Senior Compliance and Risk Specialist

Internal Job Title: Senior Compliance and Risk Specialist
Job Type: Permanent Full-Time
Job Location: Canada U.S.A.
Work Model: Remote

Position Summary

As a Senior Compliance and Risk Specialist at CBN you will be responsible for leading compliance initiatives conducting risk assessment and remediation activities and developing security strategies for CBN systems deployed in Canada the United States and Europe.

Responsibilities

• Compliance Initiatives
  • Lead current ISO 27001 SOC 2 and PCI compliance initiatives for systems in Canada US and Europe.
  • Examine existing initiatives and engage business stakeholders and customers to establish a strategy for handling compliance-at-scale for both compliance-focused and cost-sensitive markets.
• Security Strategy
  • Spearhead initiatives to identify investigate and improve security risks within CBN Operations Global Infrastructure.
  • Design and deliver security strategies produce architectural models detailed assessments and present reports to meet Canada/US and global security requirements.
  • Research and deliver tooling and strategies for CBNs AppSec program to address risk assessments in an automated fashion at scale.
• Risk Assessment and Remediation
  • Conduct Risk Assessments within customer systems to quickly assess associated risks recommend actions and develop plans for remediation.
  • Understand the risk/compliance gaps in our global systems articulate a vision and work across teams to get us there.
• Stakeholder Engagement
  • Take an active role in educating customers executives stakeholders infrastructure personnel and developers on best practices for security.
  • Build relationships with stakeholders across groups to understand assessment needs advise on how it should be handled and the associated notification process.
• Various other Duties and Responsibilities.

Qualifications :

Knowledge and Experience

• Education
  • Bachelors degree in Computer Science Information Technology or related field or an equivalent combination of relevant education and additional work experience
• Certification(s)
  • One (or more) of NIST800-53 ISO27001 SOC2 (Type I and II) FedRamp StateRamp
  • SANA ISACA or GIAC is an asset
• Knowledge
  • Compliance standards frameworks and tools
  • Threat and risk management principles and methodologies
  • Risk assessment practices and methodologies
• Experience
  • 8 years of direct experience in a compliance auditing and/or risk position
  • 3 years of experience developing/delivering compliance assessments
  • Experience using structured approaches to risk assessment (e.g. HTRA TRA ITSG-33 CSF FSIR STAR)
  • Experience using Unified Compliance Frameworks and GRC tools
  • Experience with Azure/AWS compliance is an asset

Technical Skills

• Proficiency with MS 365 Copilot
• Presentation skills

Soft Skills and Competencies

• Critical thinking skills
  • Analysis problem solving
• Interpersonal skills
  • Communication relationship building teamwork and collaboration
• Organization/time management/prioritization skills
• Adaptable
• Growth mindset

Mandatory Requirements

• Language(s): Fluency in English (reading writing speaking)
• Travel: Ability to travel domestically and/or internationally (passport required) approx. 1-2 weeks/year

Additional Information :

Canadian Bank Note Company (CBN) is committed to fostering a diverse and inclusive workplace where all employees are treated with dignity and respect. We are proud to be an equal opportunity employer and do not discriminate on the basis of race color religion sex national origin age disability veteran status sexual orientation gender identity or any other legally protected status.

We provide equal employment opportunities to all individuals including women Indigenous Peoples persons with disabilities visible minorities and members of the 2SLGBTQ community. Our commitment to equity extends to all aspects of employment including recruitment hiring promotion compensation benefits training and development. As part of our commitment to providing an inclusive barrier free selection process we ask that if you are contacted regarding the competition for this position you advise the interview coordinator or any accommodation measures you may require.

At CBN we value the unique perspectives and experiences that each employee brings to our organization and we are committed to maintaining a workplace that reflects the diverse communities we serve. We believe that diversity and inclusion drive innovation and success and we strive to create an environment where every employee can thrive and contribute to our collective goals.

Remote Work :

Yes

Employment Type :

Full-time