Information Risk Management Analyst II

Our client is a top financial institution with significant North American holdings. They have operations across most major verticals, including institutional & corporate, wealth management, private client, commercial banking, treasury, and retail banking.

Introduction: Robertson is seeking a skilled Information Risk Management Analyst II to join our client in support of an existingvacancy.

 
Contract Period: 3 months with potential to extend
Pay Rate: Starting from $51.84 per hour
Location: Toronto, ON
Location Type: Hybrid
Business Hours: Monday to Friday; Core Business Hours


Job Responsibilities: 

This role will support the business and technology teams in complying with organizational and regulatory guidelines and best practices towards enhancing the resilience of critical operations and services. Activities will support the continuity of critical business operations.

The role will also participate in key projects and initiatives ensuring operational and information risk is always considered and managed, and will work with other teams including Information Security, Information Protection and Vendor Risk Management to provide comprehensive Information Risk Management to the company.

• Serve as a Group Functions Technology contact for information and cybersecurity requirements.
• Empower technology teams to identify and manage their information and cybersecurity risks effectively.
• Lead and participate in key projects and initiatives, ensuring that information and cybersecurity risk is consistently considered and handled.
• Support L2 and L3 reviews of risk program practices
  

Experience & Qualification Requirements:

• A bachelor's degree would be an added advantage with 5+ years of relevant experience
• Professional certifications (CISSP, CSSLP, OSCP) or equivalent industry-recognized security certifications
• Financial Services industry experience preferred
• Strong understanding of information security controls, vulnerability management, and risk management frameworks (NIST CSF, ISO 27001/27002)
• Proficiency in security tools such as SIEM, IDS/IPS, endpoint protection, and vulnerability scanning tools
• Knowledge of cybersecurity principles, internal controls, and risk management tools
• Proficiency in data visualization tools (Tableau, Power BI) and statistical data analysis
• Hands on experience with tools such as JIRA, Confluence, and Microsoft 365
• Experience with cybersecurity assessment frameworks (PTES, OWASP, OSSTM) and penetration testing
• Understanding of legal and regulatory requirements related to cybersecurity and IT governance
• Excellent communication skills to effectively convey risk assessments and security recommendations
• Knowledge of ticketing and tracking tools such as ServiceNow - Security Operations, GRC systems like Archer
• Understanding of legal and regulatory requirements related to technology risk management Familiarity with cybersecurity governance frameworks and their implementation
• Knowledge of statistical data analysis and reporting toolsets
• In-depth knowledge of risk assessment methodologies and risk management frameworks
• Proficiency in using risk assessment tools and software

Nice to have:

• Financial services industry experience
• Experience in user education and training
• Years of Experience: 5+ years of relevant experience in information and cybersecurity, or risk management
• Degrees/Certifications Required: Bachelors degree preferred
  

Background screening is required as part of the onboarding process. The type of screening required (criminal, credit, or other verifications) will vary based on the position and client requirements.

We use AI technology as part of our application review process to assist with screening and assessment. All applications are also reviewed by our recruitment team.

How to Apply: If you are a motivated professional looking to contribute to a leading team, please submit your resume outlining your qualifications and experience relevant to this role. Robertson & the clients we represent, value diversity and are committed to creating an inclusive workplace. We invite all qualified individuals to apply.

Robertson & the clients we represent are equal opportunity employers, committed to diversity and inclusion. Robertson is a certified diverse supplier and actively seeks to foster a representative and inclusive workforce. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, Aboriginal status, or any other legally protected factors. We champion building a diverse and inclusive environment.