Why be a part of Maplesoft Group?

Do you want to work in a dynamic environment where your contributions count?

At Maplesoft, we value the contributions of all our employees and contractors. We listen and act upon suggestions, advice, and innovative ideas to further our strategic vision. In turn, Maplesoft contributes to the communities where we live and operate. We think globally, but act in our own backyards.

Build your future with Maplesoft’s exciting technologies, deep partnerships, personal approach to consulting services, professional development opportunities and exciting company culture.

To be considered for new opportunities please send us your resume at


  • Phone Number
  • Filename

    Title Information Security Risk and Compliance Specialist
    Location Ottawa, ON
    Start Date 09-21-2020
    Language Bilingual
    Salary Negotiable
    Security Clearance Reliability Status
    Duration 6+ months
    Date Posted 09-09-2020
    Job ID 11961
    Recruiter Email
    Maplesoft Group is currently seeking an Information Security Risk and Compliance Specialist to join one of our clients located in Ottawa


    The Information Security Risk and Compliance Specialist is vital role responsible for designing and implementing an overall information security risk and compliance management process. The incumbent will manage the process of gathering, analyzing, and assessing the current and future information security and privacy threats. He/she will focus on delivering the objectives within the information security strategy as well as enhancing a security program that identifies and addresses security and privacy risks and requirements.

    The incumbent works with various stakeholders across the organization to drive the information security agenda, ensuring it meets complex compliance requirements, as well as maintaining, monitoring, and promoting information security best practices. He/she acts as a specialist with a deep knowledge of various security risk management and compliance frameworks and plays an integral role ensuring security controls and requirements are incorporated into all information technology projects and initiatives.

    Experience Required:
    - University degree in Computer Science or Information Technology or a related field or an equivalent combination of education and experience;
    - Minimum of 7+ years of information security, IT audit and/or IT Risk Management experience
    - Expert understanding of NIST and ISO Risk Management Frameworks, ITSG-33, NIST CSF, ISO 27002, COBIT, SOC 2, and other relevant frameworks.
    - Experience with cloud security assessments (AWS, Azure, GCP, etc.).
    - Experience with risk discovery and assessment, as well as appropriate mitigation and controls.
    - Good knowledge of the latest trends in information security and risk management, e.g. evolving technologies, cyber risk mitigation, etc.
    - Experience of auditing IT environments, either through an internal or external audit role.
    - Broad knowledge of IT architecture and underpinning technologies including but not limited to: identity and access management, cloud hosting providers, database administration.
    - Experience designing and supporting large-scale, end-to-end information security systems in a complex, both on-premises and cloud hosted, multi-platform environment;
    - Knowledge of security technologies such as various monitoring and log aggregation platforms, penetration testing frameworks, operating systems, vulnerability scanners, and endpoint security solutions;
    - Leadership skills, ability to coach and mentor other IT professionals;
    - In-depth analytical skills for complex problem solving – identification, diagnosis, resolution;
    - Knowledge of the University’s information technology and security policies, procedures and standards would be considered an asset;
    - Experience in project management and meeting strict deadlines;
    - Good communication skills to interact with team members, support personnel, and provide technical guidance and expertise to clients and management;
    - CISSP or CRISC or other information security certifications is an asset;
    - Ability to work a flexible schedule including occasional weekends and evenings.
    - Bilingual: French and English (spoken and written)


    Maplesoft Group prides itself on its distinct corporate culture and recognizes that success is a direct reflection of our most valuable asset - our people.  Therefore, attitude and ambition are key personality traits we seek out, along with skill and aptitude, in potential employees.

    Maplesoft Group is committed to having a diverse, representative workforce and continuing to build an inclusive environment. We encourage applications from all qualified individuals. Maplesoft Group is an equal opportunity employer committed to diversity and inclusion. We are pleased to consider all qualified applicants irrespective of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veterans’ status, Aboriginal peoples or any other legally protected factors.
    All employment decisions are made based on business needs, job requirements, and individual qualifications.
    We are committed to developing inclusive, barrier-free recruitment and selection processes, and a work environment that supports our diverse workforce. Please let us know if you require accommodations at any stage of the recruitment process. We can be reached at Maplesoft Info at
    We thank you for your interest in Maplesoft Group and wish to advise you, that only candidates under consideration will be contacted.

    Are you interested in a career with Maplesoft Group? Please see our Career Opportunities page!