovative and supportive environment at Affinity Group, where we transform challenges into opportunities and individual potential into achievements. Discover more about how we can collaborate on our website below!
Cyber Security & IT Risk Management Consultant
Top Benefits
About the role
Job Description:
On behalf of our client Affinity is seeking a Cyber Security & IT Risk Management Consultant to play a pivotal role in advancing our organization's technology, risk, security, and operations landscape. You will execute risk-based control testing activities, independently evaluating the design, implementation, and operating effectiveness of these controls to enhance our first line of defense.
Responsibilities:
- Participate in all phases of the internal control monitoring process, including planning, testing, evaluating risk, identifying mitigating controls, developing conclusions, writing reports, and maintaining work papers.
- Perform risk-based control assessments to evaluate the design, implementation, and operating effectiveness of IT and Operational Controls. Document test work while adhering to quality standards, procedures, and organizational best practices. Responsible for executing Control Assessments (i.e., Testing) of Technology and Operation’s [T&O’s] first line Key Controls across various domains (including Cyber security, Cloud Operations, Service and Capacity management, Network Operations). May act as designated lead tester/reviewer of control testing engagements.
- Collaborate internally and externally across multiple concurrent testing engagements of varying complexity, ensuring they are completed efficiently and within timelines. Identify potential issues, conflicts, and risks, and escalating as necessary.
- Analyze, aggregate, and articulate the results, issues, and recommendations related to control testing activities or other control monitoring activities and regulatory exams.
- Establish and maintain strong working relationships across business units and platforms. Collaborate with various groups to define and achieve deliverables, acting as a trusted advisor on control documentation and testing. Collaborate and liaise with 2LOD and 3LOD (Internal Audit) when required.
- Coordinate with stakeholders to log, manage, and track control deficiencies. Assess remediation plans to ensure they are designed to effectively reduce risk and verify that corrective actions are implemented according to plan.
- Serve as a trusted advisor, advising stakeholders on control documentation and testing, ensuring compliance with organizational policies, regulatory requirements, and industry standards.
- Maintain a thorough understanding of external technology and cybersecurity trends, emerging technologies, and internal technology and cyber risk management approaches. Collaborate with other teams on IT risk-related initiatives to provide guidance and ensure the organization's risk posture aligns with its overall risk appetite. Maintain thorough understanding of organization's governing policies and standards, IT control testing methodologies, and related regulatory and compliance standards.
Qualifications:
- Minimum of 3 years’ experience in Information/Cyber Security, IT Risk Management, IT Operations, or Technology, with at least 3 years focused on controls testing, internal audit, quality control, risk management, or compliance.
- A strong understanding of technology and cyber risk management is crucial. Experience with IT risk management practices is highly valued.
- Strong organizational, project management, and time management capabilities are essential. You must be deadline-driven and results-oriented, able to consistently meet high-quality standards while managing multiple tasks and deadlines.
- Demonstrated excellence in both written and oral communication is a must. You should be proficient in effectively and timely communicating with stakeholders, understanding their information and communication needs, and presenting information clearly and persuasively.
- Strong analytical and rational thinking, supported by solid writing skills are essential for documenting and communicating test work effectively. You should be able to grasp stakeholder expectations and align your communication accordingly.
- Familiarity with regulatory environments, will greatly enhance your ability to succeed in this role.
- A Degree in Computer Science, Engineering, or a related field is required. Either CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information Security Auditor), or CISSP (Certified Information Systems Security Professional) is preferred.
Affinity Earn:
Know someone who’s great for this, or any of our open roles? Earn up to $4,000/year for each successful referral through Affinity Earn. You can also earn up to $50,000 for helping us find new clients. Learn about our referral program at https://affinity-group.ca/earn/ or browse our jobs & follow us at https://www.linkedin.com/company/affinity-staffing/jobs/
About Affinity:
Affinity Group is a technology and business consulting and services company. We believe in creating long term relationships between clients and consultants that foster a mutually beneficial partnership. Affinity is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All employment is decided on the basis of qualifications, merit and business need.
For more information on Affinity, please visit www.affinity-group.ca
Job Number: 12246
About Affinity
Welcome to Affinity Group — your trusted partner in business and technology consulting. As a carbon-neutral company certified by ClimatePartner and recognized by the Globe and Mail as one of Canada's fastest-growing companies, we are dedicated to delivering an unrivalled experience for our employees, consultants, and clients.
Professional Excellence Across Disciplines:
- Cyber Security Solutions: Protecting your operations with cutting-edge security measures.
- Data Analytics and Business Intelligence: Transforming data into strategic insights.
- Digital Transformation: Pioneering digital innovations to future-proof your business.
- Enterprise Applications: Streamlining business processes through advanced software solutions.
- Project Management: Delivering projects with precision and efficiency.
- Technology Strategy & Architecture: Crafting robust IT frameworks to support scalable growth.
Delivering Tailored Solutions: We provide flexible, bespoke solutions designed to meet the specific demands of your business, driving your success forward with precision and innovation.
Global Reach with Affinity International: Expand your capabilities with our international talent solutions. Discover how we bring global expertise to your local and international projects at affinity-group.ca/international-companies.
Empowering Our Consultants: We are committed to facilitating professional growth and success. Explore a wide array of job opportunities through our referral program, AffinityEARN. Find your next challenge on our jobs page at affinity-group.ca/jobs or LinkedIn.
Ready to Enhance Your Business? Contact us today to discuss how we can support your goals. Email us at Sales@affinity-group.ca for inquiries and solutions tailored to your needs.
Join the innovative and supportive environment at Affinity Group, where we transform challenges into opportunities and individual potential into achievements. Discover more about how we can collaborate on our website below!