Senior Manager, Business Risk, and Regulatory Governance
3 weeks ago
Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely and our employees can focus on value-added tasks. The purpose of this role is to establish and maintain an industry leading Governance, Risk & Compliance (GRC) practice, develop & mentor a team, and develop policies, standards, risk registries and metrics to comply with business and regulatory requirements and build resilience in people, systems and data to enable CN to reach strategic goals and objectives in the face of evolving cyber threats.
Partner with HR to maintain and bring new talent to the organization by determining which skills and roles will be required in the future, supporting, and demonstrating diversity and inclusion, and by making thoughtful hiring decisions
· Recognize employee milestones (service awards, retirements, etc.) Manage employee performance to enable potential and ensure employees not meeting expectations are identified and supported through the performance improvement process
· Participate in succession planning by contributing to the yearly talent review cycle and identifying employees with the potential to move up the management and expertise paths
· Ensure knowledge is preserved through cross-training for key skill sets in the team (knowledge transfer)
Governance, Risk & Compliance (GRC) Practice Development
· Direct and put in place the proper GRC organizational structure and practices to track and manage information and cyber risk for both IT and OT (Operational Technologies) environments and ensure compliance while enabling the business for digital transformation. Incorporating behavioral change as a key risk management strategy with security awareness training and testing.
· Maintain and build relevant, current, valid and reliable team knowledge related to governance, risk and compliance programs and practices.
· Advance team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; Ensure the full documentation and timely updates of policies, standards, guidelines, risks, exceptions, management action plans, and GRC processes through clear diagrams and well-written documents
Collaborate with the CISO, cybersecurity team, portfolio managers, architects, business and I&T leadership to understand the business direction and consequent impact on the security posture and risk appetite
· Monitor threat intelligence sources, Security Operations Center (SOC) reports, vulnerability management reports, internal audit reports, regulatory changes, industry reporting and business impact analysis to accurately identify and articulate the risk priorities and implement appropriate controls to maintain an appropriate security posture
· Continuously monitor and evaluate the environment, including third party risk and subsidiaries, through self-assessments and independent security reviews as well as metrics against the framework. Occasional business travel (Canada and US) in accordance with CN policy
Minimum 15 years overall work experience in audit, IT sales, or IT delivery
· Minimum 10 years experience in IT audit or IT governance, risk and compliance
· Minimum 5 years experience in managing IT governance, risk and compliance
· Railroad, transportation, or Global industrial experience is a significant plus (asset)
Bachelor’s degree in Computer Science, Business Administration, System Analysis or other relevant field (or) an additional 5 years of relevant experience.
· Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Privacy Professional (CIPP), Certified in Risk and Information Systems Control (CRISC), etc.
Demonstrated capability to understand the security implications of complex business operations and how they are linked to technological or process solutions that provide practical risk mitigation and business enablement
· Proven collaborative leadership and teamwork aligning to strategic business objectives
· Excellent written and verbal English communication skills with French highly desirable, able to interact with a broad cross-section of personnel to explain risks and enforce security measures
· Knack for prioritizing tasks and working in a fast-paced, Agile environment
Technical Skills/Knowledge
· Knowledge and general understanding of IT and OT security controls and control models.
· Knowledge of data classification, security policies and standards, strategic threat intelligence, threat modeling, vulnerability management, risk assessments, third party risk programs, risk management techniques, risk registries, regulatory compliance, security awareness training and testing, security metrics, security enforcement, and other relevant GRC areas of practice.
Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. S. through a 19,500 mile rail network, CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN is committed to programs supporting social responsibility and environmental stewardship.
-
Senior Manager, Regulatory Affairs
6 days ago
Markham, ON, Canada Sofina Foods Inc Full timeSofina Foods is one of Canada’s leading manufacturers of primary and further processed protein products for retail and foodservice customers as well as international markets. We manufacture pork, beef, turkey, chicken and fish products in Canada and Europe. Our family of brands include: We are also the exclusive Canadian distributor of Italy’s finest Rio...
-
Senior Manager Governance, Risk
4 days ago
Toronto, Ontario, Canada Canadian National Railway Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Senior Manager
2 weeks ago
Toronto, Canada BMO Full timeApplication Deadline: 04/29/2024Address:33 Dundas Street WestSupports the business/group leader in the effective implementation, maintenance and administration of first line of defense (1st LOD) programs (e.g., operational risk, AML, compliance, regulatory, etc.), including overseeing business operations within the jurisdiction to ensure adherence and...
-
Senior Manager Governance, Risk
3 weeks ago
Toronto, Ontario, Canada CN Rail Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Senior Manager Governance, Risk
2 weeks ago
Toronto, ON, Canada Canadian National Railway Full timeAt CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and...
-
Senior Manager Governance, Risk
3 weeks ago
Toronto, ON, Canada Canadian National Railway Full timeAt CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and...
-
Manager, IT Risk
4 weeks ago
Mississauga, ON, Canada Community Trust Company Full timeQuestrade Financial Group (QFG) of Companies is committed to helping our customers become much more financially successful and secure. We are everything a traditional financial institution is not. At QFG, you will be constantly moving forward, bringing the future of fintech into existence. You will be a part of a collaborative team that cares deeply about...
-
Senior Manager Governance, Risk
2 weeks ago
Toronto, ON, Canada Canadian National Railway Full timeAt CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and...
-
Senior Manager Governance, Risk
3 weeks ago
Toronto, ON, Canada Canadian National Railway Full timeAt CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and...
-
Senior Manager Governance, Risk
3 weeks ago
Toronto, ON, Canada Canadian National Railway Full timeAt CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and...
-
Senior Manager, Audit Governance
5 days ago
Toronto, ON, Canada TD Bank Full timeSenior Manager, Audit Governance & Control page is loaded Senior Manager, Audit Governance & Control Postuler remote type Hybride locations Toronto, Ontario time type Temps plein posted on Publié hier job requisition id R_1342429 Lieu de travail: Audit Détails de la rémunération : En votre qualité de candidat ou de candidate, nous vous...
-
Mississauga, ON, Canada Questrade Financial Group Full timeQuestrade Financial Group (QFG) of Companies is committed to helping our customers become much more financially successful and secure. At QFG, you will be constantly moving forward, bringing the future of fintech into existence. You will be a part of a collaborative team that cares deeply about our mission and each other. Your team members will help you...
-
Ottawa, ON, Canada Och Lco Full timeSenior Manager, Policy, Governance, Compliance, and Risk Who we are: Ottawa Community Housing Corporation (OCHC) is the largest community housing provider in Ottawa and the second largest in Ontario. We are a non-profit organization providing social and affordable housing to more than 32,000 tenants within various communities. We aim to be a leader at...
-
Manager, Enterprise Risk Management
5 days ago
Toronto, ON, Canada Robertson & Company Ltd. Full timeOur Client: Our client is a leading residential mortgage insurer renowned for offering mortgage default insurance to Canadian residential mortgage lenders. What You Will Achieve in This Role: As the Manager of Enterprise Risk Management (ERM), you will play a pivotal role in developing and implementing elements to support the ERM program within our...
-
Associate - U.s Governance and Risk Reporting
4 weeks ago
Toronto, Canada Royal Bank of Canada Full time**Job Summary** Develops and implements global risk management reports, systems, and processes to minimize investments risks. Applies experience and seasoned knowledge, skills, and practices to perform a variety of assignments. **What is the Opportunity?** This role is part of Group Risk Management - U.S. Governance & Risk Reporting team and is...
-
Associate Director, Regulatory and Business
4 weeks ago
Toronto, Canada Royal Bank of Canada Full time**Job Summary** Develops and implements global risk management reports, systems, and processes to minimize investments risks. Applies extensive, in-depth knowledge, skills, and practices to perform complex assignments. **What is the Opportunity?** This individual will be supporting US Enterprise Risk with regulatory and strategic initiatives and projects...
-
Insurance Regulatory
3 weeks ago
Toronto, ON, Canada Sirius Group Full timeSenior Regulatory Compliance Analyst New York-Hybrid Who We Ar e SiriusPoint is a global underwriter of insurance and reinsurance. We utilize deep risk capabilities to protect our customers and provide intelligent risk solutions to clients and brokers around the world. Bermuda-headquartered and listed on the New York Stock Exchange (SPNT), we work...
-
Toronto, ON, Canada Lannick Full timePlan, design, Create, review and revise credit policies in accordance with the strategic goals and objectives, risk tolerance, and regulatory requirements Develop detailed credit guidelines that outline the systematic processes for credit underwriting, credit evaluation, credit adjudication & approval, account monitoring Outline the hierarchy of...
-
Associate Director
3 days ago
Toronto, Canada Royal Bank of Canada Full time**Job Summary** Develops and implements global risk management reports, systems, and processes to minimize investments risks. Applies extensive, in-depth knowledge, skills, and practices to perform complex assignments. **What is the Opportunity?**: **This role is part of Group Risk Management - U.S. Governance & Risk Reporting team and will be responsible...
-
Associate Director, Regulatory and Business
7 days ago
Toronto, Canada Royal Bank of Canada Full time**Job Summary** Develops and implements global risk management reports, systems, and processes to minimize investments risks. Applies extensive, in-depth knowledge, skills, and practices to perform complex assignments. **What is the Opportunity?** This individual will be supporting US Enterprise Risk with regulatory and strategic initiatives and projects...
