Senior Consultant, Cybersecurity - Risk Management and Transformation Service Delivery

Toronto - Bay St, Canada

Apply now Apply later

Putting people first, every day
 

BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a people-first culture with a high priority on your personal and professional growth.

Your Opportunity

Our Toronto area office, is looking for a Senior Consultant, to join our cyber team to lead the following areas of responsibility, supporting the Cyber Risk Management and Transformation Service Delivery team:

  • Act as a subject matter expert to drive the successful completion of our cybersecurity projects, while collaborating with the rest of the delivery team to ensure that project milestones and deadlines are met

  • Identifying, assessing, measuring, and reporting on cyber/technology and privacy risks by conducting security reviews, audits, evaluations, risk assessments and developing recommendations for improvements

  • Ensuring the client’s Cybersecurity risk posture is understood along with the effectiveness of the Cybersecurity practices and mitigation controls across the client organization

  • Research, pilot, and implement solutions to improve the client’s overall security posture while ensuring that the solutions are tailored to client needs and the business environment

  • Provide recommendations to keep infrastructure & applications secure, including disaster recovery, security architecture, data loss prevention, and application security services

  • Assist the client in implementing and monitoring privacy policies and procedures to ensure compliance with data protection regulations such as GDPR, Quebec Law 25, PIPEDA etc.

  • Evaluate security and control aspects of new technologies and define security requirements

  • Identify opportunities for efficiencies in the work process and innovative approaches to completing the scope of work

  • Provide strategic guidance on Cyber Security, Privacy, IT governance, risk, and compliance (GRC) initiatives to enhance the overall security and privacy posture.

  • Inform client security strategies based on experience across industry

  • Participate in team problem-solving efforts and offer ideas to solve client issues

  • Assist in proposal development, as requested

  • Exhibiting project management skills, including developing project plans, budgets, and deliverables schedules

How do we define success for your role?

  • You demonstrate BDO's core values through all aspects of your work: Integrity, Respect and Collaboration

  • You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work

  • You identify, recommend, and are focused on effective service delivery to your clients

  • You share in an inclusive and engaging work environment that develops, retains & attracts talent

  • You actively participate in the adoption of digital tools and strategies to drive an innovative workplace

  • You grow your expertise through learning and professional development.

Education & Experience

  • Bachelor’s Degree in Information Technology, Information Systems Security, Cybersecurity, or related field

  • 7+ years of experience in the Cybersecurity field

  • Completion or about to complete one or a combination of the following designations: CISSP, CISA, CISM, ISO27001 Lead Auditor, CDPSE, CIPP/C or CIPP/EU

  • Experience in conducting threat risk assessments, cyber maturity assessments following industry recognized frameworks such as NIST, ISO 27001, CIS.

  • Strong background in cyber governance, risk management, and compliance.

  • Knowledge of data protection regulations (e.g., GDPR, Privacy Act, PIPEDA) with a focus on effective privacy management practices.

  • Preferred: Strong understanding and experience with security and privacy control audits or assessments (e.g., SOC 2, ISO 27001, NIST, GDPR).

Nice-to-have Skills/Experience:

  • Security assessments of network infrastructure, hosts and applications

  • Forensics – investigation and analysis of how and why a breach occurred

  • Cloud computing experience – Azure, AWS, and/or GCP.


Why BDO?

Our people-first approach to talent has earned us a spot among Canada’s Top 100 Employers for 2024. This recognition is a milestone we’re thrilled to add to our collection of awards for both experienced and student talent experiences. 

Our firm is committed to providing an environment where you can be successful in the following ways: 

  • We enable you to engage with how we change and evolve, being a key contributor to the success and growth of BDO in Canada. 

  • We help you become a better professional within our services, industries, and markets with extensive opportunities for learning and development. 

  • We support your achievement of personal goals outside of the office and making an impact on your community.

Giving back adds up: Where company meets community. BDO is actively involved in our communities by supporting local charity initiatives. We support staff with local and national events where you will be given the opportunity to contribute to your community.


Total rewards that matter: We pay for performance with competitive total cash compensation that recognizes and rewards your contribution. We provide flexible benefits from day one, and a market leading personal time off policy. We are committed to supporting your overall wellness beyond working hours and provide reimbursement for wellness initiatives that fit your lifestyle.


Everyone counts: We believe every employee should have the opportunity to participate and succeed. Through leadership by our Diversity, Equity and Inclusion Leader, we are committed to a workplace culture of respect, inclusion, and diversity. We recognize and celebrate the valuable differences among each of us, including race, religious beliefs, physical or mental disabilities, age, place of origin, marital status, family status, gender or gender identity and sexual orientation. If you require accommodation to complete the application process, please contact us.

Flexibility: All BDO personnel are expected to spend some of their time working in the office, at the client site, and virtually unless accommodations or alternative work arrangements are in place.

Our model is a blended approach designed to support the flexible needs of our people, the firm and our clients. It’s about creating work experiences that meet everyone’s needs and providing flexibility to adjust when, where and how we work to meet the expectations of our role.

Code of Conduct: Our Code of Conduct sets clear standards for how we conduct business. It reflects our shared values and commitments and includes guiding principles to help us make ethical decisions and maintain trust with each other, our clients, and the public.

Ready to make your mark at BDO? Click “Apply now” to send your up-to-date resume to one of our Talent Acquisition Specialists.

To explore other opportunities at BDO, check out our careers page

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  0  0

Tags: Application security Audits AWS Azure C CIPP CISA CISM CISSP Cloud Compliance Forensics GCP GDPR Governance ISO 27001 Monitoring NIST PIPEDA Privacy Risk assessment Risk management Security assessment SOC SOC 2

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Startup environment Team events Wellness

Region: North America
Country: Canada

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.