Security Specialist

Back to All Jobs
[social_share]

Our client requires a Security Specialist to be responsible for conducting Threat Risk Assessments (TRA) plays a critical role in identifying, evaluating, and mitigating security risks across the organization’s systems, processes, and assets. That includes participating in end-to-end risk assessment initiatives, developing and applying threat models, and working closely with stakeholders to understand business objectives and risk tolerance. The Security Specialist will analyze vulnerabilities, assess potential threats, and determine the likelihood and impact of various risk scenarios, and will also be responsible for compiling detailed TRA reports, maintaining risk registers, and proposing actionable mitigation strategies and alignment with regulatory, industry, and organizational security standards, and effectively communicate findings to both technical teams and executive leadership. Additionally, the Security Specialist will contribute to the continuous improvement of risk management frameworks, support audit and compliance activities, and stay informed about emerging threats and security best practices.

Work is onsite at client location in Toronto, ON.

Mandatory Requirements

10+ years’ experience:

  • In-depth knowledge of risk management frameworks (e.g., ISO 31000, NIST RMF) and threat modelling methodologies (e.g., STRIDE, DREAD).
  • Expertise in identifying, evaluating, and prioritizing threats and vulnerabilities across physical, cyber, and operational domains.
  • Strong analytical skills to assess potential impacts and likelihoods of various threat scenarios.
  • Proficiency risk assessment matrices
  • Excellent communication and reporting abilities to effectively present findings and risk mitigation strategies to both technical teams and executive stakeholders.
  • Familiarity with legal, regulatory, and compliance requirements, ensuring assessments align with organizational and industry standards (e.g., PHIPAA).
  • Proactive mindset and situational awareness to anticipate and adapt to emerging threats in a dynamic risk environment.
Desirable Requirements
  • Public Sector experience
  • Risk Management & Assessment – 10–15 years
  • Proven experience in conducting threat risk assessments using frameworks like ISO 31000, NIST RMF, or FAIR.
  • Threat Modeling – 10–15 years
  • Practical knowledge of threat modeling techniques (e.g., STRIDE, PASTA, MITRE ATT&CK), including development of data flow diagrams and attack vectors.
  • Information Security Governance – 7+ years
  • Strong understanding of security policies, standards, and controls aligned with ISO 27001, NIST CSF, and CIS Controls.
  • Communication & Reporting – 10+ years
  • Skilled in writing technical and executive-level reports, risk registers, and presenting to stakeholders and leadership.

Job Posting ID: 56884

Location: Toronto, Ontario (Onsite)

Estimated Starting Date: Jun 29, 2026

Estimated End Date: till Mar 31, 2027 + pos. extension

Posting Closing Date: June 15, 2026

Back to All Jobs

Apply for this Job Posting

Fill in the form below to submit your application for this position.

  • This field is for validation purposes and should be left unchanged.
  • Accepted file types: doc, pdf, docx, Max. file size: 512 MB.