IT Risk & Cybersecurity Analyst

We are

At Synechron, we believe in the power of digital to transform businesses for the better. Our global consulting firm combines creativity and innovative technology to deliver industry-leading digital solutions. Synechron’s progressive technologies and optimization strategies span end-to-end Artificial Intelligence, Consulting, Digital, Cloud & DevOps, Data, and Software Engineering, servicing an array of noteworthy financial services and technology firms. Through research and development initiatives in our FinLabs we develop solutions for modernization, from Artificial Intelligence and Blockchain to Data Science models, Digital Underwriting, mobile-first applications and more. Over the last 20+ years, our company has been honored with multiple employer awards, recognizing our commitment to our talented teams. With top clients to boast about, Synechron has a global workforce of 14,500+, and has 58 offices in 21 countries within key global markets.

Our challenge

We are seeking a skilled IT Risk & Cybersecurity Analyst with a strong background in identifying and mitigating cybersecurity threats. The ideal candidate will possess expertise in risk assessment methodologies, vulnerability management, and incident response. A solid understanding of network security principles, data protection regulations, and security frameworks is essential.

Candidates should have experience with security tools and technologies, including firewalls, intrusion detection systems, and security information and event management (SIEM) solutions. Proficiency in analyzing security incidents, conducting audits, and developing risk management strategies is crucial. Additionally, knowledge of web application security, including common attack vectors and effective protective measures, is vital for safeguarding organizational assets and ensuring compliance with industry standards.

Additional Information

The base salary for this position will vary based on geography and other factors. In accordance with law, the base salary for this role if filled within Toronto, ON is CAD $90k – CAD $100k/year & benefits (see below).

The Role

Responsibilities:

• Partner and build strong relationships with IT/business partners to assist, educate and proactively identify risks associated with IT activities.
• Lead and provide guidance to stakeholders on IT and Cyber Security risk mitigating initiatives with the focus of strengthening control environment.
• Prepare and present management reports summarizing IT and cybersecurity risks based on data and metrics with a business context lens that provide insights to leadership.
• Help application/business teams with proactive issue management including third-party risks.
• Lead and conduct IT Risk assessments, gap & root cause analysis to identify potential weaknesses in controls and recommend appropriate remediation strategies.
• Maintain assigned portfolio risk profiles to provide a strong fact-based opinion on the technology risk profile.
• Provide consultancy on broader themes like logical access mgmt./IAM, data protection, vulnerability mgmt., etc.

Requirements:

• Result driven professional with a minimum of 10 years’ experience in technology risk management/cyber security with a strong focus on mitigation and remediation.
• Strong knowledge of IT Risk management frameworks and methodologies as well as tools and techniques for monitoring and reporting on IT risks.
• Strong understanding of technology infrastructure, cyber security risk and change management processes.
• Very good knowledge of cloud computing and services including SaaS, associated risks and vulnerability management.
• Demonstrated expertise collaborating with IT/Business partners to identify and develop mitigation and remediation plans for new and emerging risks.
• Understanding of Regulatory landscape in the financial services sector.
• Excellent written and oral communication skills to communicate effectively with management.
• Strong problem-solving skills with a results-oriented mindset
• Accredited certification/designation such as CISA/CISSP/CRISC or similar.

We offer:

• A multinational organization with 58 offices in 21 countries and the possibility to work abroad
• 15 days (3 weeks) of paid annual leave plus an additional 10 days of personal leave (floating days and sick days)
• A comprehensive insurance plan including medical, dental, vision, life insurance, and long-term disability
• Flexible hybrid policy
• RRSP with employer’s contribution up to 4%
• A higher education certification policy
• On-demand Udemy for Business for all Synechron employees with free access to more than 5000 curated courses
• Coaching opportunities with experienced colleagues from our Financial Innovation Labs (FinLabs) and Center of Excellences (CoE) groups
• Cutting edge projects at the world’s leading tier-one banks, financial institutions and insurance firms
• A truly diverse, fun-loving and global work culture