Senior Cybersecurity Advisor Jobs

Job Title: Senior Cybersecurity Risk Advisor

Full-Time Permanent

Hybrid Workplace Type

Greater Toronto Area, ON

We are currently seeking a highly skilled and experienced Senior Cybersecurity Advisor to join our client's team. In this role, you will play a crucial part in their Third Party Information Security Risk Management program, contributing to its leadership and continuous improvement. Your main focus will be on driving risk-based outcomes and ensuring compliance with regulatory requirements.

Responsibilities:

• Mentor and provide guidance to Advisors and Analysts, supporting their professional development and enhancing the overall capabilities of the team.
• Conduct security assessments for projects of varying complexity, analyzing potential risks and vulnerabilities. You will effectively communicate assessment results to both internal and external stakeholders.
• Review third-party contracts to ensure the inclusion of appropriate security clauses, safeguarding our organization against potential vulnerabilities arising from external partnerships.
• Foster strong relationships with internal and external partners, collaborating effectively to address cybersecurity risks and concerns.
• Contribute to the regular reporting of metrics, providing valuable insights to management and stakeholders.
• Promote alignment with our organization's security standards and processes, ensuring consistency and adherence throughout the risk management program.
• Stay up to date with industry trends, technological advancements, and regulatory changes in the cybersecurity field. Apply this knowledge to enhance our risk management practices and strategies.
• Provide guidance to stakeholders, assisting them in making well-informed decisions regarding risk management. You will track identified risks, ensuring necessary actions are taken for mitigation or closure.

Requirements:

• Ability to comprehend complex business processes driving technical systems. Prior experience in leading a key line of business will be advantageous.
• A bachelor's degree in Computer Science, Computer Engineering, or Cybersecurity
• Strong knowledge of cybersecurity industry standards, principles, and practices, as well as a solid grasp of risk concepts.
• Capable of translating technical security risks and solutions into business language, ensuring effective communication with partners and stakeholders.
• A bachelor's degree in Computer Software or Computer Engineering is a mandatory requirement.
• Exceptional prioritization and multitasking skills, with the ability to deliver on multiple activities concurrently.
• Proven ability to work effectively with diverse groups and navigate through ambiguous situations.
• Demonstrate a deep understanding of regulatory requirements and the challenges associated with third-party risk management. Previous knowledge of the financial services or insurance industry will be considered an asset.
• Excellent collaboration and communication skills, with the ability to write comprehensive reports and present findings to both internal and external stakeholders.
• Possess 5 to 7 years of extensive experience in the cybersecurity field, with a specific focus on information security risk assessments and/or application security design and architecture.
• Possession of professional designations related to cybersecurity or IT risk (e.g., CISSP, CISA, CISM, CCSP/CCSK, GIAC) is highly preferred.