TPRM Security Consultant

Job Description

Insight Global is looking for an Information Security Consultant to help remediate OSFI regulations findings for a large financial services company.

The primary finding was that third party suppliers should not have a document with facts stating the company's statement/answers that is too outdated due the high likelihood that this information has changed over time.

You will define and maintain risk acceptance and evidence currency criteria, including formal acceptance standards for SOC 1, SOC 2, business continuity, disaster recovery, and ISO reports. Establish and document clear thresholds (e.g., SOC 2 reports must be issued within an acceptable timeframe such as within 12 months of the assessment period end or aligned to the start of the risk assessment) and elevate exceptions where criteria are not met.

Interpret and operationalize OSFI regulatory expectations, translating supervisory guidance into actionable program requirements, pr...