US
0 suggestions are available, use up and down arrow to navigate them
PROCESSING APPLICATION
Hold tight! We’re comparing your resume to the job requirements…
ARE YOU SURE YOU WANT TO APPLY TO THIS JOB?
Based on your Resume, it doesn't look like you meet the requirements from the employer. You can still apply if you think you’re a fit.
Job Requirements of Senior Compliance Analyst (Tech):
-
Employment Type:
Contractor
-
Location:
Mississauga, Ontario (Onsite)
Do you meet the requirements for this job?
Senior Compliance Analyst (Tech)
Careers Integrated Resources Inc
Mississauga, Ontario (Onsite)
Contractor
Job Title: Senior Compliance Analyst (Tech)
Location: Mississauga, ON
Contract: 12+ Months with possibility of extension
Who We Are:
The Opportunity:
Who You Are:
Required Experience:
Core Competencies:
Compliance Tech Role Requirements:
Technical Skillsets:
Expanded Support:
Certifications Framework Support:
Documentation & Training:
Location: Mississauga, ON
Contract: 12+ Months with possibility of extension
Who We Are:
- At Client, we are passionate about transforming patients’ lives and fearless in both decision and action—we believe that good business means a better world.
- We commit to scientific rigor, unassailable ethics, and access to medical innovations for all.
- Data security and privacy are key success factors in our digital transformation and essential to achieving our goals.
- You are inspired to contribute to the Client vision by applying end-to-end product security and privacy operations, ensuring compliance throughout the product lifecycle.
The Opportunity:
- As a member of the Compliance Product Team, you will support the Digital Products domain with state-of-the-art security and privacy concepts.
- Oversee or consult on technical architecture implementation activities, particularly for new and/or shared solutions.
- Coordinate compliance activities at a global/regional level.
- Help interpret laws and regulations (e.g., GDPR, HIPAA, HITRUST) for engineers and cross-functional teams.
- Support audit-related tasks (internal and external) and compliance controls (ISO 27001, 27017, 27018).
- Coordinate Pen Testing, Disaster Recovery, record outcomes in tools like Jira, and manage remediation efforts.
- Define and implement security and privacy risk management governance.
- Draft and update compliance policies and procedures.
- Deliver communication and training materials.
- Leverage expertise in cloud security, data privacy, AWS architecture, and services.
- Conduct risk assessments and identify business/product risks.
Who You Are:
- University degree in computer science, engineering, law, business, or related field (or equivalent experience).
- Fluent in English (verbal and written); other languages are a plus.
- Minimum 5+ years’ experience in Information Security, Privacy & Risk Management, or Audit.
- Experience working in a multicultural environment.
Required Experience:
- Security/privacy audits.
- Cloud environments.
- Business process definition and IT aptitude.
- System hardening, vulnerability management.
- Familiarity with frameworks: COBIT, NIST, ISO, HIPAA, GDPR.
- Knowledge of AWS and Cloud Security preferred.
- Clinical or healthcare software experience is a plus.
- Certifications such as CISA, CISM, CRISC, CISSP preferred.
Core Competencies:
- Strong business acumen and a proactive, results-oriented mindset.
- Organizational and project management skills.
- Effective cross-functional engagement.
- Ability to explain technical concepts clearly and concisely.
- Excellent interpersonal and cross-cultural communication.
- Team-oriented and change-driven.
Compliance Tech Role Requirements:
-
Must Have:
- GRC tooling experience.
- Audit background.
- Information security-related certification.
Technical Skillsets:
-
GRC Platform Expertise:
- Deep knowledge of ServiceNow GRC/IRM, RSA Archer.
- Configuration, scripting (e.g., JavaScript), workflows, data modeling.
- API integration and custom module development.
- Reporting tools (e.g., Power BI).
- Role-based access and audit trails.
-
Domain & Functional Expertise:
- ISO 31000, NIST RMF, FAIR.
- ISO 27001, SOC 2, PCI-DSS, HIPAA, GDPR, FedRAMP.
- Policy and control lifecycle management.
- Internal/external audit handling.
- Vendor risk management.
-
Strategic & Cross-Functional Competencies:
- Collaboration across InfoSec, Legal, Privacy, Risk, Audit.
- GRC process design aligned with risk strategy.
- Agile/Waterfall project delivery.
- Change management and user training.
- Translating business needs into technical solutions.
Expanded Support:
- Provide tailored support to additional teams and expanded product areas (e.g., China certification, navify Platform).
- Extend Privacy Information Management Systems coverage.
Certifications Framework Support:
- Facilitate FedRAMP (U.S.) and C5 (Germany) certification implementation.
- Guide compliance requirements and ensure success.
Documentation & Training:
- Develop clear and comprehensive compliance documentation.
- Align policies and controls with regulatory frameworks (e.g., GDPR, HIPAA, ISO, FedRAMP, C5).
- Train and enable teams on compliance best practices.
Get job alerts by email.
Sign up now!
Join Our Talent Network!