Principal Technical Risk Analyst

Toast

. Own the end-to-end cyber risk lifecycle: risk identification, assessment, prioritization, mitigation tracking, and reporting .

Posted 5/6/2026full-timeRemote • 🇨🇦 CanadaLead💰 CA$131,000 - CA$210,000 per yearWebsite

Tech Stack

Tools & technologies

CloudCyber Security

About the role

Key responsibilities & impact

Own the end-to-end cyber risk lifecycle: risk identification, assessment, prioritization, mitigation tracking, and reporting
Establish and operationalize a scalable risk operating model (risk discovery → intake → assessment → reporting → monitoring)
Drive adoption of the program across Security, Product, Engineering, and Infrastructure teams
Lead the evolution of the technical risk program to support scale, consistency, and improved visibility

Requirements

What you’ll need

8–12+ years of experience in Technical Risk, Security GRC, ERM, or related fields
Proven experience owning and leading a technical/cyber risk program
Strong understanding of Cybersecurity domains (cloud, infrastructure, IAM, application security)
Strong understanding of Risk frameworks (NIST CSF, ISO 27001, etc.)
Experience operating in high-growth, complex, cloud-based environments

Benefits

Comp & perks

Competitive salary
Cash compensation (overtime, bonus/commissions if eligible)
Equity
Health insurance
Flexible work hours
Paid time off
Professional development opportunities
Wellness programs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cyber risk lifecyclerisk identificationrisk assessmentrisk prioritizationrisk mitigation trackingrisk reportingrisk operating modeltechnical risk programcloud securityapplication security

Soft Skills

leadershipcommunicationcollaborationorganizational skillsprogram adoption