Elastify

www.elastify.ca

1 Job

24 Employees

About the Company

As your business grows, keeping up with compliance requirements and strengthening your security posture can be a real challenge. Often, the expertise you need goes beyond the capabilities and bandwidth of your in-house team. That's why we built Elastify - an IT security consulting firm that delivers the specialized skills and resources to support businesses of all sizes and industries. Whether you need to maintain security, enhance data protection, achieve compliance, or tackle something in between, we handle the heavy lifting so you can stay focused on your business goals. No more red tape like the large consulting firms. No slow delivery or cookie cutter solutions. Just the right expertise, with the right mindset, exactly when you need it. Headquartered in Toronto with presence across North America, our team is united by our core values and a shared commitment to simplifying the IT experience. We approach engagements with a partnership mindset and consider ourselves a natural extension of your team. We're here to help make compliance and IT security as seamless as possible. From strategic advice to hands-on execution, you get everything you need under one roof. Our flexible, on-demand model gives you access to the right expertise, right at the time you need it. Our specialities include: * Penetration Testing * Data Protection & Privacy * Offensive Security * Governance, Risk & Compliance (GRC) * Audit Readiness -Including SOC 2, HIPAA, GDPR, ISO 27001, CMMC, PIPEDA & Quebec Law 25 * Disaster Recovery & Incident Response Planning * Google Cloud Services * Modern Workplace Transformation * Staff Augmentation for niche IT roles * Microsoft Enablement * vCISO (Virtual CISO)

Listed Jobs

Company Name: Elastify
Job Title: Governance, Risk, Compliance (GRC) & Cybersecurity Consultant
Job Description: **Job Title:** Governance, Risk, Compliance (GRC) & Cybersecurity Consultant **Role Summary:** Designs, implements, and assesses cybersecurity and compliance programs to strengthen client security postures, manage cyber risks, and ensure regulatory alignment. Balances strategic guidance with hands-on execution across governance, risk, and compliance. **Expectations:** Deliver tailored cybersecurity solutions, execute risk assessments, and support compliance initiatives while maintaining operational efficiency. Collaborate with clients and teams to achieve security objectives and regulatory adherence. **Key Responsibilities:** - Develop and implement cybersecurity governance frameworks (e.g., NIST CSF, ISO 27001). - Conduct cybersecurity maturity assessments and create improvement roadmaps. - Execute enterprise and IT risk assessments, threat modeling, and control gap analyses. - Prioritize and address cybersecurity risks across organizational domains. - Prepare clients for external audits/regulatory reviews via readiness assessments and internal audits. - Support evidence collection, control testing, and remediation activities. - Produce actionable reports, presentations, and training for technical and business stakeholders. - Collaborate on risk registers, mitigation plans, and compliance-as-a-Service (CaaS) operations. **Required Skills:** - Cybersecurity principles, threat landscapes, and controls. - Analytical problem-solving and strategic communication. - Project management with tight deadlines and concurrent engagements. - Work independently or in teams with a client-focused approach. **Required Education & Certifications:** - Bachelor’s degree in cybersecurity, information systems, computer science, or related field (or equivalent experience). - 1–3 years in cybersecurity, GRC, IT audit, or risk management consulting. - Proficiency in frameworks (e.g., NIST CSF, CIS Controls, ISO 27001, SOC 2) and compliance standards.