Cybersecurity Compliance Analyst

At CI, we see a great place to work as one that is a safe place for everyone to have a voice, where people are empowered to take ownership over meaningful work, where there is an opportunity to grow through stretching themselves, where they can work on innovative products and projects, and where employees are supported and engaged in doing so.

We are currently seeking a Cybersecurity Compliance Analyst to join our Compliance team. In this role, the successful candidate is expected to conduct branch audits across Canada to review activities related to cybersecurity governance and compliance of CI Assante Wealth Management’s independent advisor practice.

WHAT YOU WILL DO :

• Travel to assigned Assante Branches and identify, address and overcome activities related to cybersecurity governance
• Document the current technology state of advisor branches and establish a security assessment roadmap.
• Manage the relationships with advisors and branch staff to ensure compliance with the Acceptable Use Policy and Standards
• Perform annual security assessments of Branch cybersecurity based on the CIS Critical Security controls.
• Track and follow up on corrective action plans and ensure remediation within acceptable timeframes.
• Perform security audits on high-risk Branches to enforce policy compliance.
• Provide management reporting on Branch cybersecurity maturity to CI’s CISO, Enterprise Risk Management and Business Management.
• Work with CI’s Information Security team to ensure alignment with corporate policies and standards.
• Identify and report / escalate potential areas for risk improvement.
• Remain informed on trends and issues in the information security industry, including current and emerging technologies and new attacks and threat vectors.
• Perform other functions as assigned.

WHAT YOU WILL BRING :

• 5+ years in security related positions focusing on audit and risk management
• Strong knowledge of areas in technology and cybersecurity concepts
• Practical experience in applying standards and frameworks (i.e. NIST, ISF).
• A strong understanding of the Financial Services industry
• General knowledge of applicable data privacy practices and laws (e.g. PIPEDA, GDPR)
• University degree or college diploma in Computer Science, engineering, information security management, information technology management, risk management, or comparable professional education / training in a relevant field
• Professional Designation such as Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise IT (CGEIT), and / or other related designations

CI Financial is an independent company offering global wealth management and asset management advisory services through diverse financial services firms.

Since 1965, we have consistently anticipated and responded to the changing needs of investors. We are driven by a commitment to provide individuals and institutions with the highest-quality investments and advice.

Our commitment to the highest levels of performance means that whatever their position, CI employees must be comfortable in a fast-paced environment that will stretch them to tap into their highest potential.

Employees with a healthy dose of ambition, a desire to commit to a curious mindset for continuous learning, and a willingness to go the extra mile thrive at CI.

WHAT WE OFFER

Modern HQ location within walking distance from Union Station

Flexible & Hybrid Work Program

Equipment Purchase Program

Training Reimbursement

Paid Professional Designations

Employee Share Purchase Program (ESPP)

Corporate Discount Program

Enhanced group benefits

Parental Leave Top up program

Fitness membership discounts

Volunteer paid Days

Complimentary vending machines

We are focused on building a diverse and inclusive workforce. If you are excited about this role and are not confident you meet all the qualification requirements, we encourage you to apply to investigate the opportunity further.