Share This Job Posting

Meet Our People
Job Saved
Job Removed

Advisor, IT Governance, Risk & Compliance

Montreal, QC, CA
Job#: JO-1884-ENG
Full Time/Part Time:
Job Status: Permanent

Apply Add to Saved Jobs

The Opportunity

The responsibilities of the Advisor, IT Governance, Risk & Compliance will be the following:

  • Participate actively to the development and maintaining IT Policies, standard and procedures.
  • Track resolution plans IT Department against audit observations and prioritized information security risks.
  • Assist in the design, implementation and review of internal IT controls aligned to risk assessment and audit activities.
  • Conduct formal information security risk assessments, inventory and analysis.
  • Review change advisory board (CAB) activities ensuring information security requirements are met throughout the systems lifecycle. As needed, assist with CAB activities documentation.

Key Areas of Responsibility

  • Develop IT Policies and Procedures ensuring compliance to applicable regulatory (ex.: SOX, PCI) requirements as well as best IT practices and help develop the Gildan information security framework
  • Assess compliance of the IT department against Gildan’s internal Policies and applicable requirements
  • Define compliance and audit activities strategy (e.g. PCI, SOX) and facilitate internal and external (SOX) audit activities.
  • Document and inventory risks from assessment activities and participate to their formal prioritization
  • Participate to the design and implementation of  IT controls  to mitigate information security and compliance risks
  • Track resolution plans IT Department against audit observations and prioritized information security risks
  • Liaise with Internal and external auditors, relevant Gildan IT team members and IT management.
  • Prepare working papers, summarize results and assist presenting to management as needed.
  • As needed, Coordinate and document change management activities against Gildan’s change management process and ensure system change are properly tracked and approved.
  • Organize and maintain internal IT audit evidence library and IT Governance documentation.

Profile & Core Competencies

  • 5 years of demonstrated experience in IT compliance, risk management or related function.
  • BA Degree (Computer science, Engineering or associated technical field)
  • Knowledge of the Sarbanes-Oxley Act and PCI compliance requirements
  • Strong knowledge of IT practice framework such as NIST, COBIT and ISO.
  • CISA, CISSP or equivalent designation a plus
  • Excellent verbal and written communication skills to interact with managers, staff, customers and suppliers at all levels within companies.
  • Working knowledge of all areas of the organization and ability to clearly understand the resources and key business processes of companies.

Additional Information

We thank you for your interest in a career at Gildan, however only those candidates retained for an interview will be contacted.