Lead the implementation and continuous improvement of Miovision’s Unified Risk Management Framework.
Own and maintain the Enterprise Risk Register, including risk identification, assessment and scoring, treatment plan development.
Partner with the CISO to define, communicate, and operationalize risk appetite and tolerance levels.
Embed risk intelligence into product development lifecycles.
Design, implement, and maintain the GRC program structure.
Serve as the primary liaison for external auditors and regulators.
Manage the risk exception and risk acceptance process.
Oversee GRC tooling strategy and administration.
Support customer security reviews, RFP responses, vendor security assessments, and customer audit requests.
Drive risk visibility by proactively identifying, assessing, and communicating systemic and emerging risks.
Facilitate cross-functional risk forums and working groups.

Requirements

8 - 10 years of progressive experience in GRC, cyber risk, enterprise risk, audit, or compliance roles.
Demonstrated people leadership experience, including managing teams and cross-functional initiatives.
Proficiency with GRC platforms and compliance management tools.
Strong working knowledge of four (4) or more : ISO 27001, SOC 2, NIST (CSF / RMF / 800-53), FedRAMP, FAIR, and COSO enterprise risk concepts.
Proven ability to build and operate risk registers, control frameworks, and executive reporting.
Experience operating in SaaS, cloud, or critical-infrastructure-adjacent environments strongly preferred.
Ability to communicate effectively with executives, auditors, engineers, and non-technical stakeholders.
Highly organized, curious, and eager to learn.
Understanding of network security, application security, and infrastructure security concepts.
Analytical mindset with attention to detail and accuracy.
Strong problem-solving and critical thinking skills.
One or more of the following professional certifications: CRISC, CISM, CISSP, CISA, CGRC, ISO 27001 Lead Implementer/Lead Auditor.

Benefits

Comprehensive Coverage: Your well-being is covered from day one with comprehensive health benefits, 24/7 virtual healthcare access, and dedicated wellness programs.
Financial Future: Build for tomorrow with our RRSP Matching Plan and share in the company's success through our Variable Incentive Plan.
Time to Recharge: Truly unplug with our unique Mio-Days and flexible vacation policy.
Work & Life Support: We support you with flexible work options, an internet subsidy, a remote work allowance, and enhanced leave for new parents.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

GRCcyber riskenterprise riskauditcompliancerisk registerscontrol frameworksexecutive reportingnetwork securityapplication security

Soft Skills

people leadershipcommunicationorganizational skillsanalytical mindsetproblem-solvingcritical thinkingcuriosityattention to detailteam managementcross-functional collaboration

Certifications

CRISCCISMCISSPCISACGRCISO 27001 Lead ImplementerISO 27001 Lead Auditor