Senior IT Compliance & Cyber Risk Analyst

Senior IT Compliance & Cyber Risk Analyst (Contract – Toronto, ON | Hybrid)

📍 Location: Toronto, ON (Hybrid)
📅 Contract: 12 months, renewable
💼 Type: Contract

🌐 About the Role
Are you a compliance leader who thrives in audit-heavy, regulated environments? Our client is seeking a Senior IT Compliance & Cyber Risk Analyst to drive enterprise compliance, audit readiness, and risk management initiatives across a global, regulated landscape.
This role is at the intersection of technology, cybersecurity, and governance—with a sharp focus on PCI-DSS and GxP/GMP compliance. You’ll partner with IT, Security, and business stakeholders to ensure the organization remains resilient, audit-ready, and aligned with evolving regulatory standards.

🔑 What You’ll Do
Compliance, Risk & Audit
Lead PCI-DSS & GxP/GMP compliance assessments, remediation tracking, and audit readiness.
Conduct IT/cybersecurity risk assessments, control testing, and gap analysis.
Support internal/external audits: evidence collection, walkthroughs, remediation.
Perform impact assessments & root-cause analysis for incidents and findings.
Maintain and enforce security, privacy, and compliance policies.

🎯 What We’re Looking For
5+ years in IT compliance, cybersecurity risk, or technology audit.
Hands-on expertise with PCI-DSS and GxP/GMP compliance.
Strong audit support experience (control testing, documentation, remediation).
Proven ability to deliver internal training programs.
Excellent stakeholder engagement & communication skills.

Preferred Certifications:
CISA, CISSP, CISM (others are an asset).

Nice-to-Have:
Experience with TPRM, SOX, data privacy, or GRC tooling.
Background in building/maturing enterprise compliance programs.

📩 Ready to Apply?
If you’re a compliance professional with deep PCI & GMP/GxP expertise and thrive in audit-driven environments, we’d love to connect.
📧vchhabra@gttit.com