×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information Risk Analyst; First Line of Defense; WTL

Remote / Online - Candidates ideally in
Waterloo, Kitchener, Ontario, Canada
Listing for: Recrute Action
Full Time, Part Time, Contract, Remote/Work from Home position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 104 - 109 CAD Hourly CAD 104.00 109.00 HOUR
Job Description & How to Apply Below
Position: *Information Risk Analyst (First Line of Defense) (WTL, ON)
Location: Waterloo

Job Description

Information Risk Analyst (First Line of Defense)

Step into a high-impact, hybrid role at the forefront of cloud security, AI governance, and information risk within the insurance sector. Leverage your expertise in Info Sec, regulatory frameworks, and emerging technologies to shape secure, future-ready solutions. Work cross-functionally in a dynamic, fast-paced environment.

What is in it for you:

• Salaried: $65-70 per hour.

• Incorporated Business Rate: $79-84 per hour.

• 6-month contract with the potential for permanent employment.

• Full-time position: 37.50 hours per week.

• Weekday schedule from 9 am to 5 pm.

• In-office presence required from Tuesday to Thursday.

• Remote work available on Mondays and Fridays.

Responsibilities:

• Conduct comprehensive assessments of IaaS, PaaS, SaaS, and generative AI projects, identifying and mitigating associated risks.

• Develop and implement governance frameworks tailored to generative AI, aligning with global information risk assessment methodologies.

• Collaborate with cross-functional teams to integrate risk frameworks with processes such as architecture reviews, project risk management, and business continuity.

• Manage task priorities to ensure timely delivery of governance assessments and documentation updates.

• Participate in project meetings to advise stakeholders on risks and potential impacts of proposed changes.

• Ensure peer review of all completed risk assessments prior to stakeholder distribution.

• Support operational security tasks including incident response, firewall reviews, and vulnerability management.

• Provide training on risk assessment procedures and security best practices to internal teams.

• Respond to audits, regulatory reviews, and internal control assessments.

• Stay current on emerging AI technologies, evolving threat landscapes, and developments in AI governance.

What you will need to succeed:

• Degree in Computer Science, Information Technology, Data Science, Business Administration, or a related discipline.

• Relevant professional designations (e.g., CISSP, CRISC, CISM, CISA) are considered an asset.

• 5+ years of experience in information risk management, including vendor risk, project risk, IT audit, or control assessments.

• Background in one or more technical security disciplines, such as network security, application security, identity and access management, cybersecurity, or information protection.

• Strong understanding of cloud computing security in IaaS, PaaS, or SaaS environments.

• Familiarity with laws and standards such as NIST, ISO
27001, GDPR, Sarbanes-Oxley, and the EU AI Act.

• Strong communication and influencing skills to support a culture of governance and risk awareness.

Effective problem-solving and analytical skills with an innovative mindset.

• Excellent presentation and facilitation skills for technical and non-technical audiences.

• Strong collaboration, time management, and organizational abilities.

• Understanding of the financial services industry and its regulatory landscape is an asset.

Why Recruit Action?

Recruit Action (agency permit: AP-2000003) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted.

# MFCJP

Requirements
Cloud Security Architect Drive AWS cloud security strategy in the insurance industry with a senior-level role focused on secure architecture, compliance, and automation. Leverage your expertise in AWS services, threat detection, and identity management in a hybrid, multi-account environment. Opportunity to lead security-by-design in a regulated sector. What is in it for you:
• Salaried: $90-95 per hour.
• Incorporated Business Rate: $104-109 per hour.
• 12-month contract with the potential for permanent employment.
• Full-time position: 37.50 hours per week.
• Hybrid model – 3 days per week on-site.
• Attendance on Tuesday and Wednesday is mandatory. Responsibilities:
• Design and implement secure landing zones using AWS Control Tower, AWS Organizations, and Service Control Policies (SCPs).
• Define multi-account security guardrails for shared services, workloads,…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search