Senior Audit, Governance and Compliance Consultant - ISO

Posted:
12/12/2024, 8:25:50 AM

Location(s):
Ontario, Canada ⋅ Waterloo, Ontario, Canada ⋅ Toronto, Ontario, Canada

Experience Level(s):
Senior

Field(s):
Consulting

Workplace Type:
Hybrid

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

As the Senior Audit, Governance and Compliance Consultant (ISO), you play a crucial role on Sun Life's Chief Technology Office (CTO) Governance and Compliance team. Your role focuses on supporting Sun Life’s IT Infrastructure teams and has two main accountabilities:

What will you do:

ISO Coordinator for Certification and ISMS support:

  • ​Be the ISO expert representing the CTO in all relevant forums.

  • Educate the CTO on the ISO certification process, and coach teams on how to effectively participate.

  • Collaborate with multiple internal CTO teams to plan, prepare, and execute ISO/IEC 27001 and ISO/IEC 27017 certification requirements for Sun Life.

  • Strategize with your peers in the CTO Governance and Compliance team to define an effective approach to meeting ISO requirements and look for efficiencies to reduce duplication of work.

  • Maintain all Information Security Management System (ISMS) accountabilities for the CTO.

  • Provide regular reporting to Leadership

Annual SOC2 Reporting Engagement:

  • Lead the planning, preparation, and execution of the CTO's portion of the annual SOC2 reporting process on behalf of the CTO IT Infrastructure teams

  • Coordinate SOC2 reporting activities with your peers in CTO Governance and Compliance to reduce duplication of work.

What you need to succeed:

  • A deep understanding of ISO/IEC 27001 requirements and Lead Implementer or Lead Auditor certification

  • Proven track record of achieving and maintaining certification

  • Strong knowledge of information security principles and standards and their application to IT infrastructure, including Cloud

  • 3+ years experience in developing, analysing, documenting, and implementing IT policies, procedures, and controls

  • Expertise in IT risk assessment, governance, and compliance

  • Relevant degree in Business, IT, or related field

  • Advanced proficiency in Microsoft Office suite and reporting tools like Tableau

  • Experience with IT risk management and compliance frameworks

Preferred skills

  • Exceptional communication, organization, analytical and problem-solving skills.

  • Self-motivated with ability to adapt to changing priorities

What’s in it for you:

  • We’re honoured to be recognized as a 2024 Best Workplaces in Ontario by Great Place to Work® Canada.
  • We are thrilled to be recognized by Excellence Canada with their top-level certification, the Canada Order of Excellence for Mental Health at Work®,  for prioritizing employee well-being, fostering a positive work culture, and achieving excellence in mental health.
  • We’re proud to be recognized as a company with a 2023 Most Trusted Executive team by Great Place to Work® Canada.
  • Wellness programs that support the three pillars of your health – mental, physical, and financial
  • The opportunity to move along a variety of career paths with amazing networking potential.
  • As a hybrid organization, you and your leader use business and Client needs to choose where you work, at home or in the office

The Base Pay range is for the primary location for which the job is posted.  It may vary depending on the work location of the successful candidate or other factors.  In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance.  Certain sales focused roles have sales incentive plans based on individual or group sales results. 

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to [email protected].

At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range:

78,000/78 000 - 128,000/128 000

Job Category:

Compliance

Posting End Date:

17/12/2024