Information Security : GRC / ISRM Lead

Description

Position at DNEG DNEG’s expanding Information Security (InfoSec), Governance, Risk and Compliance (GRC) and Data Privacy programs have the requirement to add an experienced InfoSec Governance, Risk and Compliance (GRC) Lead to the expanding global team. The role will be responsible for successfully managing and steering the Information Security GRC and Privacy function within DNEG. The InfoSec team are responsible for ensuring that the confidentiality, integrity, and availability (CIA) of its, and client’s, confidential data, PII and systems and services are always maintained. It’s for this reason that an experienced InfoSec GRC function is required to work collaboratively with the team, peers, and business stakeholders to ensure that all the InfoSec GRC initiatives / projects are aligned, maintained, and managed effectively to meet the requirements of both tactical roadmap requirements and to the overall successful delivery of the wider InfoSec strategy. 1. Mandatory Requirements and Expectations

An experienced individual that works in a methodical and concise manner is required to successfully manage the InfoSec GRC and Privacy function at DNEG.

• Experience of working within a highly technical and multi-faceted InfoSec security program.
• Have excellent interpersonal, analytical, assessment and documentation skills which can be effectively utilized to develop and deliver against highly critical and GRC and Privacy assurance requirements.
• Working closely with the Information Security Program Manager (ISPM) to successfully prioritize, steer and deliver the GRC and privacy facets of the InfoSec program.
• Experience of working within multi-faceted audit environment.
• Demonstrable experience of delivering, maintaining, managing, and maturing a global GRC program to meet the requirements of a highly complex environment.
• Excellent track record of working with both internal and client driven auditable environments and ensure that control areas are effectively managed from a risk-based methodology. 2. Duties and Operational Responsibilities
• Manage, maintain, and mature the GRC and function within DNEG.
• Work proactively with the wider InfoSec team to ensure that all GRC and audit deliverables are suitably communicated and documented.
• Be able to work effectively in an independent capacity and as part of the InfoSec team.
• Utilize effective task management, communication, and leadership skills.
• Work in close partnership and collaborate with peers and internal technical teams. 3. Job Requirements

3.1 Mandatory Job Requirements

A successful candidate will meet the majority of the requirements listed below and will be able demonstrate suitable experience in competencies in each of the following :

A successful candidate will have experience with the desired requirements listed below and will be able demonstrate suitable experience in competencies in each of the following :

3.3 Education

About Us

We are DNEG, one of the world’s leading visual effects and animation companies for the creation of award-winning feature film, television, and multiplatform content. We employ more than 9,000 people with worldwide offices and studios across North America (Los Angeles, Montréal, Toronto, Vancouver), Europe (London), Asia (Bangalore, Mohali, Chennai, Mumbai) and Australia (Sydney).

At DNEG, we fundamentally believe that embracing our differences is a vital component of our collective success. We are committed to creating an equitable, diverse and inclusive work environment for our global teams, where everyone feels they matter and belong. We welcome and encourage applications from all, regardless of background, experience or disability. Please let us know if you need any adjustments or support during the application process, we will do our best to accommodate your needs. We look forward to meeting you!