Information Security Specialist
- Location: Toronto, ON—Hybrid
- Contract Length: 6-12 Months
We at Raise are hiring an Information Security Specialist for one of our top clients. After establishing themselves as an industry leader, they’re now expanding their team to meet rising demand. We’re hiring right now; if you’re interested, apply below for your chance to join a great place to work.
Responsibilities:
- Lead all regulatory and internal audit compliance activities for the VRO, including exam coordination, management responses, and remediation action tracking
- Own the relationship with risk partners: ORM, Internal Audit, Regulatory/RACA, and 1B teams
- Compose and review management responses to audit findings, self-declared findings, and first-line control exceptions
- Conduct and lead risk and control design assessments; document control gaps, business impact, and remediation strategies
- Define, develop, and oversee KPI/KRI frameworks for patching compliance reporting to senior leadership
- Serve as primary SME for I&E Technology Controls/Information Security policies and patching standards
- Maintain institutional knowledge of prior regulatory responses; build a reusable response repository
- Drive corrective action plans for patching teams not meeting the patching standard.
- Support development of a global security management strategy and oversight framework
REQUIRED QUALIFICATIONS
- 7+ years in IT security, risk, or technology controls — banking or regulated financial services preferred
- Active certification required: CRISC, CISM, CISA, or CISSP
- Demonstrated experience leading regulatory exams and composing management responses
- Expert-level knowledge of audit and regulatory review processes (ORM, Internal Audit, Regulators)
- Experience developing and managing KPIs/KRIs in a technology governance context
- Hands-on familiarity with GRC platforms and document management tools (Confluence, SharePoint, JIRA)
- Strong executive communication skills—this role presents to VPs and CIOs
- Experience with patch management governance or infrastructure controls is a strong asset
Looking for meaningful work? We can help!
Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.
We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.
We have a dedicated webpage for accommodations where you can learn more about what we offer and request accommodation: https://raise.jobs/accommodations/
In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 or hello@raiserecruiting.com