Information Security Auditor


Offre publiée le 2023-01-08

Recrute Action

Job description

Job Description

This is a remote position.

Are you looking for a stimulating and dynamic job? If you would like to be part of a team that believes in your potential and of a great company that will help you advance in your career, this is the job for you! We are currently looking for an Information Security Auditor for one of our clients in the insurance industry.

What is in it for you :

  • Our client is in the TOP 100 Employers in Canada
  • Salary between $52 / h to $59 / h
  • Contract for 12 months
  • Fulltime schedule
  • Remote position
  • Dynamic and professional environment

Responsibilities :

  • Interact with the company’s Global Information Risk Management team, Canadian Division Information Risk Management team, the Global Security and ETS teams
  • Develop a solid grasp of the company’s overall polices and security standards
  • Support security assessments which will include self-assessment questionnaires, contract reviews, site visits and external audit reports analysis
  • Provide Controls, Audit, and Compliance consulting support for Program(s) and Program teams and initiatives
  • Consult with the Group Benefits business unit on information security, compliance, and controls requirements
  • Assess compliance and drive remediation / alignment with the company's Security Policies, Standards and Procedures
  • Review and provide assessments into the control monitoring process, ensuring that appropriate internal controls are followed for all underpinning processes

What you will need to succeed :

  • Bachelor’s degree in computer science or equivalent and relevant professional experience
  • At least 3 - 5 years of working experience in information security audit and contracts reviews.
  • Professional certification(s) related to information controls, audit, or compliance such as CISSP, CRISC, CISM, CISA, GIAC is helpful
  • Extraordinary written and oral communication skills
  • Working knowledge of French is considered an asset
  • Must have a deep understanding of IT controls combined with information technology audit and compliance experience
  • Must have the ability to analyze and synthesize information and complex issues to develop meaningful analyses to help make informed decisions
  • Must have the ability to analyze and form an opinion on risks and controls relating to systems and link to associated business impacts
  • Must have the ability to voice opinions (supported by facts), call out issues and ideas, and positively handle conflict
  • Must be familiar with IT General Controls
  • Solid understanding of industry frameworks such as NIST, ISO, COBIT5, and CSA
  • High level of professionalism, integrity, and ethics
  • Can perform tasks independently, yet are also capable of working within a team environment
  • Ability to design and implement new processes and build efficiencies
  • Comfortable working in a fast-paced, evolving, and growing environment
  • Proven time management and organizational skills are required to meet tight deadlines
  • Strong presentation and interpersonal skills
  • Strong computer skills
  • A get-it-done attitude
  • 1 hour ago