Primary Job Title:
Security Specialist
Alternate/Related Job Titles:
Information Security Specialist
Database Security Analyst
Cybersecurity Governance Analyst
Location:
Toronto, ON
Onsite Flexibility:
Hybrid — 2 days onsite (increasing to 4 days onsite TBD in 2026)
Anchor Day: Thursday
Contract Details:
Job Summary:
The Security Specialist will support enterprise information security controls with a focus on database security governance, risk assessment, and adherence to organizational security standards. This role involves reviewing control exceptions, collaborating with stakeholders, and ensuring compliance across multiple database platforms while contributing to a strong, risk-aware culture.
Key Responsibilities:
Oversee, monitor, and enforce enterprise technology control and information security frameworks.
Participate in cross-functional initiatives to identify risks and offer security guidance.
Review internal processes and recommend opportunities for improved operational efficiency.
Identify productivity enhancements and streamline existing procedures.
Write and maintain TSS/STIG standard documents.
Educate stakeholders to promote a risk-aware culture.
Influence behavior changes and build consensus across teams.
Support predefined database security control exceptions (e.g., service account permissions).
Review and validate database security exception requests for compliance.
Work with clients to ensure adherence to organizational security standards.
Stay informed on emerging trends, tools, and industry developments.
Required Experience:
10+ years of experience in information technology (preferably financial services or consulting).
Strong knowledge of database platforms: Microsoft SQL Server, Azure PaaS DBs, Oracle; plus familiarity with MongoDB, PostgreSQL, DB2, MySQL (not all required).
Experience with database security administration or governance.
Experience with NIST, configuration drift, vulnerability management, and Qualys.
Experience creating process controls and documentation.
Experience partnering with business teams to ensure remediation plan follow-through.
Ability to work independently with minimal supervision under Database Security Governance PO.
Strong research, analytical, and problem-solving abilities.
Nice-to-Have Experience:
Experience in large infrastructure environments.
Experience working BAU on database governance/security.
Strong communication skills with ability to meet deadlines and deliverables.
Ability to influence decisions and drive behavioral change.
Required Skills:
Database Security Governance
NIST / Vulnerability Management
SQL Server / Azure PaaS / Oracle (multi-platform experience)
Preferred Skills:
Qualys
Process Control Documentation
Stakeholder Education & Communication
Security Standards Review
Risk Identification & Mitigation
Additional Skills:
Ability to handle security exception requests
Knowledge of encryption (data at-rest / in-transit)
Ability to write STIG/TSS documentation
Ability to influence cross-functional teams
Emerging technologies awareness
About the Client:
A top-10 bank in Canada and North America offering comprehensive financial services across retail, commercial, wealth management, and wholesale banking. The organization is committed to helping clients thrive and maintaining strong, ethical business practices.
About GTT:
GTT is a minority-owned staffing firm and a subsidiary of Chenega Corporation, a Native American-owned company in Alaska. As a Native American-owned, economically disadvantaged corporation, we highly value diverse and inclusive workplaces. Our clients are Fortune 500 banking, insurance, financial services, and technology companies, along with some of the nation’s largest life sciences, biotech, utility, and retail companies across the US and Canada. We look forward to helping you land your next great career opportunity!
Job Number: 25-28604
#LI-GTT #gttca #LI-Hybrid #gttjobs
