Student - IT Risk & Compliance Analyst Co-op - Fall 2026

MDA Space•Brampton, ON

3d•Hybrid

About The Position

MDA Space is a trusted mission partner to the global space industry, known for its pioneering work in robotics, satellite systems, and geointelligence. With a rich history of over 450 missions and 4500 space experts, MDA Space is a leader in communications satellites, Earth and space observation, and space exploration. The corporate team, supporting Geointelligence, Robotics & Space Operations, and Satellite Systems, emphasizes a hands-on learning environment for collaboration and achieving goals. This role specifically supports the identification, assessment, and management of information technology and cybersecurity risks, aligning with industry standards, regulatory requirements, and organizational controls. The position focuses on IT risk and compliance activities, including risk management, control assurance, and policy governance, offering hands-on experience with Governance, Risk, and Compliance (GRC) processes.

Requirements

Currently enrolled in a college or university program in information security, cybersecurity, computer science, information technology, information systems, risk management, business technology management, engineering, or a closely related field with an interest in IT risk, audit, or compliance.
Foundational knowledge of security standards and frameworks such as ISO/IEC 27001 and the NIST Cybersecurity Framework.
Strong analytical, problem‑solving, and critical‑thinking skills, with the ability to analyze information, follow structured processes, and support IT risk and compliance tasks.
Foundational understanding of cybersecurity concepts and technical terminology, with an interest in staying current on IT trends, cybersecurity risks, and relevant security standards.
Ability to work independently as well as collaboratively in a team environment.
High level of professionalism, maturity, and strong written and verbal communication skills.
Eligibility to obtain Reliability Level security clearance.

Responsibilities

Support internal cybersecurity audits (e.g., NIST Cybersecurity Framework, UK Cyber Essentials, NIST SP 800-171), including assisting with planning activities, gathering audit evidence across multiple domains, and liaising with stakeholders to resolve blockers.
Assist with testing control effectiveness, documenting audit findings, and tracking remediation activities to closure under guidance.
Support Enterprise Risk Management (ERM) and Insider Threat risk initiatives by assisting with risk documentation, maintaining supporting artifacts, and supporting quarterly/Annual risk assessment reviews.
Assist with maintaining the IT risk register by ensuring records are current and supporting the preparation and updating of risk summary decks.
Support Third-Party Risk Management activities, including assisting with vendor risk assessments and tracking due diligence documentation.
Contribute to exceptions management by documenting requests and tracking approvals and closures.
Collect and organize metrics for IT risk and compliance reporting.
Review and update policies, standards, and guidelines as required.
Support the administration and use of GRC tools such as Optro (AuditBoard).
Assist with other duties as required to support Governance, Risk, and Compliance (GRC) initiatives.