Other Jobs
Loading...

Third Party Risk Analyst

Apply Now
Company
Quantum Technology Recruiting Inc.
Job location
Toronto, CA
Job type
Full-time
Salary
Undisclosed
Posted
Hosted by
Adzuna

Job details

Position: Third Party Risk Analyst Location: Toronto / Remote Job Type: 6 months contract, full-time Our Toronto-based client, consistently ranked as one of Canada’s top employers, is looking for a Third Party Risk Analyst, who has done full-cycle 3rd party vendor risk assessments to support their Information Security Risk Management and Governance programs. Your New Role: You will collaborate with technology and business stakeholders to identify, assess, and monitor security risks in IT and Operational Technology (OT). This involves conducting gap analyses, auditing and creating governance frameworks, developing and communicating risk mitigation strategies, engaging in the implementation of risk and governance technology tools, and ensuring compliance with Information Security policies. You will maintain an up-to-date understanding of emerging trends in OT risks and threat vectors; apply new techniques in-line with overall Information Security objectives and risk tolerance of the organization. Key Requirements: - 5 years of experience in Information Security risk management and/ or cybersecurity space - In-depth knowledge of TPRM (Third Party Risk Management) - Understanding of security technologies in enterprises, both on-premise and in the Cloud - Understanding of Information Security and Risk Management frameworks (SOC2, ISO27001, ISO27005, NIST CSF, NIST 800-30) - Strong knowledge of Information Security controls for Mobile, IoT, Cloud, Applications, Network, and System infrastructure - Deep understanding of computer security, laws, and regulations along with knowledge of legal and regulatory compliance standards (PCI-DSS, GDPR, CCPA, PIPEDA) - Experience authoring technical documentation - Proven ability to align risk mitigation recommendations with overall strategy and budget - Excellent spoken and written communication skills with ability to present risk and governance matters with non-technical stakeholders - Audit experience with PCI DSS, SOC2, and/or other compliance standards is an asset
Apply Now
Get the freshest news and resources for developers, designers and digital creators in your inbox each week
Start Free Trial
Stuff we do
PremiumNewslettersLearning pathsLibraryForums
Contact
Contact usFAQPublish your book with usWrite an article with usAdvertise
About
Our storyCorporate membershipsTerms of usePrivacy policy
Connect
RSSFacebookInstagramTwitter (X)
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
© 2000 - 2024 SitePoint Pty. Ltd.