Senior Third-Party Cybersecurity & Risk Management

Company – Our client is a globally recognized leader in financial services, serving millions of customers through innovative banking, investment, and wealth management solutions. Known for its strong focus on security, regulatory compliance, and digital transformation, this organization offers the opportunity to work on enterprise-scale cybersecurity initiatives within a highly regulated environment.

• Job Title
• Senior
• Third-Party Cybersecurity & Risk Managemen

tLocation – Toronto, ON, Canada (Hybrid preferred; downtown Toronto office. Remote candidates within Canada will also be considered

)Role Type – Contract (6 months with potential extension

)

Must Have Skill

• s:Third-party/vendor cybersecurity risk assessmen
• tsCybersecurity risk manageme
• ntSecurity frameworks (NIST, ISO 27001, SOC
• 2)Vendor security reviews and compliance monitori
• ngRisk documentation and remediation suppo

rt

Responsibilities and Job Detai

• ls:Conduct cybersecurity assessments of third-party vendors and service provid
• ersEvaluate vendor security controls, policies, and cybersecurity practi
• cesIdentify, analyze, and document cybersecurity risks associated with third-party relationsh
• ipsPerform risk assessments and provide recommendations for risk mitigat
• ionMonitor vendor compliance with organizational security requirements and industry standa
• rdsSupport remediation efforts for identified vendor security gaps and risk findi
• ngsMaintain accurate risk documentation, tracking, and report
• ingCollaborate with internal stakeholders, security teams, and external vend
• orsReview third-party security evidence, certifications, and compliance documentat
• ionApply industry-standard security frameworks including NIST, ISO 27001, and SOC 2 in assessme
• ntsCommunicate risk findings, recommendations, and remediation requirements to stakehold
• ersContribute to governance, risk, and compliance (GRC) initiatives related to third-party cybersecurity managem

ent