GRC Programs Analyst - Jobs in Calgary, AB

Job Description

Veriforce, LLC is a recognized leader in delivering supply chain risk management and compliance solutions that help bringworkers home safely each day. The company is the result of the combination of PEC Safety and Veriforce in the US (May 2019)and ComplyWorks in Canada (August 2020). Now united as Veriforce LLC, the company dominates the North American oil andgas sector and has a growing footprint in Telecom, Facilities Management, Industrial Manufacturing, Ports and Airports, andRenewable Energy. The company’s SaaS-based contractor management and compliance software solutions, along with itsstandardized safety training programs and library of over 400 training courses empower 800 leading companies in 120countries with over 50,000 contract services firms deploying millions of workers to mitigate risk and optimizeperformance. The company has 320 employees across four global offices and is headquartered in The Woodlands, Texas.Veriforce blends leading edge software and deep domain experience to drive operational efficiency and effectiveness. It is thiscombination of technology and expertise that ensures their clients maintain compliance, perform well, and stay safe in thefield.Veriforce’s mission is to help bring workers home safe from high-hazard jobs. Veriforce accomplishes this throughcomprehensive, integrated, and market leading solutions that combine innovative technology, industry know-how, best in classtraining, and the largest industry network to create unparalleled value and support.Reporting to the Senior Vice President, Compliance and Risk; the GRC Programs Analyst will help ensure that thecompany remains in compliance with current programs and any other Governance Frameworks or Compliance Programs theorganization adopts. This position will be responsible for continuous evaluation of the design and effectiveness of programsbased upon industry best-practice models in accordance with compliance requirements.This position works closely with Veriforce’s IT department and with various departments within the company to help implement,monitor and maintain standards, policies, plans, processes, procedures, and other activities as required to meet corporategovernance and regulatory requirements. This individual should demonstrate enthusiasm and interest in Information Securityand Management Systems in general and have a passion for collaborating with various resources across multipledepartments.This position will administer and manage the implementation and maintenance of compliance projects, track complianceactivities, develop reports, track metrics, conduct or manage testing of internal controls, and perform or manage internal selfassessments and audits. This position may occasionally interface with Third Party Assessment Organizations in support ofexternal assessments and audits.The position will be instrumental in ensuring that all Compliance Programs are successfully digitized and implemented on aManagement System Software Platform, including administering users, overseeing completion of all tasks on the platformrelated to Compliance Programs. The position will assist other Compliance Program owners in implementing and maintainingtheir respective programs.This position reports to our Calgary or Toronto office however due to COVID19 we are temporarily working from home.Responsibilities

• Supports the SVP, Compliance & Risk in identifying, implementing, and maintaining appropriate Compliance Programsand compliance measures.
• Creates, monitors and maintains Veriforce Certification Program documentation such as policies, standards,procedures, work instructions, and guidelines of compliance programs and related activities
• Engages with a variety of Veriforce teams and individuals, that are responsible for portions of Compliance Programs intheir activities required to maintain Compliance Programs.
• Assists with the administration of Compliance Programs and interacts and supports the relevant Compliance Programowners.
• Manages and conducts on-going assessment of those controls, departments, processes, and procedures within scopeof the certifications; responsible for summarizing and reporting results of these self-assessments to VeriforceManagement.
• Interfaces with outside parties in support of external audits and assessments.
• Maintain appropriate records.
• Ensure Risk Assessments are conducted for all Compliance Programs.
• Work with Veriforce management and Governance Framework Committee to ensure plans are in place to deal withcompliance problems when they occur and before certifications or compliance statuses are jeopardized.
• Tracks remediation activities and provides compliance support related to non-compliance issues.
• Stay abreast of legal and regulatory changes that could impact our policies
• As required, assists with monitoring and reporting remediation activity required to address identified gaps in theVeriforce Compliance programs.
• Provides status updates on audit and compliance items to management.
• Support the Governance Framework Committee by arranging meetings, ensuring deadlines are met.
• Administers the Management System Software Platform that all Compliance Programs will be implemented andmanaged on, and supports and trains all users in interacting with the software and correctly using and maintainingtheir responsibilities related to it.
• Assists with any requirements that may be required by the SVP Compliance and Risk including administrative,research, training, reporting and project management functions.
• Collect Emissions and other related data and maintain “Climate Smart Project” and corporate ESG data collection on “Cority”.

Qualifications and Experience

• 3+ years of combined risk management, risk consulting, in information security, risk management, compliance, auditand/or security work experience
• Bachelor’s degree or equivalent work experience in security, risk management, compliance, information systems orother relevant fields
• Experience with SOC 2, ISO 27001, ISO 9001, GDPR and EHS or similar compliance frameworks
• Project management capabilities to track progress on GRC process implementation and improvements
• Positive attitude and approach to achieving goals and requirements
• Strong oral and written communication skills
• Advanced interpersonal skills to effectively to collaborate and build strong relationships across cross-functional teams
• Capable of articulating general IT security policies, processes, and technical controls
• Results-oriented, with demonstrated problem-solving abilities
• Ability to work independently with or without direction and/or supervision
• Ability to maintain confidentiality

The successful candidate will have to undergo a criminal record check as condition of their employment.Quick Apply

• Terms & Conditions
• New Privacy
• Privacy Center
• Accessibility

For Job Seekers

• Browse Jobs
• Advanced Job Search
• Emplois Quebec

For Employers

• Post a Job

Stay Connected