Cybersecurity Specialist Grc - Québec, Canada - American Iron and Metal

American Iron and Metal

Verified Company

Québec, Canada

1 week ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Company Description

Become a part of AIM's growing success.

American Iron & Metal (AIM) is a recognized global leader in the metal recycling industry, with more than 125 site locations and 3500 employees worldwide.

We have continued to prosper for the last eight decades (we just celebrated our 86th birthday) thanks to the dedication of our employees and the ongoing trust and support of our customers.

Become part of team AIM, a growing team who has over the years, successfully evolved into a multifaceted company with business divisions that include metal recycling (AIM Recycling), construction waste recycling (AIM Eco-Centre), manufacturing of solder assemblies (AIM Solder), demolition and decommissioning (AIM Delsan) and auto-recycling (Kenny U-Pull).

We take pride in doing good things for the environment to help create a greener, more sustainable future for all.

It's simple; we do it right. We AIM for excellence.

What we offer

Competitive salary + other perks
Group insurance & RRSP program
Companywide events throughout the year (BBQ, Holiday party etc.)
Free gym on site
Two cafeterias on site (subsidized meal program available)
Dynamic & rewarding work environment

- work on high-impact, meaningful projects while also having fun

Job Description:

Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances AIM business objectives.
Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves AIM's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
Defines and documents business process responsibilities and ownership of the controls in GRC tool. Schedules regular assessments and testing of effectiveness and efficiency of controls and creates GRC reports.
Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting Personally Identifying Information (PII) data.
Assure compliance with Law 25, NIST and CIS framework.
Assists other staff in the management and oversight of security program functions.
Work independently and prioritize multiple tasks and adapt to needed changes.
Remain calm under high pressure/difficult situations.

Qualifications:

Associate degree in Computer Information Systems or related discipline.
Four Years of applied work experience in cyber security programs, audits, assessments, risk, remediation, or cyber security compliance management.
Applicable information security management, governance, and compliance principles, practices, laws, rules and regulations;
Knowledgeable on NIST, CIS and ISO frameworks.
Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols;
Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration;
Information systems auditing, monitoring, controlling, and assessment process;
Incident response management;
Risk assessment and management methodology.
Developing and implementing enterprise governance, risk, and compliance strategy and solutions;
Effectively communicate technical issues to diverse audiences, both in writing and verbally;
Work independently and prioritize multiple tasks and adapt to needed changes;
Remain calm under high pressure/difficult situations.

Additional Information

American Iron & Metal and its subsidiaries is an equal opportunity employer.

All qualified applicants are given consideration regardless of race, religion, colour, gender, sex, age, sexual orientation, gender identity, national origin, marital status, citizenship status, disability, veteran status, or any other protected class as provided in applicable employment laws.

Although we'd love to be able to speak with everyone that applies, due to the volume of applicants we receive and time constraints, only those selected to move forward will be contacted.