{bc}
linkedin

Information Security Compliance Analyst

Gowling WLG
Calgary, CAN
Full Time
Mid
Hybrid
2 weeks ago
ISO/IEC 27001NISTControlled Goods ProgramContract Security ProgramCISACRISC
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

ISO/IEC 27001NISTControlled Goods Program
Smart Apply

Full Job Posting

About Gowling WLG

  • Gowling WLG is an international law firm with offices in Canada, the U.K., Europe, the Middle East, and Asia.
  • The firm values excellence, diversity, and collaboration.

Profile

  • We are looking for an Information Security Compliance Analyst.
  • This role assesses and manages client contractual and OCG requirements for information security.
  • Leads responses to client security assessments and organizes third party and internal security audits.
  • Manages obligations under Controlled Goods Program and Contract Security Program.
  • This position can be based in any Canadian office; primarily remote with in office attendance as required.

Client & Contractual Compliance

  • Review and assess client contractual obligations and Outside Counsel Guidelines related to cybersecurity, confidentiality, and information governance.
  • Coordinate and manage the firm's responses to client security assessments, questionnaires, and audits.
  • Track compliance obligations and provide clear reporting to firm leadership and practice groups.
  • Collaborate with IS Coordinator and IT to ensure controls align with client and industry standards (OCG, ISO/IEC 27001:2022, NIST, etc.).

ISO 27001 Compliance & Audits

  • Organize and manage third party security audits and internal audits to ensure continuous improvement of the ISMS.
  • Work with the Information Security Coordinator to prepare for and assist in annual ISO/IEC 27001 audits.
  • Monitor the effectiveness of security controls, policies, and procedures, ensuring compliance with ISO/IEC 27001:2022 requirements.

Controlled Goods Program (CGP) & Contract Security Program (CSP)

  • Act as the firm's Designated Official under the Controlled Goods Program.
  • Serve as the firm's Company Security Officer under Canada's Contract Security Program.
  • Oversee personnel security screening, compliance training, and incident reporting.
  • Act as primary liaison with Public Services and Procurement Canada and other regulatory bodies.

Governance, Training & Risk Management

  • Develop, implement, and maintain procedures and training programs that support compliance.
  • Conduct regular risk assessments and internal reviews to identify compliance gaps and oversee corrective actions.
  • Provide ongoing compliance training and awareness for lawyers, staff, and management.
  • Maintain comprehensive documentation and evidence of compliance activities.

Qualifications

  • Bachelor's degree in information security, Business Administration, or a related field.
  • 5+ years of experience in compliance, cybersecurity governance, or regulatory affairs (law firm or professional services sector strongly preferred).
  • Demonstrated knowledge of ISO/IEC 27001:2022 and experience with internal/external audit preparation and management.
  • Required certifications: ISO/IEC 27001:2022 Lead Auditor or Lead Implementer; CGP DO Certification; CSP CSO training (or willingness to obtain).
  • Asset certifications: CISA, ISC2 CGRC, CRISC, CIPP/C, CIPM, Security+, NIST Cybersecurity Framework training.
  • Familiarity with Canadian security programs: CGP and CSP.
  • Experience serving as or supporting a DO and/or CSO is an asset.
  • Strong understanding of client facing compliance processes.
  • Excellent organizational, communication, and problem solving skills.
  • Proven ability to handle sensitive information with discretion.
  • Bilingualism (English/French) is considered an asset.

Benefits/Perks

  • 100% employer paid health, dental, and mental health coverage, plus annual lifestyle spending allowance.
  • Benefits coverage from day one.
  • 15+ vacation days and hybrid work flexibility.
  • Parental leave top up for 26 weeks after 12 months.
  • Group Retirement Savings Plan with employer match.
  • Financial protection through short & long term disability, life, accident & critical illness insurance.
  • Employee & Family Assistance Program and mental health support.
  • Recognition awards and appreciation events.
  • Perks and preferred pricing programs, referral bonuses.

Salary Range

  • The starting range for this role is $100,000 to $115,000 per year.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Gowling WLG