Cyber Security Governance, Risk and Compliance Manager
<p><strong><u>This is a hybrid position (3x a week in the office) in Downtown Toronto. </u></strong></p><p><br></p><p><br></p><p>Do you have experience leading ISO 27001 audits? Are you excited by the opportunity to manage cybersecurity programs for AI? </p><p><strong> </strong></p><p><strong> </strong></p><p>This leadership position is focused on building and executing cyber risk management programs aligned with emerging technologies such as AI/ML, quantum systems, and other disruptive innovations. As a hands-on contributor, you will develop and enforce security frameworks that meet compliance obligations. Your work will ensure alignment with enterprise-wide risk management initiatives while supporting regulatory standards.</p><p><strong> </strong></p><p> </p><p><strong>What you will do and how you will make an impact … </strong></p><p><strong> </strong></p><p><br></p><p><br></p><ul><li>Lead ISO 27001 audits from initial assessment and control validation through final reporting and certification processes.</li></ul><p><br></p><p><br></p><ul><li>Oversee risk management and compliance for AI platforms and emerging technologies, ensuring alignment with frameworks like the NIST AI Risk Management Framework and ISO/IEC standards.</li></ul><p><br></p><p><br></p><ul><li>Collaborate with cross-functional teams to evaluate technology risks associated with new innovations (e.g., generative AI and quantum computing) and implement solutions to mitigate exposure.</li></ul><p><br></p><p><br></p><ul><li>Guide risk assessments and develop policies for third-party platforms and vendors. </li></ul><p><br></p><p><br></p><ul><li>Establish and operationalize security controls across hybrid cloud and enterprise landscapes, leveraging automation and AI-related safeguards.</li></ul><p><br></p><p><br></p><ul><li>Design and enforce governance structures to ensure compliance with industry regulations, including those specific to AI governance.</li></ul><p><br></p><p><br></p><ul><li>Represent cybersecurity leadership in enterprise-wide risk discussions, incident response planning, and resiliency testing for advanced technologies.</li></ul><p><br></p><p><br></p><ul><li>Support regulatory alignment efforts by tracking developments in cybersecurity laws and standards and incorporating these into organizational compliance programs.</li></ul><p><br></p>
<p><br></p><p><br></p><p>· Proven experience in executing end-to-end ISO 27001 audits</p><p><br></p><p><br></p><p>· Extensive experience developing and managing cyber risk programs in highly regulated industries.</p><p><br></p><p><br></p><p>· Working knowledge of AI governance practices, including secure model design, bias mitigation, and threat modeling for machine learning platforms.</p><p><br></p><p><br></p><p>· Expertise in auditing complex systems using global frameworks such as ISO 27001, PCI-DSS, SOC 2, and NIST standards.</p><p><br></p><p><br></p><p>· A strong technical background in cybersecurity, emerging technology security risks, and compliance frameworks.</p><p><br></p><p><br></p><p>· Demonstrated ability to manage cyber metrics, security dashboards, and performance scorecards</p><p><br></p><p><strong> </strong></p><p><strong>Nice to have: </strong>CISSP or CISM, CISA, ISO 27001 Lead Implementer/Auditor</p><p><strong> </strong></p><p><br></p><p>Does this sound like it was written for you? Excellent! Please apply and let’s explore this together.</p><p><br></p><p><br></p><p><strong>The interview process … </strong></p><p><br></p><p><br></p><p>If you're interested in pursuing this role, please apply to this posting. If you are selected for the next stage, I will contact you for an initial discussion. This will be a chance for us to discuss the job requirements in greater detail, as well as your career goals and preferences for your next position. We can also discuss other opportunities which may fit what you're looking for.</p><p><br></p><p><br></p><p>Please feel free to reach out and find me on LinkedIn by searching my name: Tanvi Krishna</p><p><strong> </strong></p><p><strong> </strong></p><p><strong>Compensation & benefits … </strong></p><p><br></p><p><br></p><p>This is a full-time and permanent position that includes a competitive base salary, pension program, wellness program, extended health and dental benefits, and paid vacation.</p>
<p>Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.</p>
<p>Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. <a href="https://www.roberthalf.com/ca/en/mobile-app" target="_blank">Download the Robert Half app</a> and get 1-tap apply, notifications of AI-matched jobs, and much more.</p>
<p>Questions? Call your local office at 1.888.490.4429. All applicants applying for Canadian job openings must be authorized to work in Canada.</p>
<p>Only job postings for jobs located in Quebec appear in French.</p>
<p>© 2025 Robert Half. By clicking “Apply Now,” you’re agreeing to <a href="https://www.roberthalf.com/ca/en/terms">Robert Half’s Terms of Use</a>.</p>
- Toronto, ON
- onsite
- Permanent
-
140000.00 - 180000.00 CAD / Yearly
- <p><strong><u>This is a hybrid position (3x a week in the office) in Downtown Toronto. </u></strong></p><p><br></p><p><br></p><p>Do you have experience leading ISO 27001 audits? Are you excited by the opportunity to manage cybersecurity programs for AI? </p><p><strong> </strong></p><p><strong> </strong></p><p>This leadership position is focused on building and executing cyber risk management programs aligned with emerging technologies such as AI/ML, quantum systems, and other disruptive innovations. As a hands-on contributor, you will develop and enforce security frameworks that meet compliance obligations. Your work will ensure alignment with enterprise-wide risk management initiatives while supporting regulatory standards.</p><p><strong> </strong></p><p> </p><p><strong>What you will do and how you will make an impact … </strong></p><p><strong> </strong></p><p><br></p><p><br></p><ul><li>Lead ISO 27001 audits from initial assessment and control validation through final reporting and certification processes.</li></ul><p><br></p><p><br></p><ul><li>Oversee risk management and compliance for AI platforms and emerging technologies, ensuring alignment with frameworks like the NIST AI Risk Management Framework and ISO/IEC standards.</li></ul><p><br></p><p><br></p><ul><li>Collaborate with cross-functional teams to evaluate technology risks associated with new innovations (e.g., generative AI and quantum computing) and implement solutions to mitigate exposure.</li></ul><p><br></p><p><br></p><ul><li>Guide risk assessments and develop policies for third-party platforms and vendors. </li></ul><p><br></p><p><br></p><ul><li>Establish and operationalize security controls across hybrid cloud and enterprise landscapes, leveraging automation and AI-related safeguards.</li></ul><p><br></p><p><br></p><ul><li>Design and enforce governance structures to ensure compliance with industry regulations, including those specific to AI governance.</li></ul><p><br></p><p><br></p><ul><li>Represent cybersecurity leadership in enterprise-wide risk discussions, incident response planning, and resiliency testing for advanced technologies.</li></ul><p><br></p><p><br></p><ul><li>Support regulatory alignment efforts by tracking developments in cybersecurity laws and standards and incorporating these into organizational compliance programs.</li></ul><p><br></p>
- 2025-08-22T13:28:42Z