Cyber Security Specialist

US Tech Solutions • Contract • Toronto, ON, CA • C$ 85 - C$ 95 / hour • 1d ago

Work Model: Hybrid – 2 days onsite

About the role:

The Technology & Cyber Issues Reporting and Insights Lead will support a major uplift of reporting capabilities within GRC teams, delivering high‑visibility, executive‑level insights across technology and cybersecurity issue portfolios.

This role owns reporting intelligence, governance‑ready narratives, and analysis of systemic control gaps across the Three Lines of Defense.

This is a highly collaborative position, offering long‑term opportunities to grow, engage with senior leadership, and influence enterprise risk transparency.

Responsibilities

Must Have Responsibilities:

Produce recurring portfolio reporting for Technology Risk Committees, Cyber Governance forums, Operational Risk Committees, and senior leadership.

Build executive‑grade reporting packs, dashboards, and trend analyses on:

issue aging & severity

SLA breaches & overdue CAPs

systemic issues, repeat audit findings, root cause themes

Normalize reporting across 1LoD, 2LoD, and 3LoD ensuring consistent taxonomy, materiality thresholds, and risk language.

Conduct deep‑dive analyses to uncover systemic control gaps, recurring failures, and concentration risks across domains (IAM, VM, SOC, Cloud, AppSec, Data Protection).

Develop executive narratives: storylines, root causes, risk impact, decisions, and talking points for CISO/CIO/CRO.

Own reporting data quality controls, reconciliations, evidence, definitions, and documentation for audit/regulatory defensibility.

Drive continuous improvement through visual enhancements, reporting templates, and automation enablement within Archer/ServiceNow IRM.

Deliver monthly/quarterly issues portfolio packs, dashboards, systemic issue reports, committee briefs, and decision logs.

Experience

8+ years in cyber/technology risk, issues management, cyber GRC, audit, or enterprise operational risk.

Proven experience producing leadership & committee‑level reporting on issue health, audit outcomes, control performance, and remediation execution.

Strong understanding of the issues management lifecycle, CAP governance, severity rating frameworks, and risk/control relationships.

Experience in regulated environments (banking/financial services) strongly preferred.

Skillsets

Hard Skills

Advanced Excel; strong BI tool proficiency (Power BI/Tableau – consumption & formatting).

Experience with GRC platforms (Archer, ServiceNow IRM/GRC, MetricStream).

Ability to identify systemic risks, recurring control gaps, and develop thematic insights.

Strong command of risk language, materiality, and defensible reporting.

Soft Skills

Exceptional written communication and executive storytelling.

Ability to challenge and influence senior stakeholders with strong presence.

High attention to detail, accuracy, and reporting integrity.

Strong process governance and on‑time delivery discipline.

Nice to Have

3LoD operating model experience (FS/Insurance/Healthcare).

Familiarity with frameworks (NIST 800‑53, NIST CSF, ISO 27001, COBIT).

Certifications: CRISC, CISA, CISSP, CISM.

Education

Post‑secondary education preferred, but relevant experience is prioritized.

About US Tech Solutions:

US Tech Solutions is a global staff augmentation firm providing a wide range of talent on‑demand and total workforce solutions. To know more about US Tech Solutions, please visit www.ustechsolutions.com.

US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.