Governance, Risk & Compliance (GRC), Team Lead

Company name: Thorens Solutions – Headhunters
  • Activity area : Professional Services

  • Salary : Salary depending on experience

  • Job type : Permanent - Full time, Occasional remote work

  • City : Laval

Company description

Our client is a global provider of information security solutions for businesses with critical data to secure. They looking for GRC Team Lead to plans, organizes, and conducts information security consulting assignments for our customers, and consults on internal projects as required.

Job description

The GRC Team Lead performs assessments of the client organization’s information security posture and provides general information security advice and guidance.

Tasks and Responsibilities

  • Plan and conduct information security consulting engagements. Engagements may include:
  • Analyzing the requirements for, designing and developing security policies and standards
  • Designing, developing implementing information security management system initiatives such as security governance and strategy setting, security incident response and handling plans and security awareness
  • Performing cyber security posture assessment
  • Performing security threat assessments
  • Operational knowledge and hands on experience implementing best practices standards such as ISO 27000, COBIT, NIST, PCI DSS, GDPR and other security control frameworks.
  • Work directly with customers, both to develop work plans and executing consulting engagements.
  • Engage clients in workshops, interviews, surveys, and data collection to perform assessments.
  • Comfortable delivering security awareness to clients.
  • Ability to apply abstract concepts to produce customer solutions.
  • Ability to work independently on assignments.
  • Develop deliverables in accordance with work plans developed collaboratively with clients.
  • Develop well-written, well-structured, accessible, and useable deliverables, for both client and internal audiences.
  • Work with the Project Managers to produce status reports and manage your time within the defined effort and duration project plans.
  • Contribute to the ongoing development of knowledge and practices to enhance our services available to our customers.
  • Participate in professional development activities, focused on information security, including the pursuit of designations such as CISSP, CEH, and others.
  • Participate in pre-sales discussion with clients when scoping projects and developing proposal.
  • Perform technical reviews of proposals and RFP responses.


  • Bachelor’s degree in Computer Science, Engineering, or a related discipline, with a strong technical background
  • Experience in information security consulting, or related services, with a strong technical background
  • Strong experience in enterprise risk management, security policies and controls, and information security strategy and architecture
  • Strong experience in governance, risk and compliance; security policies and controls; and information security frameworks and standards
  • Desire and dedication to pursue relevant professional designations and training
  • Demonstrable ability to ensure that deliverables meet work plan specifications and deadlines
  • Experience communicating with clients and internal management
  • Outstanding organizational skills, able to multi-task on multiple projects at one time
  • Excellent verbal and written communication skills in English and French
  • Ability to work to demanding deadlines
  • Ability to manage your time efficiently
  • High level of motivation to achieve desired results
  • Proven ability to prioritize tasks effectively, with attention to detail
  • Be a team player who can work effectively with your peers and management

Work conditions

  • An annual salary depend on experience
  • Annual bonusof 15 to 20% 
  • Vacations
  • Group insurance plan paid 100% by the company 
  • Laptop and cell phone provided by the company 
  • Flexible schedules 
  • Dynamic work environment in new and modern office 
  • Thorough in-house, expert training on cutting-edge technology 
  • Possibility of evolution in the cyber security field 

Note : The masculine is used to lighten the text without prejudice to the feminine form.

This offer has already been filled.