InfoSec Cyber Advisor

We are seeking a highly skilled Info Sec GRC Cyber Advisory professional to join our team and play a pivotal role in supporting governance, identifying cybersecurity risks, and providing strategic recommendations within key projects. This role requires a proactive and analytical mindset, strong problem‑solving skills, and the ability to collaborate with enterprise architecture and project management teams to drive security excellence across the organization.

• Governance & Compliance:
  Ensure that security governance frameworks, policies, and regulatory requirements are effectively integrated into key projects.
• Risk Identification & Mitigation:
  Assess project environments for cyber risks, vulnerabilities, and potential threats, providing clear risk assessments and mitigation strategies.
• Security Advisory:
  Act as a subject‑matter expert (SME), advising project teams on security best practices, frameworks (ISO 27001, NIST, CIS, etc.), and compliance requirements.
• Solution‑Oriented Approach:
  Collaborate with Enterprise Architecture and Project Management to develop practical and effective security solutions tailored to project needs.
• Security by Design:
  Ensure security is embedded early in project life cycles, aligning with corporate security architecture and business objectives.
• Stakeholder Engagement:
  Work closely with cross‑functional teams and business units to enhance security awareness and risk‑informed decision‑making.

• More than 10 years of experience in cybersecurity governance, risk management, and compliance (GRC).
• Strong expertise in security frameworks and regulations (ISO 27001, NIST, CIS, GDPR, SOC 2, SOx, etc.).
• Experience collaborating with Enterprise Architecture, IT Security, and OT Security teams to align security with business and operational needs.
• Deep understanding of enterprise security architecture, cloud security, and emerging cyber threats.
• Experience working with enterprise risk management, compliance teams, and internal audit functions.
• Professional certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer are preferred.

• Candidates must be bilingual, able to work fluently in French and English.
• SAP knowledge will be considered an asset.

• Applicants must be available to work onsite up to 50% of the time on two‑week cycles in Montreal, Sherbrooke or Valcourt.

BRP is dedicated to nurturing a culture that invites, connects, and propels the ambitions of people of all backgrounds, profiles, beliefs and experiences. Ultimately, the diversity and uniqueness of our people fuel our ingenuity and set the path ahead!

For this reason, we value diversity and we strive to always push each other forward to build an inclusive workplace where every employee feels like they belong, where they can grow and find meaning.

Let’s start with a strong foundation — You want it, we have it:

• Annual bonus based on the company’s financial results
• Generous paid time away
• Pension plan
• Collective saving opportunities
• Industry leading healthcare fully paid by BRP

• Flexible work schedule
• A summer schedule that varies by department and location
• Holiday season shutdown
• Educational resources
• Discount on BRP products

We’re a world leader in recreational vehicles and boats, creating innovative ways to move on snow, water, asphalt, dirt and even in the air. Headquartered in the Canadian town of Valcourt, Quebec, our company is rooted in a spirit of ingenuity and intense customer focus. Today, we operate manufacturing facilities in Canada, the United States, Mexico, Finland, Australia and Austria, with a workforce made up of close to 16,500 spirited people, all driven by the deeply held belief that at work, as with life itself, it’s not about the destination:
It’s about the journey.