Who Can Apply
- Candidates must be legally authorized to work in Canada
Job Description
Apotex is looking for a senior Cybersecurity Policy & Controls Documentation Specialist to support the buildout of its ICFR (Internal Control over Financial Reporting) and Information Security governance programs.
This person will work closely with Cybersecurity, Compliance, Audit, Risk, and Technology teams to develop and maintain security documentation, policies, and IT controls.
Ideal candidate = strong in IT controls documentation + regulated environments + stakeholder management.
Develop and maintain cybersecurity policies, standards, procedures, and governance documentation
Document and map IT controls aligned to security and compliance requirements
Support the buildout of ICFR and InfoSec governance programs
Partner with cybersecurity, infrastructure, audit, and business teams to gather requirements
Review existing documentation and identify gaps, inconsistencies, and improvement areas
Ensure alignment with security frameworks, regulatory requirements, and internal standards
Support audit readiness (controls documentation + evidence collection)
Manage documentation lifecycle: reviews, approvals, version control
Help establish standard templates and documentation practices
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
5–8+ years in IT controls, governance, compliance, or cybersecurity documentation
Strong understanding of IT General Controls (ITGCs)
Experience with SOX / ICFR / audit / risk / compliance environments
Hands-on experience with NIST Cybersecurity Framework (NIST CSF)
Proven experience documenting:
-Policies
-Standards
-Procedures
-Controls
Strong stakeholder engagement skills (technical + business)
Experience in a regulated industry (pharma, healthcare, financial services, etc.)
Excellent writing and documentation skills
Nice to Have Skills & Experience
Pharma or life sciences experience
IAM (Identity & Access Management) exposure
GRC program exposure
Experience mapping controls to frameworks/regulations
Audit support + remediation experience
Exposure to InfoSec program maturity initiatives
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.