Security Advisor, Risk and Audit

  • Full-time
  • Type d'emploi / Employment type: Temps plein permanent / Full time permanent

Company Description

Our specialty is to optimize! And we are proud of our expertise. We use our collective intelligence to impact people's lives by improving the efficiency of urban mobility.

Our innovative software solutions and expert services in the areas of public transit and postal operations are recognized around the world.

Job Description

Reporting directly to the Director of Security (CSO), your duties are as follows:

  • Carry out security threat and risk assessments (STRA) for the IT, software development, project management, and corporate services teams
  • Update the security risk register and follow up on mitigation measures
  • Participate in defining the security internal control framework
  • Keep track of internal security audits for the SOC 2 and ISO 27001 certifications
  • Contribute to writing procedures, manuals, and other security documentation
  • Assist the Director of Security (CSO) in supporting the teams for implementing security controls
  • Collaborate closely with the operational security team to ensure that security requirements are met
  • Support the legal services team by validating security requirements in service proposals

Qualifications

  • University degree or relevant technical certification
  • CISA, CRISC, CISSP, or equivalent certification
  • More than 5 years of experience as an expert in security risk analysis and compliance
  • Experience in the software-development industry, an asset
  • Very good knowledge of security standards such as the ISO 27001 series, SOC 2 and CSA STAR
  • Good knowledge of recognized methodologies for assessing risks and threats
  • Good knowledge of GRC tools (Archer, ServiceNow, or others)
  • Skills for analysis and problem solving
  • Sense of initiative and autonomy
  • Interest in collaboration and teamwork
  • Be thorough, curious and listening to the organization’s needs
  • Ability to write documentation in both French and English

Additional Information

At GIRO, you will be integrated quicky and called upon to make a concrete contribution! The well-being and satisfaction of our employees is a value that we hold dear. Therefore, we offer a range of benefits, including:

  • Flexible work schedule, including telecommuting
  • A warm welcome and a progressive learning program
  • Many recognition and team-building activities, including team breakfast, yoga or aerobic classes, Christmas party, sports activities, etc.
  • A GIRO Day, where employees are encouraged to take part in outdoor activities
  • A basic group insurance plan with premiums paid 100% by GIRO
  • A health and physical-activity account of $600.00 per year
  • Reimbursement of OPUS card or parking space
  • Paid days off between Christmas and New Year’s Day.

Want to know more about this amazing opportunity? Submit your application!

Looking forward to meeting you!

Privacy Policy