Job Specifications
Our client is a top financial institution with significant North American holdings. They have operations across most major verticals, including institutional & corporate, wealth management, private client, commercial banking, treasury, and retail banking.
Introduction: Robertson is seeking a skilled Senior Compliance Officer to join our clientin support of future vacancy.
Contract Period: 12 months
Pay Rate: Starting from $50 per hour
Location: Ottawa, ON
Location Type: Hybrid; 3 days per week in the office
Business Hours: Monday-Friday; 9:00 AM – 5:00 PM
Job Responsibilities:
Cybersecurity Compliance Programs:
Serve as the point of contact for managing all compliance and audit activities related to assigned Cloud Services, acting as a trusted partner to the assigned Cloud Services
Lead interactions with both internal and external auditors (including external regulatory bodies, internal auditors, and third-party auditors), ensuring efficient and effective audit processes
Support the development, implementation, and maintenance of compliance programs to meet the organization's strategic objectives and regional regulatory requirements.
Audit Strategy and Execution:
Lead the preparation and execution of internal and external audits across assigned Cloud Service, ensuring compliance with established corporate policies/standards, industry standards, and regulatory requirements
Develop and implement audit strategies for the assigned Cloud Services, ensure audits are proactive, risk-based, and aligned with business priorities, while ensuring a continuous improvement approach
Advanced Compliance and Risk Management:
Lead and enhance the risk management and improve controls for assigned Cloud Services, ensuring compliance with both internal policies and external regulatory requirements
Support and improve the Cloud Services Change Management, Business Continuity Plan (BCP), and Disaster Recovery (DR) related controls to ensure compliance with corporation policies/standards and business continuity regulations and best practices
Maintain and update key governance, risk management and compliance documentation, including ISMS 27001, ISO 27017/18 mandatory documents, ensuring alignment with corporate policy and evolving industry standards
Policy Development and Process Improvement:
Support the develop, review, and implement cybersecurity compliance policies, standards and procedures to ensure continuous improvement of internal controls, audit readiness, and risk mitigation
Recommend and drive the implementation of cybersecurity policies and standards aimed at improving Cloud Services’ compliance posture, ensuring policies are aligned with business objectives and regulatory expectations
Regularly assess and refine compliance workflows to optimize efficiency and alignment with evolving compliance frameworks
Global Compliance Management:
Partner with cross-functional teams in analysing cybersecurity compliance requirements cross functions, ensuring adherence to local and international regulations (e.g., GDPR, CCPA, etc.)
Support the development of global compliance strategies, ensuring supported Cloud Services units are aware of evolving global cybersecurity and privacy laws and that cross-border data transfers are compliant with corporate policies and standards
Support and Advisory for Cloud Services Units:
Provide cybersecurity compliance guidance and support to sales, presales, product management, and other business units on cybersecurity compliance-related matters, including RFPs, RFIs, security & compliance questionnaires, and client security inquiries
Be the primary advisor to assigned Cloud Services on complex compliance and security topics, providing recommendations for risk mitigation, process improvements, and regulatory adherence
Customer and Stakeholder Engagement:
Engage directly with key customers to address complex compliance and security questions, and to support ongoing trust-building initiatives
Ensure the communication of compliance requirements and audit results to relevant stakeholders, including customers, partners, and regulators
Continuous Monitoring and Reporting:
Oversee the ongoing monitoring of compliance programs to ensure that they remain effective and aligned with the organization’s security goals and business objectives
Develop and provide regular compliance reports to senior management, highlighting audit results, risk areas, and the status of corrective actions
Experience & Qualification Requirement:
7-10 years of experience in cybersecurity compliance, risk management, or information security
Experience in cloud computing or SaaS environments is highly preferred
Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or similar certifications are strongly preferred
Expertise in Standards & Frameworks
Strong knowledge and practical experience with ISO 27001, SOC 2, PCI DSS, and other relevan
About the Company
Robertson & Company Ltd. is a leading professional services firm providing recruitment-related, advisory and consulting services to corporations, professional organizations, governments, and public & private institutions.
RELATIONSHIP VERSUS TRANSACTION
Success in the recruitment services industry depends on deep relationships built on trust and performance. Our focus is never simply on the transaction at hand but on what is best for our client, both today and in the long run. We consider this unique approach and perspecti...
Know more