We are assisting our non-for-profit client in Ottawa with the search for a Cyber Security Governance, Risk, and Compliance (GRC) Officer who will join their team on a full time basis.
This is a 1-year term position with strong chance of converting to permanent role at the end of the term.
Role Overview:
As a Cyber Security Governance, Risk, and Compliance (GRC) Officer, you will play a critical role in protecting the organization’s information systems. Your responsibilities will include conducting technical control reviews, ensuring compliance with industry standards (ISO, NIST), and maintaining a strong cybersecurity posture. This role involves performing risk assessments, advising on best practices, and ensuring policies align with regulatory frameworks. You’ll also help create and update information security policies and contribute to security awareness programs.
Salary: $90,000 - $118,000 CAD per year
Location: Ottawa, Ontario (primarily remote but must be able to occasionally work in-office)
Start Date: As soon as possible
What's in it for you:
- Comprehensive Health Benefits: Drug coverage, dental, vision, life insurance, and more.
- Excellent Work-Life Balance: Paid vacation, family leave, personal days.
- Retirement Planning: Group savings plans.
- Learning and Development: Tuition assistance, professional memberships, language training.
- Perks: Various other Discounts through Memberships program.
Key Responsibilities:
- Develop, implement, and monitor cybersecurity policies and procedures.
- Ensure compliance with applicable laws, regulations, and internal policies.
- Provide guidance on cybersecurity and compliance matters.
- Lead investigations into potential security and compliance issues (PCI).
- Perform risk assessments and software security reviews.
- Write and maintain security policies, standards, and technical documentation.
- Advise on business risks and recommend appropriate security measures.
- Update and maintain the organization's risk register.
Qualifications
- 5+ years of relevant work experience
- College diploma or certificate in Computer Science, Computer Systems Engineering, or related field.
- CISSP, CISA, or equivalent certification (an asset).
- Experience in cybersecurity, compliance monitoring, and risk management.
- Strong understanding of cybersecurity frameworks (ISO, NIST).
Other Information
- Flexible work options may be available (remote/hybrid), though occasional onsite presence may be required.
- Must be eligible for Canadian Reliability Clearance Level 1
