RECHERCHER

RECHERCHER

Détails
de l'emploi



Partager cette offre d'emploi

Rencontrez nos employés
Succès
Emploi sauvé
Succès
Emploi supprimé

Advisor, IT Governance, Risk & Compliance

Montreal, QC, CA
Job ID: JO-1884-CFR
Temps plein/temps partiel:
Temps plein
Estado del trabajo: Permanent

Postulez Ajouter aux emplois sauvegardés


L'opportunité

The responsibilities of the IT Governance, Risk & Compliance analyst will be the following:

  • Participate actively to the development and maintaining IT Policies, standard and procedures.
  • Track resolution plans IT Department against audit observations and prioritized information security risks.
  • Assist in the design, implementation and review of internal IT controls aligned to risk assessment and audit activities.
  • Conduct formal information security risk assessments, inventory and analysis.
  • Review change advisory board (CAB) activities ensuring information security requirements are met throughout the systems lifecycle. As needed, assist with CAB activities documentation.

 

 

Principales responsabiltés

  • Apply a structured methodology and manage the IT change management process activities:
    • Assess IT changes risk and impact;
    • Review change advisory board (CAB) activities ensuring information security requirements are met throughout the systems lifecycle. As needed, assist with CAB activities documentation;
    • Manage the Change Advisory Board (CAB) meetings and IT changes calendar;
    • Consult IT teams on change management and IT service management best practices;
    • Support and engage senior leaders as needed;
    • Support organizational design and definition of roles and responsibilities;
    • Define and measure success metrics and monitor change progress;
    • Track and report issues;
    • Support change management at the organizational level;
    • Coordinate and document change management activities against Gildan’s change management process and ensure system change are properly tracked and approved.
    • Provide ITIL-based Information Technology Service Management (ITSM) knowledge and expertise to the Gildan IT team.
    • Assist defining and measuring key performance indicators.
       
  • Provide tracking and resolution assistance to audit and compliance observations including internal audits, external audits, and internal IT self-assessment reviews:
    • Track resolution plans against IT audit assessment observations;
    • Assist with the design, implementation and review of internal IT controls to improve overall compliance posture;
    • Define compliance and audit activities strategy (e.g. PCI, SOX) and facilitate internal and external (SOX) audit activities.
    • Assist defining and measuring key performance indicators.

Extended Responsibilities

  • Assist Develop IT Policies and Procedures to help ensuring compliance to applicable regulatory (ex.: SOX, PCI) requirements as well as best IT practices;
  • Assess compliance of the IT department against Gildan’s internal Policies and applicable requirements;
  • Document and inventory risks from assessment activities and participate to their formal prioritization;
  • Prepare working papers, summarize results and assist presenting to management as needed.
  • Organize and maintain internal IT audit evidence library and IT Governance documentation.

 

Profil et compétences de base

• 5+ years of demonstrated IT GRC or ITSM experience;
• BA Degree (Computer science, Engineering or associated technical field);
• Strong knowledge of IT practice framework such as ITIL, COBIT, NIST and ISO;
• Familiar of the Sarbanes-Oxley and PCI compliance requirements;
• CISA, CISSP or equivalent designation a plus;
• Excellent verbal and written communication skills to interact with managers, staff, customers and suppliers at all levels within companies;
• Working knowledge of all areas of the organization and ability to clearly understand the resources and key business processes of companies.

Informations complémentaires

We thank you for your interest in a career at Gildan, however only those candidates retained for an interview will be contacted.

#LI-GP1


Postulez