Int. GRC Analyst to assess new GRC tools and their capabilities to bring into this team’s environment to help revamp the Information Security group current risk assessment practices for a large Canadian University

Job Type: Contract
Positions to fill: 1
Start Date: Jun 05, 2023
Job End Date: Oct 31, 2023
Pay Rate: Hourly: Negotiable
Job ID: 130346
Location: Toronto
Apply
# of Postions: 1
Location: Toronto 
Duration: 4 Months, strong extension possibility 
Interview: 1-2 rounds
Office: Hybird 2-3 days 
Hours: 7.5

Description
  • We are looking for a GRC Analyst to join one of the top Universities in Canada on a 4 month contract on a hybrid basis (2-3 days a week in office).
  • The successful candidate will join the Information Security business unit and will report into the Information Security Risk Manager.
  • The goal of this project is to assess new GRC tools and their capabilities to bring into this team’s environment to help revamp the Information Security group current risk assessment practices.
  • The candidate will need to define requirements for the tool based on current processes, help identify the best tool for implementation and help in onboarding and setting up the GRC tool.
  • Experience with gathering requirements, conducting gap analysis, reporting and dashboarding is essential to be successful in this group. Additionally, the ideal candidate should have experience working with NIST frameworks such as NIST CSF and NIST 800-53 and have experience conducting risk assessments with these frameworks.
Must haves:
  • 3+ Years Experience as a GRC Analyst
  • 2-3 years experience working with Governance, Risk, and Compliance tools such as ServiceNow GRC, RSA Archer, etc.
  • Experience gathering requirements in relation to GRC tools
  • Experience with vendor selection process (preferably for GRC tools) 
  • Experience with conducting risk assessments
  • Strong understanding of security risk management processes
  • Experience working with NIST frameworks such as NIST CSF and NIST 800-53, and conducting risk assessments with these frameworks
Nice to Have:
  • Agile Project Management experience
  • Previous experience working at a Higher Education Institution
  • Experience with GRC platform (e.g. RSA Archer or similar)
  • Experience implementing a GRC tool
  • Experience with Dashboarding tools like PowerBI and Tableau