Junior GRC Analyst

Role: Junior GRC Analyst

Location: Regina, SK (Onsite)

Term: 12 months

Overview

Charter is currently seeking a motivated Junior Governance, Risk, and Compliance (GRC) Analyst to support cybersecurity governance, risk management, compliance activities, and business continuity initiatives. The ideal candidate brings a strong foundation in cybersecurity principles, demonstrated experience in policy development, and an understanding of audit, risk, and compliance processes within IT and/or industrial environments.

Responsibilities

Governance & Compliance

• Develop, maintain, and update cybersecurity governance frameworks, policies, standards, and procedures.


• Perform ongoing regulatory and compliance monitoring, ensuring adherence to internal and external requirements.


• Conduct comprehensive security compliance reviews and track remediation of identified gaps.


• Provide support for internal and external audits, including evidence collection, results documentation, and reporting.


• Monitor and report on change management compliance activities.


• Manage and document cybersecurity risks, risk exceptions, and mitigation plans.


• Support the implementation, enhancement, and maintenance of GRC tools and frameworks.


• Conduct third‑party security risk assessments and document findings and recommendations.


• Perform threat and risk assessments to identify vulnerabilities and assist in mitigation planning.


• Assist in developing and maintaining security processes, procedure documentation, and risk registers.

Business Continuity & Disaster Recovery

• Participate in Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP) efforts.


• Assist with the creation, testing, and maintenance of continuity and recovery plans.

Awareness & Training

• Support the development and management of cybersecurity awareness, education, and training programs.


• Contribute to initiatives that improve security culture and engagement across the organization.

Required Experience & Qualifications

• 3+ years of demonstrated experience in Cybersecurity Governance, Risk, and Compliance (GRC).


• 3+ years of experience in Business Continuity and Disaster Recovery Planning.


• 3+ years developing cybersecurity policies, standards, and procedures.


• 3+ years working with audit, monitoring, and regulatory compliance activities.


• Demonstrated experience developing/managing cybersecurity awareness and training programs.


• Proven experience with governance frameworks and security process documentation.


• Strong background in IT and/or Industrial Control Systems (ICS) and SCADA environments.


• Experience conducting third‑party vendor security risk assessments.


• Experience supporting internal/external audits, including evidence submission and reporting.


• Proficiency in documenting and managing risks, exceptions, and mitigation activities.


• Familiarity with industry standards (ISO 27001, NIST CSF, CIS Controls) and ability to recommend improvements.


• Experience working with GRC tools and platforms.


• Relevant professional experience within North America.


• At least one relevant security certification (CISSP, CISM, CISA, ABCP, MBCP, or equivalent).

Our Company

Charter is an award-winning Canadian IT Solutions and Managed Services Provider founded in 1997 in Victoria, BC, Canada. With offices nationwide, Charter offers innovative IT solutions, managed services, project delivery, and consulting. Our mission is to align people, processes, and technologies to enhance communication, boost performance, and modernize businesses. www.charter.ca

Not quite a fit for this role? Please forward your resume to [email protected] or [email protected] for future considerations