IT Internal Audit Assistant Manager (Project Security)

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.

Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

Pay at Intact is about much more than just salary.

• Flexible work arrangements and a hybrid work model

• Possibility to purchase up to 5 extra days off per year

• Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more

• Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)

Salary range (but not limited to):

94,200 - 115,200

Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):

12%

As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.

Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.

Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.

About the role

We’re looking for an IT Internal Audit Assistant Manager (Project Security) to lead lead independent reviews of IT projects and programs and will be responsible for supporting planning and execution of risk-based, process focused IT audit and advisory assignments with goal to improve the overall IT security and governance risk/control environment for key IT projects/programs developed.

Operating primarily across North America with support to our UK and European operations, you'll join a global team where your expertise directly influences how we deliver secure, compliant, and resilient technology solutions. This is your chance to move beyond checkbox compliance and become a strategic partner in digital transformation.
 

What you’ll do here:

This role places you at the forefront of our Real-Time Review (RTR) program, where you'll work alongside project teams as they build the future of our technology landscape. Rather than traditional retrospective audits, you'll provide real-time guidance on cybersecurity, AI implementation, secure development practices, cloud infrastructure, and data governancehelping teams get it right the first time.

You'll identify gaps in Software Development Lifecycle practices across critical projects and collaborate with stakeholders to craft recommendations that align with both internal standards and industry best practices. Your expertise in application security, logical access management, and data protection will provide invaluable guidance to our first and second lines of defense.

From kick-off meetings where you help define secure project parameters to closing sessions where you present actionable insights, you'll be a constant presence throughout the project lifecycle. You'll prepare concise, executive-ready memorandums that distill complex technical risks into clear business language. And you'll follow through working with stakeholders to ensure your recommendations are implemented and risk is genuinely reduced.
 

Beyond individual engagements, you'll be an advocate for application security across the organization, staying current with emerging threats and technologies, and fostering a culture of risk awareness that extends well beyond the audit function.

What you bring to the table:

• Post Secondary education in Information Systems, Computer Science, Software Engineering, or a related field - is required.

• A minimum of 3 years in IT auditing - is required.

• Recognized professional audit or security related designation (CIA, CISA, AAIA, CCSK, CCSP, CISSP, CISM, etc.).

• Working experience in reviewing software engineering controls related to project governance, data governance, IT and Data Security, testing and change/release management areas.

• Knowledge of best practices and strong security controls over cloud environments (AWS, Azure, GCP, etc.) or Artificial Intelligence (AI)/Machine Learning (ML) technologies and their security implication.

• Proficient in reviewing security vulnerabilities identified from different platforms such as middleware/container/automated pipelines with experience to independent assess the end-risk and root cause for each of the vulnerabilities.

• Knowledge of cyber security risks, assessments, reports and frameworks such as those published by leading organizations (e.g. NIST, ISO 27001, SOC 2 Type II, etc.) is an asset.

• Strong analytical skills that lead to accurate conclusions.

• Strong project management skills and solutions driven.

• Excellent written and communication skills.

• Experience using data analytics tools is an asset

• Prior Big 4 firm and insurance industry experience is an asset.

• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
   

#LI-Hybrid

Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.

We are an equal opportunity employer

At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.

We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.

As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.

We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.

If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.

Please note that Intact does not provide sponsorship or other support for immigration-related matters including but not limited to employer-specific closed work permits. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment and are solely responsible for maintaining their work eligibility.

If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.