mfcjp00016824 - security analyst iii.

Our client, a major global financial services organization, is seeking a dynamic and experienced Senior Security Analyst (Information Risk) to join their IT First Line of Defense team. In this role, you will be responsible for performing risk-based information security assessments for new and emerging technologies, with a strong focus on maintaining governance frameworks for Generative AI technologies.

You will manage and mitigate risks across cloud-based, on-premises, and AI-driven platforms, ensuring strict compliance with global information security standards. This is an exceptional opportunity for a proactive security professional who enjoys collaborating with cross-functional teams to design, document, and implement business-as-usual (BAU) security controls in a fast-paced corporate environment.

Advantages
Cutting-Edge Focus: Gain hands-on experience building risk frameworks for emerging Generative AI and cloud-based technologies.

Flexible Hybrid Schedule: Work in a balanced hybrid model (3 days onsite, Tuesday–Thursday) with a choice of two premier office locations.

Collaborative Culture: Join a highly communicative team environment that values peer reviews, knowledge sharing, and professional excellence.

Contract Longevity: A stable 6-month initial contract with a strong potential for extension based on project demands and performance.

Responsibilities
Conduct comprehensive information risk assessments across IaaS, PaaS, SaaS, and Generative AI projects, defining and tracking necessary security controls.

Develop, document, and implement tailored governance frameworks for AI technologies, ensuring alignment with global risk assessment methodologies.

Collaborate with cross-functional teams to seamlessly integrate the Information Risk framework into existing processes (e.g., architecture reviews, project risk management, BCP/DR).

Participate in project meetings to advise stakeholders on risks and impacts regarding infrastructure changes, ensuring all completed assessments are peer-reviewed.

Support operational security activities, including segment-specific incident response, vulnerability management, and firewall reviews.

Respond to internal/external audits, regulatory reviews, and risk and control self-assessments (RCSA).

Provide training and documentation to key stakeholders regarding information risk processes and security best practices.

Qualifications
Must-Have Qualifications
- Information Risk Experience: 5+ years of experience in Information Risk Management, vendor risk management, project risk management, IT Audit, or IT controls assessment.

- Information Security Breadth: Strong technical grounding across multiple disciplines including network security, application security, IAM, vulnerability management, and cybersecurity operations.

- Cloud Security Expertise: Deep operational knowledge of cloud computing security within IaaS, PaaS, and SaaS environments.

- Framework Familiarity: Strong working knowledge of major industry standards, laws, and frameworks (e.g., NIST, ISO 27001, GDPR, Sarbanes-Oxley, and emerging regulations like the EU AI Act).

- Communication Skills: Outstanding interpersonal, presentation, and facilitation skills, with a proven ability to confidently present risk profiles to senior leadership.

Nice-to-Have Qualifications
- Industry Experience: Prior experience or deep understanding of the financial services industry and its unique regulatory environment.

- Education & Professional Designations: A degree in Computer Science, IT, Data Science, Business Administration, or equivalent. Industry certifications such as CISSP, CRISC, CISM, or CISA are highly desirable assets.

Summary
Position Title: Security Analyst III (Information Risk & AI Governance)

Location: Hybrid (3 days onsite: Tuesday–Thursday) Toronto, ON or Waterloo, ON

Contract Duration: 6 Months (Potential for extension)

Schedule: Monday–Friday, 9:00 AM–5:00 PM (37.5 hours/week)

Interview Process: 2 Rounds (Virtual)

If you are a people-savvy security professional who thrives in a collaborative environment and has a passion for driving excellence in AI governance, apply today!

Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.

Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to View email address on randstad.com to ensure their ability to fully participate in the interview process.

This posting is for existing and upcoming vacancies. show more