(Canada) Lead, Cyber Compliance, Policy & Audit Ge

(Canada) Lead, Cyber Compliance, Policy & Audit Ge (Contract)Contract (8 months 6 days)Published 8 days agoComplianceAre you someone who is willing to not only find answers for your questions but brainstorm with others in your team to solve for issues that impact GRC areas across an organization? If the answer is yes, then we are currently looking for a Lead Compliance Generalist to join our Cyber Compliance team as part of the ISRM function in Toronto.You will be a leading member of the Cyber Compliance team who will ensure that the cyber security compliance program and all its moving parts are completed, reported, and tracked. You will lead internal compliance to relevant policies/standards and external compliance to frameworks/regulations that ultimately sustain customer confidence in Thomson Reuters (TR). Additionally, you will provide support to various initiatives across the GRC team including Policy, Audit Automation, and Customer Attestation.About the RoleIn this opportunity as Lead, Cyber Compliance, Policy & Audit Generalist, you will:Give recommendations and actively participate in defining the annual control testing and regulatory assessment scope using TR's control framework.Be a subject matter expert for governance over control testing activities by working collaboratively and providing awareness to stakeholders.Conduct and coordinate readiness assessments against frameworks including ISO 27001, 9001, SOC 1, SOC 2, & HIPAA.Guide team members on finalizing control population, sampling, re-testing, exception reporting, and tracking requirements.Provide technical or compliance advice to teams responsible for programs, software, and information systems security.Contribute to the automation of audit/testing.Lead compliance or security projects/teams to achieve milestones and objectives.Execute projects with minimal guidance.Work independently on multiple initiatives simultaneously.Exhibit a willingness and drive to learn continuously.Approach problem-solving with creativity and diplomacy while being customer-driven.About YouYou are a fit for the role of Lead, Cyber Compliance, Policy & Audit Generalist if your background includes:Bachelor's degree in IT, Accounting, or equivalent education and experience.At least 5+ years of relevant work experience in SoX, ITGC, PCI within Audit or consulting firms.One of the following certifications: CISA, CISSP, CCAK, CISM, CRISC.Strong ethical principles and understanding of business and IS ethics.Working knowledge of common security vulnerabilities of web and cloud applications.Excellent oral and written communication skills in English; additional languages are an asset.Experience working with GRC platforms like ServiceNow, ProcessUnity, RSA Archer, MetricStream.

#J-18808-Ljbffr