Senior Analyst, IT Risk Management and Governance
BFL CANADA: Leader in global risk management and insurance brokerage, providing clients with custom industry-specific coverage solutions.
We offer more than a job, we offer a career!
- We support our employees to shape their career by encouraging continuing education and investing in training and development.
- We put our employees at the center of what we do to allow them to grow personally and professionally, with projects and challenges that are motivating and rewarding.
- We inspire people to do what they are passionate about by believing in integrity, respect and recognition of diversity and community support.
- We are a dynamic team where entrepreneurship, innovation and collaboration are at the core of our values.
- We offer competitive salaries and a multitude of benefits starting day one including generous medical and dental coverage, telemedicine, employee and family assistance program, and retirement and savings programs.
- We recognize the importance of work-life balance with our hybrid work program, wellness allowance, and year-round social activities and events.
This is a HYBRID role with 3 days in office requirement.
We are looking for an IT Risk Management Governance Senior Analyst to join our team in our Toronto office!
As an IT Risk Management Governance Senior Analyst, you will be responsible for ensuring effective, comprehensive, and seamless operations of the approved IT risk management governance framework aligned to industry best practices and standards. The role is aimed to address risks in cybersecurity and IT governance and operations and provide an effective framework for identifying, assessing, monitoring, and managing cybersecurity and IT risks, including, and not limited to third party IT risks and user cyber training and awareness risks.
Your day as an IT Risk Management Governance Senior Analyst
- Support the approved IT Risk Management program within our company.
- Enable operationalization of the cybersecurity governance framework, including controls, requirements, artefacts, processes, forums, and channels suitable to the operating environment and aligned to the suitable industry leading practices in cybersecurity (e.g. ISO, NIST, SOC, CIS, CMMC, Bill 64, etc.).
- Develop cybersecurity governance requirements, control, processes and artefacts aligned to industry best practices as suitable for the operating environment.
- Act as the main custodian and key subject matter expert for the full repository of governance tools and artefacts to ensure accuracy, currency, timely reviews, relevance and suitability to BFL IT landscape.
- Act as the main custodian and key subject matter expert for the GRC automation platform.
- Support the approved Third-Party IT Risk Management Framework within our company.
- Conduct assessments of cybersecurity and IT risks of the IT environment and our third parties.
- Develop and support IT Risk Heat Map reviews and maintain our IT Risk Register and for our third party’s portfolio.
- Monitor our IT risk posture indicators, alerting appropriate internal stakeholders on emerging risks and trends.
- Review, in partnership with Legal and Compliance, external contracts to identify and notify the IT leadership of potential IT risks to operations, data, systems or clients.
- Develop, operationalize, provide and continuously enhance constructive regular reporting on Cybersecurity and IT risk posture.
- 3-5 years of progressive responsibility in roles focused on cybersecurity and IT risk management.
- Bachelor’s Degree in Computer Science, Business or Risk Management.
- Certifications – one of the following: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Enterprise Risk Professional (CERP).
Who we are
Founded in 1987 by Barry F. Lorenzetti, BFL CANADA is one of the largest employee-owned and operated Risk Management, Insurance Brokerage, and Employee Benefits consulting services firms in North America.
We welcome and encourage applications from people with diverse abilities. BFL Canada is committed to fostering an environment that is diverse, equitable, inclusive, and accessible to all.
Offers of employment at BFL CANADA are conditional upon satisfactory results of background verifications.