This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Security Risk Assessor based in Canada.
This role sits at the core of enterprise cybersecurity governance, ensuring that applications, systems, and third-party environments meet strict security, compliance, and risk management standards. You will act as a trusted advisor, conducting in-depth risk assessments across cloud, infrastructure, and application landscapes while translating technical vulnerabilities into clear business risk insights. The position combines analytical rigor with strong stakeholder communication, supporting both technical teams and executive leadership. You will help strengthen security posture by identifying gaps, recommending controls, and driving remediation efforts. Operating in a dynamic, enterprise-scale environment, you will contribute directly to protecting confidentiality, integrity, and availability of critical systems. This is a high-impact role for a professional who thrives at the intersection of cybersecurity, risk, and business enablement.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Security Risk Assessor based in Canada.
This role sits at the core of enterprise cybersecurity governance, ensuring that applications, systems, and third-party environments meet strict security, compliance, and risk management standards. You will act as a trusted advisor, conducting in-depth risk assessments across cloud, infrastructure, and application landscapes while translating technical vulnerabilities into clear business risk insights. The position combines analytical rigor with strong stakeholder communication, supporting both technical teams and executive leadership. You will help strengthen security posture by identifying gaps, recommending controls, and driving remediation efforts. Operating in a dynamic, enterprise-scale environment, you will contribute directly to protecting confidentiality, integrity, and availability of critical systems. This is a high-impact role for a professional who thrives at the intersection of cybersecurity, risk, and business enablement.
Accountabilities:
- Conduct security risk assessments across applications, systems, infrastructure, cloud environments, and third-party vendors
- Analyze and document identified risks, producing clear risk reports for technical and business stakeholders
- Provide advanced consultation on information security, compliance, policy, and risk remediation strategies
- Review contracts, application designs, and integration plans to identify security risks and control gaps
- Recommend and support implementation of security controls, process improvements, and risk mitigation actions
- Ensure confidentiality, integrity, and availability of enterprise data across systems and environments
- Communicate complex security risks in clear, business-friendly language for executive audiences
- Identify opportunities to improve security processes and support continuous enhancement of best practices
- Collaborate with cross-functional teams to troubleshoot issues and drive remediation efforts
- Maintain high-quality documentation supporting risk assessment activities and governance requirements
- 5+ years of experience in cybersecurity, with exposure to multiple domains such as IT governance, access control, incident response, data protection, IAM, or security auditing
- 5+ years of hands-on experience with risk assessment frameworks and security evaluation methodologies
- Strong understanding of information security principles, best practices, and enterprise security standards
- Experience conducting risk assessments across cloud, infrastructure, applications, and third-party systems
- Familiarity with regulatory frameworks such as HIPAA and other compliance requirements (where applicable)
- Strong analytical and problem-solving skills with attention to detail and structured thinking
- Excellent written and verbal communication skills, including experience presenting to senior stakeholders
- Ability to manage multiple priorities, work independently, and drive initiatives to completion
- Strong collaboration, facilitation, and stakeholder management skills in cross-functional environments
- Experience with security tools is a plus but not required
- Competitive hourly compensation aligned with Canadian market standards
- Fully remote work flexibility across Canada
- Comprehensive health and wellness benefits package
- Paid time off and holiday entitlements
- Professional development and certification support
- Opportunity to work on large-scale enterprise security environments
- Exposure to advanced cybersecurity risk practices and frameworks
- Inclusive and globally connected work environment.
In this role, you will lead and execute security risk assessments across complex enterprise environments, ensuring alignment with security frameworks, regulatory requirements, and best practices. You will support the continuous improvement of security posture through analysis, documentation, and cross-functional collaboration.
Requirements
This role requires strong experience in cybersecurity risk assessment, governance, and enterprise security frameworks, along with the ability to communicate effectively across technical and non-technical stakeholders.