GRCA Analyst Job Listing at City of Edmonton in Edmonton, AB (Job ID 51059)

Description

We are seeking a highly motivated and experienced Governance, Risk, Compliance and Awareness Analyst (GRCA) to join our team. Reporting to the Program Manager of GRCA, this individual will play a critical role in leading and implementing initiatives related to risk management, compliance, IT control assurance, and security awareness.

The successful candidate will possess a strong understanding of cybersecurity principles and practices, and will be responsible for conducting risk assessments, developing security standards, and providing guidance on governance, risk, and compliance issues. This position requires excellent communication and collaboration skills, as well as the ability to work effectively with both internal and external stakeholders.

If you are passionate about cybersecurity and committed to protecting our organization's information assets, we encourage you to apply.

What will you do?

• Conduct risk assessments, monitor risk mitigation, and ensure effective remediation steps are taken
• Monitor compliance with cybersecurity directives and standards, ensuring adherence to legal and regulatory requirements
• Develop and deliver training programs to enhance cybersecurity awareness and promote secure behaviors among employees
• Develop and implement enterprise-wide security standards, specifications, and processes
• Define and track cybersecurity metrics, generate reports, and provide recommendations for management decisions
• Work closely with clients, third parties, and internal departments to facilitate risk analysis and identify acceptable levels of risk
• Organize and maintain cybersecurity documentation, including compliance documentation, security plans, and risk assessments
• Assist in the information and system classification process, ensuring appropriate access controls are in place
• Inform stakeholders about compliance and security-related issues, and provide guidance on critical issues
• Stay informed about industry best practices and emerging cybersecurity threats
• Monitor the legal and regulatory environment for developments, recommending changes to cybersecurity documentation as needed
• Maintain trusted access to a broad range of City of Edmonton systems, data, and technologies, emphasizing responsible and ethical use