About the role
JOB DESCRIPTION Apotex is looking for a senior Cybersecurity Policy & Controls Documentation Specialist to support the buildout of its ICFR (Internal Control over Financial Reporting) and Information Security governance programs. This person will work closely with Cybersecurity, Compliance, Audit, Risk, and Technology teams to develop and maintain security documentation, policies, and IT controls.
Ideal candidate = strong in IT controls documentation + regulated environments + stakeholder management.
Day to day: Develop and maintain cybersecurity policies, standards, procedures, and governance documentation Document and map IT controls aligned to security and compliance requirements Support the buildout of ICFR and InfoSec governance programs Partner with cybersecurity, infrastructure, audit, and business teams to gather requirements Review existing documentation and identify gaps, inconsistencies, and improvement areas Ensure alignment with security frameworks, regulatory requirements, and internal standards Support audit readiness (controls documentation + evidence collection) Manage documentation lifecycle: reviews, approvals, version control Help establish standard templates and documentation practices REQUIRED SKILLS AND EXPERIENCE 5–8+ years in IT controls, governance, compliance, or cybersecurity documentation Strong understanding of IT General Controls (ITGCs) Experience with SOX / ICFR / audit / risk / compliance environments Hands-on experience with NIST Cybersecurity Framework (NIST CSF) Proven experience documenting: -Policies -Standards -Procedures -Controls Strong stakeholder engagement skills (technical + business) Experience in a regulated industry (pharma, healthcare, financial services, etc.) Excellent writing and documentation skills
Similar Jobs
About the role
JOB DESCRIPTION Apotex is looking for a senior Cybersecurity Policy & Controls Documentation Specialist to support the buildout of its ICFR (Internal Control over Financial Reporting) and Information Security governance programs. This person will work closely with Cybersecurity, Compliance, Audit, Risk, and Technology teams to develop and maintain security documentation, policies, and IT controls.
Ideal candidate = strong in IT controls documentation + regulated environments + stakeholder management.
Day to day: Develop and maintain cybersecurity policies, standards, procedures, and governance documentation Document and map IT controls aligned to security and compliance requirements Support the buildout of ICFR and InfoSec governance programs Partner with cybersecurity, infrastructure, audit, and business teams to gather requirements Review existing documentation and identify gaps, inconsistencies, and improvement areas Ensure alignment with security frameworks, regulatory requirements, and internal standards Support audit readiness (controls documentation + evidence collection) Manage documentation lifecycle: reviews, approvals, version control Help establish standard templates and documentation practices REQUIRED SKILLS AND EXPERIENCE 5–8+ years in IT controls, governance, compliance, or cybersecurity documentation Strong understanding of IT General Controls (ITGCs) Experience with SOX / ICFR / audit / risk / compliance environments Hands-on experience with NIST Cybersecurity Framework (NIST CSF) Proven experience documenting: -Policies -Standards -Procedures -Controls Strong stakeholder engagement skills (technical + business) Experience in a regulated industry (pharma, healthcare, financial services, etc.) Excellent writing and documentation skills