IT Governance Risk and Compliance (GRC) Specialist

<strong>We&rsquo;re a naan traditional company&hellip;<br /><br />Working at FGF Brands, there is never a dull moment! As a successful company that is continually growing there is always challenging yet rewarding work to be a part of.&nbsp;We have an&nbsp;<em>entrepreneurial&nbsp;</em>spirit which encourages all our team members to use their own&nbsp;<em>creativity</em>&nbsp;and&nbsp;<em>out of the box</em>&nbsp;thinking to come up with solutions and new ideas.</strong>

Greater Toronto Area, ON

FGF

<p><strong>A Bakery That Runs Like A Startup</strong></p> <p><strong>We&rsquo;re not your average bakery. We&rsquo;re a team of passionate thinkers and doers that are challenging the idea of what a bakery can be. We operate like a startup, powered by creativity and a &lsquo;roll up your sleeves&rsquo; mentality, to give our customers the best possible product. Our offices are just like our thinking, open and modern. Our manufacturing facilities are state-of- the-art. We expect unconventional solutions from our team members, so we give them creative spaces to inspire and collaborate.</strong></p> https://www.fgfbrands.com/

keywords: summary,job description,what we offer,leadership,performance,compliance,education & experience,skills,passion

Full Time

Overview: <br /> <p>Let&rsquo;s be frank. FGF is not for everybody. Our culture is unique. We dive headfirst into the unknown. If you&rsquo;re fun-loving, talented, and fearless, we&rsquo;re for you.</p> <p>&nbsp;</p> <p><span style="text-decoration: underline;"><strong>What FGF Offers:</strong></span></p> <ul> <li>Disruptive and a naan-traditional mindset</li> <li>An inclusive and dynamic culture</li> <li>Accelerated career progression</li> <li>Commitment to learning and development</li> <li>Opportunity to be impactful</li> <li>Competitive compensation</li> </ul> <p><strong>&nbsp;</strong></p> <p><span data-contrast="auto">Reporting to the&nbsp;Director, IT&nbsp;Risk Management, you&nbsp;are a versatile and experienced information security professional skilled in a variety of relevant technical and soft skills that are essential for&nbsp;l</span><span data-contrast="none">eading the day-to-day governance, risk, and compliance activities related to policy compliance, process, and organizational policies and security requirements governance, as well as risk management functions</span><span data-contrast="auto">.&nbsp;You will&nbsp;support the mission&nbsp;at&nbsp;FGF&nbsp;Brands&nbsp;by&nbsp;working with&nbsp;various stakeholders to develop, maintain and enhance controls and implement a&nbsp;risk-based&nbsp;approach when evaluating&nbsp;organizational technology requirements. You will also help develop risk and compliance strategies and&nbsp;audit,&nbsp;suggest&nbsp;improvements&nbsp;and&nbsp;evaluate the company&rsquo;s cybersecurity controls.&nbsp;</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></p>
Responsibilities: <br /> <ul> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Draft Security and Compliance policies and secure approval from IT Leadership.</span><span data-ccp-props="{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:200,&quot;335559740&quot;:276}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Help&nbsp;develop&nbsp;and lead the implementation of an enterprise-wide&nbsp;strategy focused on the reduction of technology risk</span><span data-ccp-props="{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:200,&quot;335559740&quot;:276}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Interface directly with IT Leadership&nbsp;and other stakeholders to assure alignment of FGF&rsquo;s Security objectives are met, given the robust business expansion initiatives.</span><span data-ccp-props="{&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:120,&quot;335559740&quot;:276}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Work with IT, business, and internal and external audit teams to perform security and compliance assessments on new and existing systems, processes, and technologies</span><span data-ccp-props="{&quot;134233118&quot;:true,&quot;134233279&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:200,&quot;335559740&quot;:276}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Participate in disaster recovery and business continuity planning and testing&nbsp;while understanding operational considerations and&nbsp;ensure objectives are met.</span><span data-ccp-props="{&quot;134233118&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Lead efforts to achieve compliance with various frameworks and regulations by consulting and working with the relevant IT,&nbsp;business, and control owners</span><span data-ccp-props="{&quot;134233117&quot;:true,&quot;134233118&quot;:true,&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></li> <li data-leveltext="" data-font="Symbol" data-listid="7" data-aria-posinset="1" data-aria-level="1"><span data-contrast="auto">Perform periodic gap assessments to validate compliance on an ongoing basis to ensure that proper controls are in place and risks are appropriately mitigated.</span></li> </ul>
Requirements: <br /><br /> <ul> <li><span data-contrast="auto">Bachelor&rsquo;s degree in computer science, engineering, or related fields or a combination of relevant education and experience</span></li> <li><span data-contrast="auto">CISSP or other equivalent security certification</span></li> <li><span data-contrast="auto">A minimum of 3+ years of related experience&nbsp;in IT&nbsp;Security&nbsp;or GRC.&nbsp;</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></li> <li><span data-contrast="auto">5+ years experience&nbsp;in improving and maintaining the security of infrastructure hardware and system software.&nbsp;</span><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></li> <li><span data-contrast="auto">Working knowledge of Information Security best practices and standards such as COBIT, ISO 27000 Series, PCI DSS</span></li> <li><span data-contrast="auto">Experience in security patch and vulnerability management</span></li> <li><span data-contrast="auto">Good understanding and awareness of current technology trends around Security in IT.</span></li> <li><span data-contrast="auto">Strong leadership, communication, influencing, collaboration, and talent development skills.&nbsp;</span></li> <li><span data-contrast="auto">Able to dynamically prioritize requests and propose effective alternatives when necessary.&nbsp;</span></li> <li><span data-contrast="auto">Ability to show strategic thinking.&nbsp;</span></li> <li><span data-contrast="auto">Strong project management skills.&nbsp;</span></li> <li><span data-contrast="auto">Strong verbal and written communication skills with ability to confidently present complex information.&nbsp;</span></li> <li><span data-contrast="auto">Ability to continuously improve the organization.&nbsp;</span></li> </ul> <p><span data-ccp-props="{&quot;201341983&quot;:0,&quot;335559739&quot;:0,&quot;335559740&quot;:240}">&nbsp;</span></p> <p><strong>FGF DNA:</strong></p> <p>We are foodies and our passion is baked in...</p> <ul> <li><strong>Customer and Product Centricity -&nbsp;</strong>You are always keeping our products front and center.</li> <li><strong>Flexibility, Agility, Adaptability&nbsp;</strong>- You embrace speed, change, and uncertainty.</li> <li><strong>Teamwork and Collaboration -&nbsp;</strong>You are a relationship builder.</li> <li><strong>Passion for Excellence -&nbsp;</strong>You look for innovative solutions and challenges the status quo.</li> <li><strong>Drives Execution -&nbsp;</strong>You are a risk taker!&nbsp;</li> </ul>