CapIntel is a software platform built for wealth management enterprises to help financial advisors explain complex investment strategies to their clients. Advisors at some of the biggest banks across North America are winning trust by using CapIntel to easily compare investments and create compelling educational presentations. Ultimately were focused on investors getting better service understanding their investments and feeling at ease knowing their future is secure.

Since launching in 2019CapIntelhas seen rapid adoption and industry recognition earning top placements in Deloittes Technology Fast 50 Canada and Fast 500 North America in 2025 ranking us among thefastest-growing technology companies. To support this momentumweregrowing our teamrapidlyinvestingin people who drive innovation at scale to expand our impact across the North American wealth management industry.

About the Role

CapIntel is looking for a Governance Risk & Compliance (GRC) Analyst to help strengthen and scale our information security and compliance this role youll work closely with the Director of Information Security and cross-functional partners across Engineering People Sales and Customer Success to ensure our security remains strong audit-ready and aligned with regulatory and customer expectations. Youll contribute to maintaining core security programs supporting audit cycles managing third-party risk and helping the business confidently respond to customer and regulatory security requirements.

This role is suited for candidates who are highly organized detail-oriented and comfortable operating in a fast-moving fintech SaaS environment. We are searching for someone with a foundational understanding of security and compliance frameworks strong project management skills and the ability to communicate risk and security concepts clearly to both technical and non-technical stakeholders.

What Youll Do

Support CapIntels Governance Risk and Compliance program

• Maintain and improve security policies standards and procedures to support the ongoing maturity of CapIntels Information Security Program.
• Maintain the companys risk register including tracking remediation activities and providing regular updates on risk posture.
• Support SOC 2 and other compliance initiatives by assisting with control design coordinating evidence collection and supporting internal and external audits.
• Track audit findings and remediation actions to ensure issues are resolved in a timely manner and controls remain effective.

Manage third-party risk and customer security reviews

• Execute vendor security assessments and due diligence reviews maintain the vendor risk register and track remediation of identified risks.
• Coordinate vendor reassessment cycles and escalate material risks or concerns when necessary.
• Serve as the primary point of contact for customer and prospect security questionnaires maintaining a library of standardized responses and coordinating with internal teams when needed.
• Participate in customer security discussions or audits to represent CapIntels security posture.

Support operational security privacy and security awareness initiatives

• Assist the Security Incident Response Team (SIRT) during incidents by coordinating documentation timelines and communications.
• Support the maintenance and testing of Business Continuity and Disaster Recovery plans and track post-incident action items.
• Assist with privacy and data protection initiatives including data mapping data handling reviews and breach response coordination in partnership with Legal and Security leadership.
• Support CapIntels security awareness program by coordinating training campaigns phishing simulations and tracking participation metrics.

What Youll Bring

• Experience in governance risk compliance information security or audit-related roles
• Experience supporting security or compliance programs such as SOC 2 NIST CSF ISO 27001 or similar frameworks
• Exposure to audit processes including evidence collection control documentation or audit coordination
• Familiarity with risk management concepts including maintaining risk registers or tracking remediation activities
• Experience completing or coordinating customer security questionnaires is an asset
• Strong organizational and project management skills with the ability to manage multiple compliance workstreams and deadlines
• Ability to operate effectively in a fast-moving environment with evolving processes

Nice to Have

• Experience in SaaS fintech or financial services environments
• Familiarity with third-party risk management or vendor security assessments
• Exposure to privacy concepts or regulatory environments such as PIPEDA GDPR or OSFI guidelines
• Security or risk certifications such as CompTIA Security CISA CRISC or ISO 27001-related certifications
• Experience contributing to process improvement or automation of compliance workflows including the use of AI tools

Notsureyou meet every requirement

We care most about mindset:yourdrivecuriosityandcommitmentto deliveringgreat experiencematters weknow thatcareersarentalways linear. If this role excitesyouand you believe you can make an impactwith uswe want to hear from you.

Whyyoullenjoy working here

Learn more aboutlife atCapIntelon ourCareerspage including the virtues that inspire how we work and theperksand benefits designed to support your growth and team built on trust respect and collaboration. This powerseverything we doand creates a space to challenge and elevate each otheras we work towards our shared this speaks to youwedbe excited to have you with us.