Cyber Security Controls Tester & Consultant

Quality Assurance & Testing
Ontario - GTA
May 7, 2025
Contractor
Apply Now

Job Description

  • Contractor
  • Anywhere

Job Title: Cyber Security Controls Tester & Consultant
Location: Remote (Candidates must reside in the Greater Toronto Area)
Contract Duration: 6 months (High potential for extension)
Start Date: Late April / Early May 2025
About the Role:
We are seeking an experienced Cyber Security Controls Tester & Consultant to join a security and risk team supporting one of Canada’s leading financial institutions. This individual will be responsible for planning and executing control assessments, evaluating IT and operational risk, and driving regulatory compliance efforts.
This is a senior, client-facing role requiring exceptional communication skills, polished presentation, and hands-on experience with security control testing in complex IT environments.
Key Responsibilities:
Conduct risk-based testing of IT and operational controls to evaluate design and operating effectiveness.
Participate in all audit phases: planning, testing, documentation, and reporting.
Liaise with cross-functional teams and business stakeholders to gather evidence and present findings.
Support alignment of internal control processes with frameworks such as NIST, ISO 27001, SOC2, COBIT.
Work with 2LOD and 3LOD (Internal Audit, Risk, etc.) to support broader compliance objectives.
Draft clear, structured documentation and audit reports for senior leadership and regulatory reviews.
Coordinate control remediation efforts and verify effectiveness of corrective actions.
Ideal Candidate Profile:
5+ years in IT Audit, Cybersecurity, or Risk Management
Strong hands-on experience with security control testing, design evaluation, and risk assessments
Familiarity with IT governance and compliance frameworks (e.g., NIST, ISO, SOC2, OSFI regulations)
Polished communicator – must be able to present confidently to senior stakeholders (CIO, VP, etc.)
Big 4 consulting background (e.g., Deloitte, PwC, KPMG) or CPA with IT audit transition strongly preferred
Demonstrated experience in hybrid cloud environments is an asset
Preferred Certifications:
CISA, CRISC, CISSP (or in progress)
Note: Only candidates located in the Greater Toronto Area will be considered. Role is remote-first with occasional in-person engagements.

Please send your resume to tinak@corgta.com

Related Jobs