Compliance and Risk Specialist

Canadian Bank Note Company (CBN) is a trusted leader in secure technology solutions for governments and businesses worldwide. The company operates across various business domains, including currency production, border security, civil identity, driver identification and vehicle information, excise control, lottery and charitable gaming.Our 7 Core Principles shape and guide our corporate behaviours and underpin the sense of community you will experience at CBN. We pride ourselves on fostering a supportive and collaborative work environment, where employees are valued for their contributions and encouraged to grow professionally.At CBN we seek long-term relationships with our employees and recognize and reward them with a competitive total compensation package that includes:An industry-leading defined contribution pension plan with company matching contributions (up to 5%) and payment of service fees;Best-in-class health, medical, and life insurance benefits;Access to virtual and telehealth services and apps; andVery progressive fertility, adoption, and surrogacy benefits to support all definitions of family. Job DescriptionInternal Job Title: Compliance and Risk SpecialistJob Type: Permanent, Full-TimeJob Location: CanadaWork Model: RemotePosition SummaryAs a Compliance and Risk Specialist at CBN, you will support the Compliance and Risk team in leading and supporting compliance initiatives, conducting risk assessments and remediation activities, and contributing to the development of security strategies for systems deployed in Canada, the United States, and Europe. This role focuses on determining and assessing compliance direction, coordinating and tracking compliance-related tasks to completion, and ensuring effective collaboration across teams.ResponsibilitiesCompliance InitiativesManage and track compliance activities around global systems including components of the ISO, SOC 2, and PCI compliance and other jurisdictional compliance regulations. Examine products and engage stakeholders and customers to establish a strategy for handling compliance-at-scale for both compliance-focused and cost-sensitive markets. Prepare documentation and evidence for audits and compliance assessments. Security StrategyManage and coordinate the execution of security strategies and assessments, ensuring all related tasks and deliverables are completed on time and aligned with Canada/US and global security requirements. Support initiatives to identify, investigate, and improve security risks within CBN Operations Global Infrastructure. Enhance CBN’s AppSec pipeline to address risk assessments in an automated fashion at scale based on developed strategies. Risk Assessment and RemediationConduct Risk Assessments within customer systems to quickly assess associated risks, recommend actions, and develop plans for remediation. Understand the risk/compliance gaps in our global systems, articulate a vision, and work across teams to get us there. Stakeholder EngagementReport on compliance project status and work with teams to promptly address delays or issues. Take an active role in educating customers, executives, stakeholders, infrastructure personnel, and developers on best practices for security. Build relationships with stakeholders across groups to understand assessment needs, advise on how it should be handled, and the associated notification process. Various other Duties and Responsibilities. QualificationsEducation and KnowledgeEducationBachelor’s degree in Computer Science, Information Technology or related field or an equivalent combination of relevant education and additional work experienceCertification(s)One (or more) of NIST800-53, ISO27001, SOC2, PCI, FedRamp, StateRampSANA, ISACA or GIAC is an assetKnowledge of the following:Compliance standards, frameworks and toolsThreat and risk management principles and methodologiesRisk assessment practices and methodologiesExperience3+ years experience in compliance, or IT risk managementExperience using structured approaches to risk assessment (e.g. HTRA, TRA, ITSG-33, CSF, FSIR, STAR)Strong organizational skills and familiarity with Agile project methodologies. Experience using Unified Compliance Frameworks and GRC tools is an assetExperience with Azure/AWS compliance is an assetTechnical SkillsProficiency with M365Presentation skillsSoft Skills And CompetenciesCritical thinking skillsAnalysis, problem solvingExcellent Interpersonal skillsCommunication, relationship building, teamwork and collaborationOrganization/time management/prioritization skillsAttention to detailAdaptableGrowth mindsetMandatory RequirementsLanguage(s): Fluency in English (reading, writing, speaking)Travel: Ability to travel domestically/internationally approx. 1-2 weeks/yearSecurity Clearance: Ability to obtain and maintain Government of Canada Reliability Secret (Level II) clearanceAdditional InformationCanadian Bank Note Company (CBN) is committed to fostering a diverse and inclusive workplace where all employees are treated with dignity and respect. We are proud to be an equal opportunity employer and do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other legally protected status.We provide equal employment opportunities to all individuals, including women, Indigenous Peoples, persons with disabilities, visible minorities, and members of the 2SLGBTQ+ community. Our commitment to equity extends to all aspects of employment, including recruitment, hiring, promotion, compensation, benefits, training, and development. As part of our commitment to providing an inclusive, barrier free selection process, we ask that if you are contacted regarding the competition for this position, you advise the interview coordinator or any accommodation measures you may require.At CBN, we value the unique perspectives and experiences that each employee brings to our organization, and we are committed to maintaining a workplace that reflects the diverse communities we serve. We believe that diversity and inclusion drive innovation and success, and we strive to create an environment where every employee can thrive and contribute to our collective goals.