Manager – Cybersecurity and GRC

Full Time
  • Full Time
  • Toronto


Manager – Cybersecurity and GRC

About the Company

Elastify is your complete IT consulting & cybersecurity services partner. Based in Toronto with presence across Canada, our people are united by our core values and a shared commitment to simplifying the IT experience. We approach engagements with a client-centered mindset and consider ourselves a natural extension of your team. Our flexible, on-demand service model provides access to the right skillsets and solutions needed to meet the demands of scaling businesses.

We specialize in delivering high value services and provide advisory within:

• Cybersecurity

• Penetration Testing

• Data Protection & Privacy

• Governance, Risk & Compliance (GRC)

• Cloud Security

• Microsoft Enablement

• Staff Augmentation

About the Role

Within Elastify’s security practice, we are currently seeking a Manager – Cybersecurity & GRC to assist our growing engagement team in assessing our client’s security processes and controls.

Job Responsibilities

  • Leading & delivering cybersecurity program assessments to provide clients with recommendations and a roadmap to enhance security posture.
  • Leading & delivering compliance readiness assessments (e.g., SOC 2, ISO 27001) and helping clients with remediation activities (e.g., policy & procedure development).
  • Coaching / mentoring Elastify’s Cybersecurity & GRC consultants.
  • Supporting Elastify’s sales team with proposals, engagement letters / statement of work development.
  • Running workshops with clients.
  • Drafting & presenting reports to key client stakeholders.
  • Managing the delivery of engagements to ensure budgets and timelines are met.
  • Working with a compliance automation platform to conduct assessments or provide advisory to clients.
  • Working with Drata


  • Three to five years of experience in the field of Cybersecurity, Technology Risk, or GRC
  • Completion of at least one of the following designations: CISA, CRISC, CISM, CISSP, ISO 27001 LA.
  • Bachelor’s degree or higher in a related field to Cybersecurity or equivalent working experience
  • Experience with leading and delivering assessments against the follow standards & frameworks including but limited to SOC 2, NIST CSF, NIST 800-53, CMMC, ISO 27001, CIS.
  • Experience with Compliance & Controls Automation Platforms (e.g. Drata)
  • Strong attention to detail and organizational skills.
  • Experience leading, coaching, mentoring junior personnel.
  • Excellent oral and written communication with experience helping clients navigate through complex cybersecurity and compliance challenges.
  • Drata knowledge would be a nice to have

Benefits of working at Elastify

  • 3-4 weeks’ vacation
  • Benefits package
  • Wellness Account
  • Cellphone and Travel allowance
  • Downtown Toronto office location (121 King Street West – connected to the path)
  • Hybrid work


To apply, please visit the following URL: