Information Security Compliance Officer Jobs in Ontario

Proven experience in security compliance, risk management, and personnel management within a corporate or organizational setting.

Experience in managing and coordinating security personnel, including training, scheduling, and performance management.

Maintain records and documentation related to security compliance activities, personnel management, incident reports, and audit findings.

Familiarity with security controls, vulnerability management, incident response, and security awareness programs.

Conduct regular security risk assessments to identify potential threats and vulnerabilities across the organization's infrastructure, systems, processes, and physical premises.

Manage security vendor relationships, including contract negotiation, performance monitoring, and compliance oversight, as applicable.

Proven experience in relationship and stakeholder management.

Assesses security infrastructure, cloud environments, including access management, firewall protection, and vulnerability assessment and testing and makes recommendations for improvement.

Provides reports to executive management and other stakeholders on IT and security matters,

Coaches and develops team members on risk management.

Post-secondary education in IT or a suitable combination of education and experience.

Exposure with various security tools and methodologies, including network security, vulnerability management, vulnerability & penetration assessments, anti-malware, and endpoint security management.

Proven experience in planning, organizing, and developing IT security and facility security system technologies.

Experience in planning and executing security policies and standards development.

Excellent business and technological acumen, leadership style, and organizational skills suited to an environment where multiple projects are run concurrently.

Excellent communications and interpersonal skills.

Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements.

University degree or college diploma in Computer Science, Computer Engineering, or a related IT discipline.

• Strong leadership, negotiation, and conflict management skills

• Maintain organizations Security Risk Register for effective risk management and operational compliance functions.

• Manage the Security organization, hiring, managing and staffing requirements in line with project objectives

o Security Incident and Event Management (SIEM)

o Privileged Access Management (PAM)

CERTIFICATIONS, LICENSES, REGISTRATIONS, SPECIAL SKILLS

Technical understanding of Identity and Access Management, Endpoint Security, Network Security, and Vulnerability Management.

Develops an understanding of client requirements and uses a logical thought process to develop cutting-edge solutions.

CISA, CISM, CRISC or equivalent certification preferred

Working knowledge of SOC and HIPPA objectives and deliverables

Experience evaluating and defining privacy controls within software applications with respect to GDPR, CCPA, and other emerging state regulations

Requires solid knowledge of laws and regulations relating to information security within both the Banking and Healthcare industries.