Dye & Durham Limited is a leading provider of cloud-based software and technology solutions designed to improve efficiency and increase productivity for legal and business professionals. Dye & Durham provides critical information services and workflows, which clients use to manage their process, information, and regulatory requirements. The Company has operations in Canada, the United Kingdom, Ireland, and Australia, and has a strong blue-chip customer base that includes law firms, financial service institutions, and government organizations.
As an IT Governance, Risk and Compliance Analyst, you will apply your subject matter expertise in IT risk management and compliance to enhance and implement policies and standards, maintain control assurance activities, support IT audits, evaluate and improve IT controls, execute security and risk assessments, provide insights and guidance to IT and business stakeholders, and assess and document compliance with laws, regulations, directives, and contracts. You will also support the governance, risk and compliance tooling, and the vendor risk management program.
You will report to the Manager of IT Governance, Risk and Compliance and work closely with various stakeholders across the organization. You will also have strong communication and collaboration skills, as well as the ability to recommend risk treatment or mitigation strategies that align with the tactical and strategic priorities of the company. If you are looking for a challenging and rewarding role in a dynamic and innovative organization, this is the opportunity for you.
The ideal candidate will have strong knowledge and work experience in IT general controls, ISO27001 and SOC2 frameworks, and can work with local and global IT and business partners to provide guidance and support to the company.
Under the direction of the Manager of IT Governance, Risk and Compliance, the successful candidate will:
Support the ITGRC program and the global Information Security Management System (ISMS) for a large portfolio of applications, ensuring sustainable compliance practices across the company.
Evaluate and monitor compliance to D&D's IT controls, policies and standards and perform gap assessments. Map and maintain common controls framework and control scope/applicability for a portfolio of compliance initiatives.
Facilitate and coordinate numerous ad hoc and periodic internal/external assessments, audits, and certifications, such as vendor assessments by key customers, ITGC and SOC 2 audits, and ISO 27001 certification, including evidence gathering, walkthrough coordination and management response to identified findings.
Assist in driving the vendor / partner security risk assessment program using D&D's 3rd-party risk assessment tool and support the vendor due diligence process.
Support the implementation and ongoing management of an enterprise IT Governance, Risk and Compliance solution to enhance the company's risk management and risk reporting/tracking capabilities.
Support the development and maintenance of D&D's global risk register and support risk treatment planning, monitoring, and reporting processes.
Deploy a repeatable playbook for onboarding each acquired company onto the ISMS.
Collaborate with D&D's Legal department to incorporate new requirements from applicable legal/regulatory changes.
Interface with global IT and business partners to provide guidance and support.
Document and report control failures and gaps to stakeholders / control owners. Provide remediation guidance and prepares stakeholders' reports to track remediation activities.
Evaluate and report any security/compliance risks to track as part of the company risk register. Consult on developing security standards, procedures, and controls to manage risks.
What you will bring:
Degree or diploma in Computer Science, Cyber Security or related field
5+ years of experience working with applicable information security management, compliance principles, IT standards, controls and audit
Skills in control analysis, risk analysis, process assessment, consulting, data analysis, audit, vendor and contract management
Understanding of fundamental information security concepts and technology
Strong analytical and critical thinking skills
Excellent communication and presentation skills; ability to communicate technical concepts to a broad range of technical and non-technical management and staff
Ability to work with multiple internal and external stakeholders in a dynamic and fast-paced global operation.
Additional skills that would be an asset:
Professional certification or progress towards certification in one or more of the following areas: CRISC, CISSP, CISA
Working knowledge of NIST, Cyber Essentials and other security frameworks/standards
Experience in financial services or other highly regulated industries
Strong technical skills in SharePoint and work process flows
Experience with legislative and regulatory compliance requirements such as GDPR
Experience with GRC platforms such as AuditBoard, Upguard and others
Ability to communicate in French
At Dye & Durham we strive to be visionaries! As a leader in our field, we ensure our employees are ready for the next challenge in their journey with us by offering internal and external training opportunities. We offer competitive salaries, a whole host of benefits such as, overseas transfer opportunities, healthcare, pension, company discounts, wellness programs, paid days off to move house or volunteer for your favourite charity.
Do you share our DNA?
Canada - ON - ON - Richmond Hill
June 29, 2024
What You Will Be Responsible For: • Acting as a trusted advisor to our customers in various engagements, ranging from technical development and product support to business analysis Serving as a subject matter expert for broad and complex technical issues by providing first call resolution by phone...
Canada - ON - ON - thunder bay
May 1, 2024
We at Resolute are a diverse group of individuals who possess a wide variety of skills. Here, we believe that giving you the ability to maximize your potential without constraint is key to our shared success. • Our Thunder Bay location in Ontario, Canada is currently seeking talent to fill the...
Canada - ON - ON - Ottawa
June 29, 2024
Join Our Dynamic Team: Summer Student Position Available! Are you a motivated and enthusiastic individual looking for an exciting summer opportunity? District Realty is seeking a proactive and customer-focused summer student to join our team. Key Responsibilities: • Apartment Viewings and Tenant...
Canada - ON - ON - Oakville
June 29, 2024
Location: • Oakville, Ontario Company: • Mattamy Homes Canada Department: • Construction Site - GTA Low Rise Division Employment Type: • Full-Time Reports to: • Senior Builder When it comes to forward-thinking homebuilding and thoughtfully planned communities, Canadians think of Mattamy Homes. And...
Canada - ON - ON - Old Toronto
June 29, 2024
Date Posted: • 06/26/2024 • Req ID: 38220 • Faculty/Division: Faculty of Arts & Science • Department: University College Prog • Campus:St. George (Downtown Toronto) • Description: • Course Number and Title: CDN267H1F - Canadian Nationalisms • Course Description: A critical examination of...
Canada - ON - ON - Toronto
June 29, 2024
About Omnicom Media Group Canada As a leading global media network, with data at the core, Omnicom Media Group creates end-to-end solutions for clients, anywhere, swiftly and efficiently. OMG considers client business needs from the start and keeps consumer behavior at the heart of everything we do....
The Northwest Catholic District School Board
Canada - ON - ON - red lake
May 6, 2024
Length of Assignment: • May 21, 2024 to June 21, 2024 Requirements: • Certificate of Qualifications and current registration from the Ontario College of Teachers; Primary, Junior or Intermediate qualifications; A demonstrated faith life and a strong commitment to Catholic Education;...
Canada - ON - ON - Mississauga
June 29, 2024
POSITION LOCATED IN CANADA ABOUT US: ZOOMLION, a leading player in the global engineering machinery industry is growing and has positions available at Zoomlion North America's engineering research and development and sales center in Yorkville, Wisconsin. If you are looking for a challenging...
Canada - ON - ON - Concord
June 29, 2024
At Toys R Us Canada, our focus on FUN and PLAY is at the heart of everything we do. • We are proud to be Canadian owned and operated by Putman Investments. • We have an exciting opportunity to join R team, as a Supply Chain Analyst in the Supply Chain department. • In this role, you will maintain...
Canada - ON - ON - Old Toronto
June 29, 2024
Who we are… • Modern Campus empowers 2,000+ higher education institutions to thrive when transformation is required to respond to lower student enrollments and revenue, rising costs, crushing student debt, and administrative complexity. • The Modern Campus learner-to-earner lifecycle platform power...
Canada - ON - ON - Old Toronto
June 29, 2024
[Full Time] Head of Engineering at MedMe Health (United States) | BEAMSTART Jobs Head of Engineering MedMe Health United States Date Posted 08 Feb, 2023 Work Location Toronto, Canada, United States Salary Offered $160000 - $200000 yearly Job Type Full Time Experience Required 6+ years Remote Work...
Canada - ON - ON - Toronto
June 29, 2024
Inclusion without Exception TCS is an equal opportunity employer, and embraces diversity in race, nationality, ethnicity, gender, age, physical ability, neurodiversity, and sexual orientation, to create a workforce that reflects the societies we operate in. • Our continued commitment to Culture and...
Prevalent Third Party Risk Management
Canada - ON - ON - Ottawa
June 29, 2024
GRC Risk/Information Security Consultant Prevalent is a leading provider of comprehensive third party risk management solutions, dedicated to helping organizations navigate complex regulatory landscapes and protect their information assets. • Our team of experts specializes in implementing and...
Canada - ON - ON - Toronto
June 29, 2024
Company Profile Quantiphi is an award-winning Applied AI and Big Data software and services company, driven by a deep desire to solve transformational problems at the heart of businesses. Our signature approach combines groundbreaking machine-learning research with disciplined cloud and...
Canada - ON - ON - Windsor
June 29, 2024
Description • Conduct network assessments following assessment framework. • Analyze customer needs and engineer solutions to meet those needs within Cooperative Systems technology standards. • Design, coordinate, and implement simple and complex projects. • Scope hardware and software specifications...
Canada - ON - ON - Kawartha Lakes
June 29, 2024
Community Legal Clinic - Simcoe, Haliburton, Kawartha Lakes Community Legal Clinic - Simcoe, Haliburton, Kawartha Lakes is seeking a lawyer for a fifteen month contract with the potential for an extension of that term. The Clinic, funded by Legal Aid Ontario, provides free legal services to persons...
Canada - ON - ON - Toronto
June 29, 2024
POSITION SUMMARY: • Within a business unit, the Operations Manager - Hauling is responsible for managing the collections activities for commercial and industrial customers, as well as container delivery and pick up, in a geographically dispersed area. • The position manages a team of Operations...
Canada - ON - ON - Mississauga
June 29, 2024
Job ID-(241704108) Description Job Title: Information Security AnalystLocation: Mississauga, ON (Hybrid)Reports To: Manager, IT Cyber and Information Security Just Energy and its subsidiaries are an equal opportunity employer. We are committed to building a workforce that reflects the communities we...
Canada - ON - ON - prescott and russell
June 4, 2024
About the Voith Group • The Voith Group is a global technology company. With its broad portfolio of systems, products, services and digital applications, Voith sets standards in the markets of energy, paper, raw materials and transport & automotive. Founded in 1867, the company today has around...
Canada - ON - ON - Hamilton
June 29, 2024
Company Description Joinus at Accor,wherelife pulseswithpassion! As apioneerin the art ofresponsiblehospitality, the Accor Groupgathersmorethan45 brands, 5,600hotels, 10,000 restaurants, and lifestyle destinations in 110 countries.Whileeachbrand hasitsownpersonality,whereyouwillbeable...
Canada - ON - ON - chatham
June 3, 2024
CONDITIONS DE TRAVAIL • Avantages sociaux concurrentiels selon la Politique du personnel cadre de la Ville de Lachute • Régime complémentaire de retraite avec une contribution de l'employeur de 7,5 % • Assurances collectives disponibles • Congés fériés payés, incluant les...
Canada - ON - ON - Peterborough
June 29, 2024
Sales Executive Overview Our Volkswagen Commercial Vehicles Peterborough Retail Centre are actively looking for enthusiastic individuals excited to join our ever-growing automotive family, and if you're as passionate about cars as we are then we'd love to welcome you to the team where you will be...
Canada - ON - ON - Old Toronto
June 29, 2024
: • Title: • Senior DataPower Application & Infrastructure Analyst Requisition ID: • 195558 • Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. • The Role: • The Senior Application & Infrastructure Analyst will lead and be responsible for the...
Canada - ON - ON - Old Toronto
June 29, 2024
This role is only open to candidates with 2 years of experience in subrogation law in Ontario. • For any other applications, please Contact with CV directly to: *** About Cartel With over 35 years of experience, Cartel is considered one of Toronto's leading employment agencies servicing the legal...
Canada - ON - ON - Ajax
June 29, 2024
As a Solution Expert, you will be working on customer projects and supervising a team of Technical Data Engineers. You're stimulated by an international, cosmopolitan environment. You would like to be heard and considered in a human-scale company with very strong development. You are curious,...