IT Risk and Controls Analyst

Full Time Toronto, ON IT / Internet

Job Overview

  • Company Name Demand For HR
  • Job Start Date Thu, 07 Sep 2023 04:12:44 GMT
  • Job Type Full Time - Permanent
  • Job Source Careerjet

Job title: IT Risk and Controls Analyst

Job description: Our client is looking for a resourceful and positive IT Risk and Control Analyst to be part of their IT Risk team. You will support risk monitoring and reporting in accordance with risk management practices to CIO, AVP Risk and Compliance, and Sr. Manager IT Risk.

We are a collaborative team and are looking for someone who is an outstanding teammate and problem solver. You are comfortable in a creative and fast-paced environment.

Responsibilities

Nature of Work

  • Support the CISO organization from a Risk and Controls perspective with Information Security risks, IT controls and issues proficiently.
  • Supports the functional leadership team to manage IT risks and controls:
  • Drive robust risk management through control and issue analysis
  • Advise, consult and mentor/coach partners with the identification and assessment of risks
  • Promote security awareness and culture efficiently
  • Coordinate and manage IT Risk reports at various Local and Group levels.
  • Report and escalate on the status of the relevant risks and controls through established processes.

Risks & Controls

  • Provide analysis and recommendations for appropriate strategic decisions and actions to maintain acceptable risk exposure.
  • Report and escalate the status of the relevant risks, controls and standards as appropriate.
  • Supervise progress of sophisticated issues and actions to ensure remediation timelines are met efficiently.
  • Partners with key partners to build and implement remediation plans where required.
  • Provide support in various Risk Assessments (inherent and residual, root cause analysis, RCSAs, Risk Events, Risk Exceptions).
  • Produce regular risk reporting. This includes risk monitoring, co-ordinating input and updates, analysis and reviews of reports.
  • Maintain appropriate records on iCARE or Archer (IT Risk and Compliance tools).
  • Support a strong and continuously improving Risk & Control environment across IT.
  • Maintains knowledge of industry trends, developments, and regulatory changes to support IT
  • Work closely with IT and Risk partners to improve risk management practices. This includes drafting, developing, and documenting IT Risk processes and procedures, and supporting the tools used by IT Risk (e.g. iCare and Archer).

Internal Collaboration

  • Day to day engagement with a range of local control owners and nominees involved in all aspects of Risk Management to ensure proactive and timely Risk mitigation.
  • Engagement with Risk and Governance teams and Business Leadership across business units (globally and in Canada) to identify and implement Best Practices and Standards.

External Collaboration

  • Outstanding ability to foster and build good working relationships with areas inside and outside the business unit.

Qualifications

  • Strong communication and interpersonal skills.
  • Strong analytical and problem solving skills.
  • Proficiency and resourcefulness in identifying and analyzing relevant information to identify critical issues and alternatives.
  • Understanding of the CIO business, strategy and plans.
  • Outstanding ability to prioritize and deliver multiple activities concurrently.
  • Self-starter who is able to operate independently, part of a large matrix network and as a team member.
  • Prior information security, audit or risk management experience including crafting or assessing the efficiency of processes, systems and controls with the ability to identify key business risks.
  • 3 or more years of demonstrated ability with Information Security, or Risk and Compliance (preferably within the Property/Casualty insurance industry).
  • Preference will be given to candidates with a strong understanding in the areas of Cyber Security.
  • Knowledge of other insurance functional areas is an asset.
  • Ability and desire to inspire change in a fast-paced and sophisticated environment.
  • Proven dedication to high standards of performance.
  • Commitment to ongoing technical and professional development.
  • University degree in Computer Science, Computer Engineering or IT is required.
  • Preference will be given to candidates with CISA, CISM and/or CISSP designations.

Demand For HR is an equal opportunity Recruiting Firm. We do not discriminate against gender, race, persons with disabilities or ethnical background. We thank all applicants for your interest in the roles Demand For HR is recruiting for.

Source:

Apply for this job
Share:

Search Job

JobAdvisors.ca provides a centralized location for employers and job seekers. We update industry job trends, prospects and other vital information, from verified sources, for both Jobseekers and Employers and promote the content in multiple social media channels.

Follow us on:

    

T&C

Terms & Conditions