CrawlJobs Logo

Technology Risk Governance Lead/ Security Governance Program Lead

collabera.com Logo

Collabera

Location Icon

Location:
Canada , Toronto

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Contract work

Salary Icon

Salary:

75.00 - 85.00 CAD / Hour
Save Job
Save Icon
Apply Position

Job Responsibility:

  • Implement and operationalize the security prioritization scorecard across 300–350 applications
  • Establish a scalable and repeatable assessment model
  • Transition the initiative into a sustainable long-term operating cadence before determining future “version 2.0” enhancements

Requirements:

  • 8–12+ years of experience in Technology Risk, Security Risk, or Information Security Governance
  • Experience conducting risk assessments and delivering security/risk programs end-to-end
  • Strong understanding of security controls and frameworks (NIST, ISO preferred)
  • Experience building or tailoring control libraries and implementing standards
  • Ability to translate best-practice frameworks into practical, scalable implementation
  • Strong stakeholder management skills (Tech, Data, Security, Application Owners)
  • Demonstrated program/project delivery experience (not purely advisory)
  • Ability to operate independently and drive initiatives forward

Nice to have:

  • Financial services or institutional asset management experience
  • Experience working within AWS cloud environments
  • Exposure to AI security / AI governance initiatives
  • Experience scaling governance programs into BAU operating models
  • Background balancing risk rigor with business enablement priorities
What we offer:
  • vacation pay
  • public holidays
  • leaves of absence
  • other legally mandated benefits or payments

Additional Information:

Job Posted:
March 01, 2026

Expiration:
March 29, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Collabera - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Technology Risk Governance Lead/ Security Governance Program Lead

Legal Third-Party Management and Information Security Risk Lead

As part of the Legal Outside Counsel, Third Party Management and Operations team...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to assess residual risk in complex vendor environments and make sound defensible recommendations
  • Experience applying risk-based frameworks to prioritize issues and mitigation efforts
  • Strong interpersonal skills for engaging legal, compliance, technology, procurement and senior risk stakeholders
  • Proficiency in creating clear and concise reports dashboards and governance experience
  • Leading or supporting cross functional projects, ability to support risk transformation initiatives, and integrate evolving legal tech and regulatory guidance into assessment methodologies
  • Bachelor’s degree or equivalent
Job Responsibility
Job Responsibility
  • Manage and oversee a set of complex initiatives that span multiple lines of business in the Cyber Security (CS), Information Security (IS) and Third-Party Risk Management (TPRM) space for Global Legal Solutions
  • Assess the risks and effectiveness of Third Party IS processes and controls based on enterprise requirements ensuring the IS risk is within tolerance
  • Evaluate the design and execution of the Legal IS Program, identifies potential enhancements and drives implementation of governance, methodologies and tools required for the effective oversight of Third-Party Management IS risk to continually strengthen the Program
  • Assist the day-to-day activities within the TPM Risk and Info Sec group
  • Monitor, track and control outcomes to resolve issues, conflicts, dependencies and critical path deliverables related to issues and gaps found in the TPISA process
  • Drive implementation of enterprise Third Party Management controls required to be assessed as part of the Managers Control Assessment, reviews results, and determines if remediation actions are appropriate
  • Document control design, testing methodology, and evidence for effectiveness reviews in compliance with Citi's Risk and Control Standards
  • Contribute to quarterly control certifications, issue management processes and audit engagements
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Private medical insurance packages to suit your personal circumstances
  • Fulltime
Read More
Arrow Right

Technology Risk Governance Manager

Help us deliver a better tomorrow. Australia Post is delivering for all Australi...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in Technology Risk and IT Governance within large, complex organisations
  • Proven experience in risk management supporting technology or digital functions
  • Expertise in technology, digital and information governance, security risk, and operational frameworks such as ISO27001/2, ITIL, E8, NIST, and COBIT
  • Familiarity with APRA CPS 230/234, ISO 31000, or similar standards
  • Ability to translate and present complex technical and operational information into simple business language to engage business stakeholders
  • Demonstrated ability to influence, challenge, and engage senior business and technology leaders
  • Maintaining strong objective relationships beyond span of control
  • Excellent analytical, problem-solving, and communication skills
Job Responsibility
Job Responsibility
  • Support the proactive identification, assessment, and facilitate mitigation of technology risks across operational environments and transformation programs
  • Plan and execute regular and ad-hoc reviews into areas of significant technology risks to the organisation, including deep dives, and facilitating commercial solutions for any issues that may arise
  • Partner with delivery teams, architects, and operational leaders to integrate risk management into business-as-usual processes and project lifecycles
  • Maintain a current risk register reflecting emerging threats, system dependencies, and control effectiveness
  • Facilitate regular risk and control assessments and timely remediation of identified gaps
  • Support the Technology & Cyber Controls Assurance function in undertaking reviews against the minimum policy, standard and control requirements
  • Undertake targeted reviews of the effectiveness of key Technology controls and provide reporting & insights
  • Develop and implement risk management processes, libraries and documentation that will help improve transparency and management of enterprise and business unit technology risks and associated compliance and operational requirements
  • Provide risk advisory support for technology operations and systems within transformation projects
  • Review and challenge technology designs, change management processes, and vendor engagements from a risk perspective
What we offer
What we offer
  • Career Development: opportunities for professional growth and development
  • Work-Life Balance: flexible working arrangements
  • Employee Wellbeing: resources and support to ensure a healthy and safe work environment
  • Fulltime
Read More
Arrow Right

Technology Risk Manager

Help us deliver a better tomorrow. Australia Post is delivering for all Australi...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in Technology Risk or IT Governance within large, complex organisations
  • Proven track record in risk management supporting technology or digital functions
  • Expertise in technology, digital and information governance, security risk, and operational frameworks such as ISO27001/2, ITIL, E8, NIST, and COBIT
  • Familiarity with APRA CPS 230/234, ISO 31000, or equivalent risk standards
  • Ability to translate and present complex technical and operational information into simple business language
  • Demonstrated ability to influence, challenge, and engage senior business and technology leaders
  • Maintaining strong objective relationships beyond span of control
  • Excellent analytical, problem-solving, and communication skills
Job Responsibility
Job Responsibility
  • Lead proactive identification, assessment, and facilitate mitigation of technology risks across operational environments and transformation programs
  • Plan and execute regular and ad-hoc reviews into areas of significant technological risks
  • Partner with delivery teams, architects, and operational leaders to integrate risk management into business-as-usual processes and project lifecycles
  • Lead the development of BU level risk profiles
  • Embed the enterprise risk management (ERM) framework for technology and digital operations within Line 1
  • Facilitate regular risk and control assessments and timely remediation of identified gaps
  • Develop and implement risk management processes, libraries and documentation
  • Support continuous improvement and consistency in governance processes, reporting, and escalation pathways
  • Provide risk advisory support for technology operations and systems within transformation projects
  • Review and challenge technology designs, change management processes, and vendor engagements from a risk perspective
What we offer
What we offer
  • Career Development opportunities
  • Flexible working arrangements for work-life balance
  • Employee Wellbeing resources and support
  • Inclusive and barrier-free recruitment process and workplace
  • Fulltime
Read More
Arrow Right

IT Governance Program Manager

Develop, deliver, and perform management functions in adherence with a Program M...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
talentacquisitionconcepts.com Logo
Talent Acquisition Concepts
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A current, active SECRET Clearance
  • A bachelor's degree in computer science or a related field
  • An active Project Management Professional (PMP) certification from the Project Management Institute (PMI)
  • 12 years related PM experience
  • At least 7 years of total work experience in IT governance, risk management, audit, compliance, business continuity plan management, or other related information security domains
  • 5+ years managing cross-functional teams and influencing senior-level management and stakeholders
  • Previous experience and strong understanding of IT Governance, the Software Development Life Cycle, and Technology Acquisitions
  • Advanced comprehension of security and risk best practices and industry standards from a business, technical, and operational perspective
  • Proven experience leading and developing staff members
  • Ability to maintain the highest level of confidentiality
Job Responsibility
Job Responsibility
  • Provide Information Technology Governance Support to the Department of State (DOS), Bureau of Consular Affairs (CA), Office of Consular Systems and Technology (CST)
  • Assist CST’s ITG Program by ensuring the continued alignment of CA’s technology strategy with its business strategy
  • Focus on the links between business objectives and project objectives
  • Develop, implement, and maintain ITG services by defining the processes that ensure the effective and efficient use of IT
  • Provide reports specific to this contract necessary for effective contract oversight to the COR and GTMs
  • Ensure that all work activities are performed in a timely and cost-effective manner while maintaining the highest quality of performance
  • Create a project plan for the overall contract including a Work Breakdown Structure (WBS), resources, milestones, deliverables, and activities
  • Form a Mission Statement for the task order demonstrating alignment with CA/CST’s mission
  • Adhere to management structure, organizations, roles and responsibilities, and communication methodology
  • Establish a management approach to providing all contract support services
What we offer
What we offer
  • Health, dental, and vision coverage
  • A retirement plan
  • A profit-sharing/bonus plan
  • Paid Time Off
  • Holidays
  • Sick days
  • A fun, creative work environment
  • Fulltime
Read More
Arrow Right

Principal Security Governance Engineer

The Principal Security Governance Engineer will lead the development and impleme...
Location
Location
United States , San Francisco
Salary
Salary:
183800.00 - 295200.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • 10+ years of experience in security governance, risk management, and compliance, preferably in a large-scale SaaS/Product environment
  • Strong knowledge of cybersecurity principles, technology-related regulations, and IT governance frameworks
  • Experience in leading security awareness and training programs
  • Excellent communication, documentation, presentation and leadership skills, with the ability to influence and engage stakeholders at all levels
  • CRISC, CISSP, CISA, or equivalent certifications are preferred.
Job Responsibility
Job Responsibility
  • Design and implement comprehensive security governance frameworks and risk management strategies using Atlassian products, tools and systems
  • Evaluate and report on the effectiveness of security controls and compliance with relevant laws and regulations, including HIPAA
  • Collaborate with cross-functional teams to integrate security practices into all aspects of the organization
  • Assume the HIPAA Security Officer role to ensure compliance with HIPAA security requirements
  • Develop and maintain policies and procedures to protect sensitive health information in Atlassian products and services
  • Conduct security audits and assessments to ensure ongoing compliance and address any gaps
  • Develop and implement security awareness and training programs to mitigate human risk factors
  • Conduct regular training sessions and workshops to educate employees on security best practices
  • Monitor, evaluate and improve HRM programs such as phishing simulations, mandatory training, threat intelligence liaison and audit support
  • Provide leadership and guidance to the Security Governance team, fostering a culture of security awareness and continuous improvement
What we offer
What we offer
  • benefits, bonuses, commissions, and equity
  • Fulltime
Read More
Arrow Right

Director - Governance, Risk and Compliance

We are a fast-growing fintech company seeking a proactive and highly organized G...
Location
Location
United States , New York
Salary
Salary:
175000.00 - 200000.00 USD / Year
clearstreet.io Logo
Clear Street
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in GRC, security compliance, risk management, or related functions
  • Strong understanding of common security frameworks (SOC 2, ISO 27001, NIST CSF, PCI-DSS)
  • Experience managing audits end-to-end
  • Demonstrated ability to build and maintain governance processes and cross-functional compliance programs
  • Excellent documentation, communication, and stakeholder-management skills
  • Experience in technology, fintech, financial services, or other highly regulated industries
Job Responsibility
Job Responsibility
  • Develop, maintain, and manage the company’s security and compliance policy framework
  • Ensure policies are current, properly communicated, approved, and effectively implemented across the organization
  • Oversee periodic reviews of all internal policies
  • Educate teams on policy requirements and drive adherence
  • Build, implement, and continuously refine the company’s cyber security risk management framework
  • Lead risk identification, assessment, scoring, and periodic re-evaluations
  • Maintain the corporate risk register
  • Manage all internal and external audits including SOC 2, ISO 27001, regulatory exams, and customer due-diligence requests
  • Coordinate and prepare audit evidence
  • Serve as the primary liaison with external auditors, security assessors, and regulatory bodies
What we offer
What we offer
  • Competitive compensation packages
  • Company equity
  • 401k matching
  • Gender-neutral parental leave
  • Full medical, dental and vision insurance
  • Lunch stipends
  • Fully stocked kitchens
  • Happy hours
  • Fulltime
Read More
Arrow Right

Application Security Tech Lead

The position is a cross-functional role that will be responsible for various App...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree with 4 - 6 years' experience in web application development or application code review
  • Experience as a technical lead or manager
  • Knowledge of cloud computing concepts and DevOps tools (OpenShift, Kubernetes, Docker, Chef, etc)
  • Experience using or testing cloud platforms (AWS, Google, Azure, etc) and security in/of the cloud
  • Understanding of security, web-based and infrastructure vulnerabilities
  • Experience in source code management, build and deployment technologies such as RLM, Ueploy, Jenkins, Artifactory, Maven, GitHub, etc
  • Experience conducting vulnerability assessments and articulating security issues to technical and non-technical audience
  • Understanding of Snyk, Checkmarx, CDXGen, Dependency Track, Fortify, GitHub Advance Security, Sonatype or Black Duck platform is a plus
  • Knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures
  • Excellent communication skills (written and verbal)
Job Responsibility
Job Responsibility
  • Establish/manage multiple security programs that support the security testing requirements at the bank
  • Forge and maintain strong working relationships with development functions/teams, product delivery teams, project management, third party management, enterprise architecture, audit teams, etc.
  • Participate in security and technology strategic planning to ensure identified risk governance is incorporated into the CISO enterprise strategy
  • In partnership with business sectors, run delegate action groups to provide recommendations to strengthen development processes and security testing
  • Appropriately assess risk and provide software security advice when business decisions are made
  • Interface with Application Security Program Team to oversee Program Projects and Initiatives and make strategic recommendations to senior manager on standards and policy changes
  • Fulltime
Read More
Arrow Right

Security Principal

As a Security Principal, you'll play a critical role in protecting the integrity...
Location
Location
United States
Salary
Salary:
117500.00 - 270000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Information Technology, Risk Management, or a related field (master's preferred)
  • Certifications such as CISM, CRISC, or similar preferred
  • 7+ years of experience in Information Security, IT Governance, or Risk Management
  • Hands-on experience in multiple technical security domains, such as: Endpoint protection, Identity and access management (IAM), Vulnerability management, Security logging and monitoring, Network segmentation and zoning, Cloud security controls, Incident detection and response
  • Demonstrated experience managing or governing secure environments, particularly in large or complex organizations
  • Deep understanding of information security principles, frameworks (e.g., NIST, ISO 27001), and regulatory requirements (e.g., GDPR, SOX)
Job Responsibility
Job Responsibility
  • Protecting the integrity of HPE’s labs and non-production environments
  • Ensuring environments are designed, operated, and decommissioned in alignment with security policies, risk frameworks, and regulatory obligations
  • Leading the security program's vision, execution, and ongoing evolution
  • Collaborating between business units, IT, and security
  • Embedding 'secure-by-design' principles in projects
  • Continuously improving governance processes
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy