Job Description

You are as unique as your background, experience and point of view. Here, you\xe2\x80\x99ll be encouraged, empowered and challenged to be your best self. You\'ll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you\'ll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.:The Audit, Security Governance Analyst is a key member of the Security Governance and Client Programs team who partners with internal stakeholders to drive the planning, preparation and execution of External Audits (i.e. SOC 1 Type 2, SOC 2 Type 2 and HITRUST) with a focus on security controls owned by the Security, Risk and Crisis Management department. Our client base is increasingly aware of Cybersecurity, resulting in requests for information regarding Sun Life\xe2\x80\x99s RiskManagement and Cybersecurity Program. External Audits are a third-party validation that our security controls are operating effectively against an evolving threat landscape. In addition, the Audit, Security Governance Analyst provides support to internal Business Units across Sun Life in responding to a variety of security requests received from Sun Life institutional Clients (i.e., Plan Sponsors) which contributes to the Client acquisition and retention processes.What Will You Do?

• Work with leaders and subject matter experts to review, update, and submit a variety of compliance requirements pertaining to External Audits.
• Prepare subject matter expert (SME) control owners for their auditor walkthrough meetings.
• Collected requested control evidence files from SMEs for the walkthrough meeting, interim testing and roll forward testing.
• Conduct quality checks to ensure accuracy of information.
• Respond to auditor follow up inquiries.
• Document and update Description of Controls within the audit reports.
• Participate in status meetings with external auditors and internal working groups.
• Provides detailed and timely security responses to Client security questionnaires which will vary in length and complexity.
• Work with other team members on the execution of various initiatives and projects for the team
• Ensure process and response reference documents are current and stored appropriately.
• Keep abreast of security improvements to reflect in Client questionnaires
• Builds strong relationships with SME control owners fostering collaboration and teamwork.
• Interpersonal skills \xe2\x80\x93 in dealing with all levels of individual in the organization
• Service-oriented \xe2\x80\x93 ensuring that requirements of all Business Units are satisfied

What Do You Need to Succeed?

• University degree or college diploma graduate in Business and/or Information Technology
• 3 years experience in a business setting developing, analysing, documenting, and implementing IT processes and controls.
• Experience in governance and compliance for IT
• Educational knowledge of Information Security principles, protocols, practices, and industry standards
• Knowledge of Risk, Governance and Compliance frameworks and activities
• Willingness to undertake information security training and obtain a security certification (e.g., CISSP)

Preferred Skills:

• Strong verbal & written communication skills
• Advanced experience with Microsoft Office Products like Outlook, PowerPoint, Excel and Word
• Strong organizational, time management and facilitation abilities
• Self-motivated and highly resourceful with an ability to think outside the box
• Flexible; ability to pivot from one task to another to adjust to changing priorities
• Able to work in a fast-paced environment with strict deadlines
• Demonstrates accuracy and thoroughness

What\xe2\x80\x99s in it for you:

• We\xe2\x80\x99re honoured to be recognized as a 2024 Best Workplaces in Ontario by Great Place to Work\xc2\xae Canada.
• We\xe2\x80\x99re proud to be recognized as a company with a 2023 Most Trusted Executive team by Great Place to Work\xc2\xae Canada.
• Wellness programs that support the three pillars of your health \xe2\x80\x93 mental, physical, and financial
• The opportunity to move along a variety of career paths with amazing networking potential..
• As a hybrid organization, you and your leader use business and Client needs to choose where you work, at home or in the office.

# LI \xe2\x80\x93 SJ #LI-Hybrid #LI-remoteThe Base Pay range is for the primary location for which the job is posted. It may vary depending on the work location of the successful candidate or other factors. In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance. Certain sales focused roles have sales incentive plans based on individual or group sales results.Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to .At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.Salary Range: 61,000/61 000 - 101,000/101 000Job Category: IT - Technology ServicesPosting End Date: 10/04/2024

Sun Life Financial