IT Governance and Compliance Analyst

Toronto - Canada

Monthly Salary: Not Disclosed

Posted on: 2 days ago

Vacancies: 1 Vacancy

Job Summary

You are as unique as your background experience and point of view. Here youll be encouraged empowered and challenged to be your best self. Youll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day youll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals families and communities around the world.

Job Description:

Join Sun Lifes Chief Technology Office (CTO) Governance and Compliance team and help strengthen how we manage technology risk and this role you will maintain our global controls framework in ServiceNow IRM (GRC) support audit and assessment readiness and partner with infrastructure and cloud teams across networks servers storage call centre workstations and database platforms.

Our teams role is to:

Provide GRC subject-matter expertise guidance and advisory support to CTO stakeholders
Translate enterprise regulatory and security obligations into clear actionable requirements
Maintain the CTO governance and compliance control framework in ServiceNow IRM (GRC)
Facilitate CTO assurance activities (audits assessments certifications)
Provide visibility into CTOs compliance posture risks and systemic gaps

What you will focus on:

Global Compliance Framework

Build and maintain a global controls library in ServiceNow IRM (GRC) including creating updating and mapping controls to internal requirements and external frameworks
Keep controls current as requirements change by maintaining control language attributes ownership applicability and related indicators
Produce ServiceNow IRM reporting on control coverage and health (e.g. mapping coverage testing progress overdue actions evidence freshness exceptions audit readiness) and dashboards providing a holistic view of compliance issues

Governance Risk and Compliance Enablement

Partner with operational teams to apply governance risk and compliance requirements (e.g. business continuity data privacy records management and security compliance)
Interpret regulatory policy audit and certification requirements and help teams embed expectations into day-to-day operations
Identify risks gaps and control weaknesses; enable timely remediation and informed risk decisions

Audit and Assessment Support

Coordinate CTO participation in internal audits and external assessments (e.g. SOC 2 ISO 27001/17 HITRUST NIST 2.0/CSA CCM)
Guide operational teams to deliver required activities evidence and responses that are complete accurate and on time
Track findings action plans and commitments; escalate risks issues and delays as needed

What you need to succeed

3 years of experience in GRC IT risk IT controls audit or compliance (technology environment preferred)
Hands-on experience in ServiceNow IRM (GRC) maintaining controls indicators and control-to-framework mappings
Experience mapping controls to common frameworks (e.g. ISO 27001/17 SOC 2 NIST CSA CCM HITRUST)
Experience producing metrics and reports from ServiceNow/Excel and defining audit-ready evidence expectations for controls
Audit/assessment support experience (evidence coordination issue tracking remediation follow-up)
Familiarity with infrastructure and cloud services (networks servers storage cloud platforms)
Strong communication skills and stakeholder management across technical teams and leaders

Whats in it for you:

Were honoured to be recognized as a 2025 Best Workplaces in Ontario by Great Place to Work Canada.
We are thrilled to be recognized by Excellence Canada with their top-level certification the Canada Order of Excellence for Mental Health at Work for prioritizing employee well-being fostering a positive work culture and achieving excellence in mental health.
Wellness programs that support the three pillars of your health mental physical and financial
The opportunity to move along a variety of career paths with amazing networking potential.
As a hybrid organization you and your leader use business and Client needs to choose where you work at home or in the office

The Base Pay range is for the primary location for which the job is posted. It may vary depending on the work location of the successful candidate or other addition to Base Pay eligible Sun Life employees participate in various incentive plans payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our Clients the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to .

We are proud to be a hybrid organization that offers our employees the choice and flexibility to work from both the office and virtually based on the needs of the business our Clients and you! Several work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We may use artificial intelligence to support candidate sourcing screening interview scheduling.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range:

60000/60 000 - 97000/97 000

Job Category:

Business Analysis - Systems

Posting End Date:

06/04/2026

Required Experience: