Manager, Third-Party Assurance

Putting people first, every day
 

BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a people-first culture with a high priority on your personal and professional growth.

Your Opportunity

Our National Risk Advisory Services practice is seeking a Manager, Third-Party Assurance to lead and execute IT risk and compliance assessments for our clients. This role requires exceptional communication skills and the ability to engage with C-suite executives, technical teams, and non-technical stakeholders with clarity and professionalism.
 

As a key contributor, you will assess security and compliance frameworks such as SOC 2 Trust Services Criteria, ISO 27001, NIST, and other relevant standards, ensuring our clients meet regulatory and industry-specific requirements.

Expectation for Communication & Presentation Skills
 

As a Manager, Third-Party Assurance, you will be expected to communicate with clarity, confidence, and precision across all levels of an organization. Whether presenting to C-suite executives, technical teams, or non-technical stakeholders, you must be able to articulate complex risk, compliance, and security concepts in a clear and engaging manner. Your ability to translate technical findings into actionable business insights will be crucial in driving client decision-making.
 

Strong verbal and written communication skills are essential in this role. You will be responsible for delivering concise, well-structured reports, executive summaries, and presentations that effectively convey key risks, recommendations, and compliance requirements. You must be adept at tailoring your communication style to different audiences, ensuring that technical details are accessible to business leaders while maintaining depth and accuracy for security professionals.
 

Additionally, you should be comfortable presenting in high-pressure environments, leading client meetings, and participating in industry discussions with poise, professionalism, and thought leadership. Your ability to influence, educate, and build trust through effective communication will be a defining factor in your success in this role.
 

Key Responsibilities
 

• Lead and deliver complex risk and compliance engagements related to SOC 2, ISO 27001, NIST, and other frameworks.

• Effectively communicate risk, compliance, and security concepts to executives, IT leaders, and business stakeholders in an understandable and actionable manner.

• Work closely with cross-functional teams to assess IT security controls, governance frameworks, and third-party risk management programs.

• Provide clear, concise reporting and recommendations to clients, ensuring alignment with business objectives.

• Mentor and guide team members, fostering a high-performance culture within the risk advisory practice.

• Drive the adoption of digital tools and innovative strategies to enhance client service delivery.
   

What Defines Success in This Role?
 

• You demonstrate BDO's core values through all aspects of your work: Integrity, Respect and Collaboration.

• You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work.

• You identify, recommend, and are focused on effective service delivery to your clients.

• You share in an inclusive and engaging work environment that develops, retains & attracts talent.

• You actively participate in the adoption of digital tools and strategies to drive an innovative workplace.

• You grow your expertise through learning and professional development.
   

Qualifications & Experience
 

• 5+ years of professional experience in GRC implementation, IT security auditing, or consulting.

• Bachelor’s degree in Information Systems Audit, Computer Science, Business, or a related field.

• Deep expertise in risk management principles and compliance frameworks.

• Strong understanding of IT governance structures, architecture, security controls, and policies.

• Certifications required: CPA, CISSP, CISA, ISO 27001 Lead Implementer.

• Experience evaluating IT security controls, governance frameworks, and third-party risk.

• Exceptional communication skills—both written and verbal—with the ability to present complex concepts to diverse audiences.

• Ability to lead high-performing teams and manage multiple client engagements effectively.

• Goal-oriented, results-driven, and committed to delivering high-quality client solutions.

Why BDO?

Our people-first approach to talent has earned us a spot among Canada’s Top 100 Employers for 2025. This recognition is a milestone we’re thrilled to add to our collection of awards for both experienced and student talent experiences. 

Our firm is committed to providing an environment where you can be successful in the following ways: 

• We enable you to engage with how we change and evolve, being a key contributor to the success and growth of BDO in Canada. 

• We help you become a better professional within our services, industries, and markets with extensive opportunities for learning and development. 

• We support your achievement of personal goals outside of the office and making an impact on your community.

Giving back adds up: Where company meets community. BDO is actively involved in our communities by supporting local charity initiatives. We support staff with local and national events where you will be given the opportunity to contribute to your community.

Total rewards that matter: We pay for performance with competitive total cash compensation that recognizes and rewards your contribution. We provide flexible benefits from day one, and a market leading personal time off policy. We are committed to supporting your overall wellness beyond working hours and provide reimbursement for wellness initiatives that fit your lifestyle.

Everyone counts: We believe every employee should have the opportunity to participate and succeed. Through leadership by our Diversity, Equity and Inclusion Leader, we are committed to a workplace culture of respect, inclusion, and diversity. We recognize and celebrate the valuable differences among each of us, including race, religious beliefs, physical or mental disabilities, age, place of origin, marital status, family status, gender or gender identity and sexual orientation. If you require accommodation to complete the application process, please contact us.

Flexibility: All BDO personnel are expected to spend some of their time working in the office, at the client site, and virtually unless accommodations or alternative work arrangements are in place.

Our model is a blended approach designed to support the flexible needs of our people, the firm and our clients. It’s about creating work experiences that meet everyone’s needs and providing flexibility to adjust when, where and how we work to meet the expectations of our role.

Code of Conduct: Our Code of Conduct sets clear standards for how we conduct business. It reflects our shared values and commitments and includes guiding principles to help us make ethical decisions and maintain trust with each other, our clients, and the public.

Ready to make your mark at BDO? Click “Apply now” to send your up-to-date resume to one of our Talent Acquisition Specialists.

To explore other opportunities at BDO, check out our careers page.