Position Title: Governance, Risk and Compliance Analyst Location: Edmonton, AB or Calgary, AB Type: Permanent, full-time, hybrid About We are seeking a highly skilled and motivated individual to join a dynamic team as a Governance, Risk, and Compliance (GRC) Analyst. What You'll Do Leverage the CIS and NIST Cybersecurity frameworks to assess and enhance the organizations cybersecurity maturity, collaborating with teams to drive improvement. Support the development of a comprehensive Cybersecurity risk management program, including conducting threat assessments, reporting risks, and ensuring appropriate management and communication to relevant stakeholders. Develop governance frameworks and provide recommendations for new security standards, policies, and processes to safeguard business systems and data. Ensure these are implemented effectively and regularly reviewed. Create and maintain security policies, standards, and guidelines to foster the adoption of best practices across the organization through clear, published documentation. Coordinate responses to audit recommendations and track the resolution of any identified issues. Contribute to the vulnerability management program by documenting and monitoring residual vulnerability risks associated with critical information assets. Collaborate with various business units to define and implement security solutions for project-based work and initiatives. Mentor, guide, and provide leadership to junior team members. What You Bring A degree or diploma from a recognized university or institute in Information Security, Risk Management, or a related field. At least 4 years of experience in Security GRC, IT auditing, or IT-based risk management roles. In-depth knowledge of IT governance, risk assessment, compliance auditing, and security controls for enterprise systems, applications, and databases. Professional certifications in IT Security or Audit (e.g., CISSP, CISA, CRISC) are preferred. Excellent communication skills, both written and verbal, with the ability to interact effectively with stakeholders at all levels and provide exceptional customer service. Strong problem-solving skills with the ability to innovate and bring new ideas to fruition. Proven ability to manage multiple projects and activities concurrently. Quick adaptability to new technologies and a continuous learning mindset. A thorough understanding of the following technologies/concepts: CIS and NIST frameworks Risk management best practices COBIT/COSO frameworks Risk Assessment and Management Software (e.g., RSA Archer, ServiceNow, Ivanti GRC) Third-Party Risk Management Vulnerability and Patch Management Compliance and Audit tools This is a support role requiring relevant experience in investment processing. Ideal candidates will possess: If you are interested in this position and meet the above criteria, please click the 'Apply for Job' button below to send your resume securely and in confidence directly to the recruiter in charge of this position. We thank all applicants; however, only those selected for interviews will be contacted. All applicants must be legally entitled to work in Canada. WE APPRECIATE YOUR INTEREST IN 10 PERCENT RECRUITING LTD. We invite you to become one of our satisfied candidates 10 Percent Recruiting Ltd. believes in transparency with our candidates and our employers; we understand that open communication and collaboration are fundamental to our success. Our professional recruiters are passionate about helping you find a fulfilling job or career and ensuring your complete satisfaction with our process. We are committed to actively building lasting relationships and building trust by listening, following through, and keeping our word. We look forward to exceeding your expectations