Information Security (Risk & Compliance) Co-op

Ontario

Applications have closed

CaseWare

Caseware is the leading global software provider for CPAs, auditors, risk and governance professionals. Reach new levels of productivity and efficiency today.

View company page

Caseware is one of Canada's original Fintech companies, having led the global audit and accounting software industry for over 30 years, with more than 500,000 users across 130 countries and available in 16 different languages.
While you might not have heard of us (yet) over 36,000 accounting and audit professionals list Caseware as a skill on their LinkedIn profiles!
Location: remoteTerm:8 monthsHours per week: 35Start date: September 2022
A bit about the role & team | the opportunity: Caseware is focused on continued maturity in its risk and compliance practices, as they relate to products, services, groups, controls, processes, and Caseware as a whole. The Risk and Compliance Co-op will be a part of the Risk and Compliance, Information Security team that is responsible for ensuring appropriate oversight, and reporting over Caseware’s compliance with ISO 27001, SOC 2 requirements. In addition, our team helps identify, and reports on organizational risks, and design appropriate processes with fellow teams.
You will be part of a team that is committed to continuously strengthening, maturing, and protecting Caseware as it relates to its risk and compliance needs. As part of the Risk and Compliance team, you will be working with a team of seasoned experts (some were previously auditors, at Big Four accounting firms , or have years of experience in IT/IS).

What you will be doing:

  • Participate in: Continuously maturing internal audit program process and control improvements throughout Caseware
  • Assist with: Internal and external audits, data management and privacy initiatives, vendor management customer security survey response, risk identification, management, and reporting
  • Work with a fast-paced, creative team that will enable you to do your best work!

You will have a chance to work with:

  • Frameworks and standards such as SOC 2, ISO 27001, ITGCs, NIST-800, GDPR, PIPEDA, CIS, PCI, etc.
  • Best practices for controls design, testing, and evidence validation
  • All departments throughout the organization
  • Continuously helping fellow teams mature their processes, including our own
  • How to appropriately conduct vendor assessments
  • Customer security questionnaire evaluations and responses
  • The risk assessment process, and continuous maturity design
  • Gain an understanding of Caseware’s products and services
  • Gain an understanding of the architecture and tools, as they apply to risk and compliance, such as:
  • MongoDB, AWS services like EKS and S3, Jenkins, GitHub, ElasticSearch, New Relic, Tugboat Logic compliance tool, LucidChart for diagrams
  • JIRA to manage our backlog - Scrum or Kanban
  • We use GSuite (mail, drive, meet, docs, sheets, etc.)
  • Slack for internal and external communication

You will bring

  • Is enrolled in Information Security, Information Technology, or Audit, Risk, Compliance,  and Controls program
  • Comfortable in working with various people, and groups throughout Caseware
  • Is experienced or interested in and understands topics related to  IT, security, privacy, and compliance (e.g. ISO 27001 and SOC 2 requirements
About Caseware
Caseware's cutting-edge software products are meticulously designed for accounting firms, corporations, and governments. Our teams are continually collaborating, innovating, and building upon our existing suite of products. With a customer-focused mindset, we are building technology that is shaping what the future of audits, financial reporting, and financial data analytics will look like.
With a recent strategic investment from Hg Capital in 2020, CaseWare is now in its next major growth phase as we double down on the people and products that have made CaseWare so successful to date.
One of Caseware's core values is Many Voices, One Team and with that in mind, we're dedicated to building teams as diverse as our customers in an equitable and inclusive way. We welcome and encourage candidates of all backgrounds to apply. Should you require accommodations or have any questions at any point during the application or interview process, please e-mail our People Operations team at careers@caseware.com.
Any candidates successful in obtaining an offer for a position will need to successfully complete a background check through Certn.co which typically includes an Identity Verification and Criminal Record Check. Executives and Senior Managers will undergo a Soft Credit Check as well.
#LI-remote

Tags: Analytics Audits AWS Compliance Elasticsearch FinTech GDPR GitHub ISO 27001 Jira Kanban MongoDB NIST Privacy Risk assessment S3 Scrum SOC 2 Vendor management

Region: North America
Country: Canada
Job stats:  19  6  0
Category: Compliance Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.