Careers  /  ELDR Advisory
ELDR Advisory

GRC Specialist

Governance, Risk, and Compliance specialist designing and implementing GRC programmes for institutional clients across ISO 27001, SOC 2, NIST 800-53, SOX, PCI-DSS, GDPR/NDPR, and related frameworks. Build audit-defensible documentation systems.

Level: Mid-level to Senior (5–9 years) Type: Full-time · Hybrid Location: Toronto, Ontario, Canada
Responsibilities

What you'll do.

  • Lead GRC programme design and implementation for institutional clients.
  • Build control libraries, control narratives, and audit-evidence architecture across multi-framework operating environments.
  • Conduct gap assessments, readiness reviews, and Statement-of-Applicability development.
  • Support clients through regulatory examinations, certification audits, and external supervisory reviews.
  • Produce client-facing documentation to ELDR's audit-ready evidentiary standards.
Requirements

What we look for.

  • 5–9 years of GRC, internal audit, or regulatory compliance experience.
  • Direct working familiarity with at least three relevant frameworks (ISO 27001, SOC 2, NIST 800-53, PCI-DSS, SOX, GDPR/NDPR).
  • Demonstrated experience taking institutional clients through certification or examination.
  • Strong written analytical output suitable for regulator-facing documentation.
Qualifications

Educational & professional credentials.

  • Bachelor's degree minimum.
  • Relevant certifications: CISA, CRISC, CISM, ISO 27001 Lead Implementer/Auditor, CIPP.
Apply

How to apply.

Submit a brief expression of interest (one page maximum) outlining your relevant background, the strongest published or institutional work you have produced, and what draws you to this role at ELDR.

Send to careers@eldr.io with subject line: GRC Specialist — ELDR Advisory

Apply via Email View All Roles