×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
IT Business Analyst Cybersecurity Information Security IT Consultant

Analyst, IT Risk and Internal Controls

Remote / Online - Candidates ideally in
Toronto, Ontario, M5A, Canada
Listing for: fasken
Full Time, Remote/Work from Home position
Listed on 2026-01-13
Job specializations:
  • IT/Tech
    IT Business Analyst, Cybersecurity, Information Security, IT Consultant
Job Description & How to Apply Below

Work Environment

As part of the Firm-wide Information Securities team, this role can be located in any of the Canadian cities that Fasken has offices (Toronto, Ottawa, Montreal, Quebec City, Calgary, Tsuut’ina Nations, Vancouver, Surrey). Hybrid remote work arrangements are available with requirements as per business needs for onsite office support. The successful candidate must live in or around their regional office and be able to commute to the office as often as required.

In-office requirements are subject to change, based on business needs as determined by the Firm’s Management.

Responsibilities include, but are not limited to:

  • Lead proactive risk assessments across cloud, infrastructure and application environments – spotting control gaps early and turning insights into action
  • Leads meetings, workshops and interviews to conduct Internal audits, walkthroughs of in-scope processes and gather/document evidence as required
  • Assess and manage third-part risks – ensuring vendors, partners, and platforms meet our security and privacy expectations from day one
  • Establish relationships with legal, Risk and Compliance; IT and Innovation teams; processes owners; business units; senior management and external auditors in an effective and collaborative manner, ensuring clear and continuous communication.
  • Advising security leadership on risk management strategies, including risk mitigation, risk reduction, compensating controls, and residual risk analysis.
  • Report all control deficiencies identified on business processes to the responsible areas, requesting that they submit an action plan to address the issues, and ensure that all agreed upon recommendations are subsequently implemented.
  • Provide support to all business units regarding activities related to process improvement by identifying risks and controls and associated solutions.
  • Deliver training and expertise to Members, process owners, control owners and performers.
  • Drive audit and compliance readiness by coordinating assessments, streamlining evidence gathering, and simplifying remediation across multiple frameworks
  • Create, maintain, communicate and facilitate consistency with information security policies, standards, and procedures across the organization.
  • Assist with management of Internal audits, platforms and a variety of internal databases and sites used for tracking compliance.
  • Manage multiple assignments, achieve deadlines and deliver quality results within a remote team environment.

    • Required Knowledge and Experience

  • Bachelor’s degree in computer science, technology management, or related technical or management field.
  • Advanced degree or professional certification (e.g. CIA, CISA, CRM, CRMA) would be an advantage.
  • A minimum of 2-4 years of experience in testing, compliance and internal IT controls with a minimum of 1 year working in external and/or internal auditing.
  • Strong knowledge and experience in evaluating internal business controls under the ISO 27001 or NIST framework.
  • Ability to be a self starter and have agency to own the risk and compliance roadmap
  • Experience with ISO 27001, SOC2 Type II, and NIST 800-53/NIST CSF
  • Practical knowledge of Privacy law including PIPEDA, GDPR and POPIA is beneficial.
  • Knowledge of ITGC and ITIL.
  • Extensive understanding of financial, operational, and compliance risk.
  • Proficient knowledge of Microsoft and MS Office Suite
  • A natural desire to analyze and resolve challenges using demonstrated analytical and problem-solving skills.
  • Confident communicator with strong inter-personal skills

    • What we offer:

    Join our friendly, collaborative and rewarding work environment where your professional development is supported, and your contributions are encouraged and valued. In a full-time, permanent role, we offer the following:

  • A competitive total compensation package
  • Flexible medical and dental benefits, including telemedicine services
  • Hybrid work flexibility
  • Short and long term disability insurance
  • Employee and family assistance program (EFAP)
  • Group retirement savings plan with matching contributions
  • Paid vacation and sick days
  • Personal days
  • Wellness Subsidy and continuing education reimbursement
  • Maternity/parental leave top up
  • Employee referral…
    • Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search