Jr. Analyst, Security Governance, Risk - Toronto, Canada - Aecon Group
Description
Build Your Career at Aecon
Aecon is proud to build some of the most impactful infrastructure projects of this generation.
From the roads and transit systems that connect our communities, to the communication networks that link us from coast-to-coast, and the water infrastructure that supplies our businesses and homes.
Our integral work includes constructing the pipelines that join provinces with the energy that fuels the nation, and the airports and ports that connect us all.
Aecon is there, safely and sustainably building the future.At Aecon we:
- Ensure you and your family receive the services needed to
support your mental, emotional, and physical wellbeing: - Believe in helping you build your career through our
Aecon University and Leadership Programs: - Are committed to supporting and investing in inclusive work environments, through initiatives like Equity, Diversity & Inclusion training.
- Are a
leader in sustainable construction. With a strong commitment to operating responsibility by
minimizing our impact on the environment and surrounding communities.
Job Overview:
The Junior Security GRC Analyst will work with stakeholders across the organization to ensure that the company's information security policies, procedures, and controls are aligned with regulatory requirements and industry best practices.
Responsibilities:
- Assist in the development and implementation of the company's information security GRC program
- Assist in conducting risk assessments, vulnerability assessments, and gap analyses to identify security risks and compliance gaps
- Assist in developing policies and procedures related to information security and compliance
- Assist in maintaining and updating the company's security controls library
- Conduct compliance checks and related activities to ensure security controls are in place and working effectively
- Collect SOC2 reports and other supporting documentation from key vendors to ensure ongoing compliance with organizational security standards
- Coordinate quarterly access reviews and ensure appropriate signoffs
- Collaborate with stakeholders across the organization to ensure that information security and compliance requirements are integrated into business processes
- Assist in monitoring and reporting on the effectiveness and compliance of the company's information security program
- Assist in responding to audit requests and regulatory inquiries
- Assist with performing security risk assessments and following up to ensure that identified security requirements have been implemented prior to golive
- Stay current with regulatory requirements and industry best practices related to information security and compliance
Qualifications:
- Bachelor's degree in computer science, information security, or minimum 1 year related work experience
- Relevant certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC) would be an asset
- Understanding of information security and compliance frameworks such as NIST 800 series, ISO 27001/27002, PCI DSS, etc.
- Familiarity with risk assessment methodologies and tools
- Strong analytical and problemsolving skills
- Excellent communication and interpersonal skills
- Ability to work independently and as part of a team
More jobs from Aecon Group
-
Administrator, Project
Sherwood Park, Canada - 4 days ago
-
Locator
Toronto, Canada - 1 week ago
-
Scheduler
Delta, Canada - 2 weeks ago
-
Concrete, Quality Specialist
Oshawa, Canada - 1 week ago
-
Administrator, Project
Sherwood Park, Canada - 6 days ago
-
Stakeholder Administrator
Scarborough, Canada - 1 week ago