Analyst Cyber Risk Management

Functional Accountabilities:

• Follow-up with individual risk owners and address exception requests, remediation plans
and other documentation required.
• Contributes to the development, documentation, monitoring and maintenance of information
security metrics, standards, policies and protocols.
• Contributes to the development of a unified IT control framework and develop Archer GRC
software.
• Performs risk assessments, documents them and support the implementation of mitigating
controls consistent with company strategy and policy.

• Participates in new business initiatives and product development activities to promote and
implement functionality necessary to support “security by design” capabilities.

Years of Experience Required: 5+ years

REQUIRED SKILLS:

• A relevant University degree/technical certification or relevant experience commensurate to
the role.
• 5-10 years of IT technology, operations experience in a large company with a minimum of 3-
5 years of experience in a cyber security role and/or risk role.
• Knowledge of Archer GRC software
• Strong knowledge and understanding of cyber security concepts, protocols, industry best
practices, strategies, frameworks and regulations such as SOX, PCI DSS, ISO, CoBIT, NIST,
PIPEDA, GDPR
• Knowledge and prior experience establishing IT Control Framework. (COBIT and NIST
CSF)
• Results oriented with a proactive and methodical approach to problem solving, capable to
work with minimal supervision
• Strong verbal/written communication in English/French

Note: Mandatory Covid-19 Vaccination Required as of October 31st, 2021. Consultants must
be fully vaccinated (received two doses).

Consultant not adhering to this requirement are not submitted for review.