Job Title: Information Security Specialist – Regulatory & Audit Lead
Location: Greater Toronto Area (GTA), Canada
Note: "Prior experience in Banking or regulated Financial Services is non-negotiable"
We are seeking an experienced Information Security Specialist to lead regulatory and audit initiatives within a highly regulated Financial Services environment. This role is critical in driving audit remediation efforts, strengthening governance frameworks, and ensuring compliance with internal and external regulatory requirements.
The ideal candidate will bring deep expertise in information security, audit, and risk management, along with a strong background in banking or regulated Financial Services.
- Lead the remediation of high-severity internal audit findings across technology and security domains
- Partner with Internal Audit and Operational Risk Management (ORM) teams to ensure timely and effective closure of audit issues
- Interpret regulatory requirements and translate them into actionable security controls and processes
- Establish and operationalize a net-new governance function from the ground up
- Define and implement security governance frameworks, policies, standards, and procedures
- Ensure alignment with enterprise risk management and compliance objectives
- Oversee governance of a federated patching program spanning 30+ teams and 50+ asset classes
- Ensure consistent adherence to patching standards, timelines, and risk mitigation strategies
- Monitor and report on vulnerabilities, remediation progress, and compliance posture
- Collaborate with senior stakeholders including Internal Audit, ORM, and CIO-level leadership
- Provide regular updates, reporting, and risk insights to executive audiences
- Act as a key liaison between cybersecurity, infrastructure, and business teams
- Track remediation progress, risks, and dependencies across multiple teams
- Develop dashboards and reporting mechanisms to measure compliance and performance
- Drive continuous improvement initiatives within security governance and audit processes
- Minimum 7+ years of experience in Information Security, Risk, or Audit roles
- Mandatory experience within Banking or regulated Financial Services environments
- Strong background in audit remediation, regulatory compliance, and governance
- In-depth knowledge of security frameworks, risk management, and control environments
- Proven experience managing cross-functional initiatives in complex organizations
- CISM (Certified Information Security Manager) and/or
- CISA (Certified Information Systems Auditor) and/or
- CISSP (Certified Information Systems Security Professional)
- Experience working directly with Internal Audit and ORM functions
- Familiarity with vulnerability management and patch governance frameworks
- Experience building governance functions or control frameworks from scratch
- Knowledge of regulatory expectations within Financial Services (e.g., OSFI, SOX, or equivalent)
- Strong analytical and problem-solving skills
- Excellent communication and executive presentation abilities
- Ability to influence and manage senior stakeholders
- High attention to detail with a risk-focused mindset
- Prior experience in Banking or regulated Financial Services is non-negotiable
- Ability to work in a hybrid or onsite model within the GTA region (as required)
For more details reach at [email protected].
About Navitas Partners, LLC: It is a certified WBENC and one of the fastest-growing healthcare staffing firms in the US providing Medical, Clinical and Non-Clinical services to numerous hospitals. We offer the most competitive pay for every position we cater. We understand this is a partnership. You will not be blindsided, and your salary will be discussed upfront.
