Cybersecurity Governance, Risk & Compliance (GRC) Specialist – BFSI

Location: Greater Toronto Area, Ontario (Hybrid)

About the Role

We are seeking a Cybersecurity Governance, Risk & Compliance (GRC) Specialist to support enterprise cybersecurity governance, risk management, regulatory compliance, and audit initiatives within a highly regulated Banking, Financial Services, and Insurance (BFSI) environment.

The ideal candidate will possess strong experience managing cybersecurity risk programs, regulatory compliance requirements, and security governance frameworks while partnering with Risk, Audit, Compliance, and Technology teams.

IMPORTANT NOTE – BFSI EXPERIENCE REQUIRED

Candidates must have Prior experience working within Banking, Financial Services, Insurance, Wealth Management, Capital Markets, Lending, Payments, Credit Unions, or FinTech organizations.

Experience supporting highly regulated environments, financial applications, customer financial data, and regulatory requirements is mandatory.

Candidates without BFSI industry experience will not be considered.

Responsibilities

• Conduct cybersecurity and technology risk assessments.
• Develop and maintain cybersecurity policies, standards, and procedures.
• Support internal and external audits.
• Perform third-party/vendor risk assessments.
• Maintain risk registers and remediation plans.
• Ensure compliance with OSFI B-13, NIST, ISO 27001, PCI-DSS, SOC 2, and related frameworks.
• Develop governance reporting and executive dashboards.
• Collaborate with Compliance, Audit, Legal, and Technology teams.

Required Qualifications

• 5+ years of Cybersecurity GRC experience.
• 3+ years of BFSI industry experience.
• Experience with OSFI, PCI-DSS, NIST CSF, ISO 27001, and cybersecurity risk management.
• Strong stakeholder management skills.
• Excellent written and verbal communication.

Preferred Certifications

• CISSP
• CISM
• CRISC
• ISO 27001 Lead Auditor

For more details reach at resumes@navitassols.com