Senior Analyst, Information Security (GRC) and Crisis Management
Hybrid · Montréal, Quebec, Canada
Job Summary
Senior Analyst, Security GRC & Crisis Management responsible for supporting PSP Investments' security governance, risk and compliance program and enterprise crisis management capabilities. Contributes to governance framework maintenance, risk assessments, audit support, vendor risk, KPI/KRI reporting, and senior leadership briefings; maintains Crisis Management Plan and Incident Response Playbooks; coordinates crisis simulations; monitors threat intelligence and aligns business continuity/disaster recovery objectives; collaborates with Internal Audit, Legal, and Enterprise Risk; requires a Bachelor's degree and 3-5 years of information security experience, ISO 27001/NIST CSF/COBIT familiarity, strong analytical/written communication, and bilingual English/French.
Required Qualifications
- Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field
- Three (3) to five (5) years of experience in information security, with significant exposure to security GRC activities
- Experience with and awareness of incident preparedness and crisis management processes
- Familiarity with security frameworks such as ISO 27001, NIST CSF, or COBIT
- Strong analytical and writing skills; able to translate technical information into clear documentation for non-technical audiences
- Bilingualism: English and French
- Relevant certification or active pursuit thereof considered a strong asset; experience in financial services or a regulated industry an asset
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.