Senior Manager, Business Risk, and Regulatory Governance
3 weeks ago
Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely and our employees can focus on value-added tasks. Job Summary The purpose of this role is to establish and maintain an industry leading Governance, Risk & Compliance (GRC) practice, develop & mentor a team, and develop policies, standards, risk registries and metrics to comply with business and regulatory requirements and build resilience in people, systems and data to enable CN to reach strategic goals and objectives in the face of evolving cyber threats.
Main Responsibilities Leading Others ·Partner with HR to maintain and bring new talent to the organization by determining which skills and roles will be required in the future, supporting, and demonstrating diversity and inclusion, and by making thoughtful hiring decisions
·Recognize employee milestones (service awards, retirements, etc.) Manage employee performance to enable potential and ensure employees not meeting expectations are identified and supported through the performance improvement process
·Participate in succession planning by contributing to the yearly talent review cycle and identifying employees with the potential to move up the management and expertise paths
·Ensure knowledge is preserved through cross-training for key skill sets in the team (knowledge transfer)
Governance, Risk & Compliance (GRC) PracticeDevelopment ·Direct and put in place the proper GRC organizational structure and practices to track and manage information and cyber risk for both IT and OT (Operational Technologies) environments and ensure compliance while enabling the business for digital transformation. Incorporating behavioral change as a key risk management strategy with security awareness training and testing.
·Maintain and build relevant, current, valid and reliable team knowledge related to governance, risk and compliance programs and practices.
·Advance team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; Ensure the full documentation and timely updates of policies, standards, guidelines, risks, exceptions, management action plans, and GRC processes through clear diagrams and well-written documents
GRCContinuous Improvement ·Collaborate with the CISO, cybersecurity team, portfolio managers, architects, business and I&T leadership to understand the business direction and consequent impact on the security posture and risk appetite
·Monitor threat intelligence sources, Security Operations Center (SOC) reports, vulnerability management reports, internal audit reports, regulatory changes, industry reporting and business impact analysis to accurately identify and articulate the risk priorities and implement appropriate controls to maintain an appropriate security posture
·Continuously monitor and evaluate the environment, including third party risk and subsidiaries, through self-assessments and independent security reviews as well as metrics against the framework. Working Conditions Occasional business travel (Canada and US) in accordance with CN policy
Requirements Experience ·Minimum 15 years overall work experience in audit, IT sales, or IT delivery
·Minimum 10 years experience in IT audit or IT governance, risk and compliance
·Minimum 5 years experience in managing IT governance, risk and compliance
·Railroad, transportation, or Global industrial experience is a significant plus (asset)
Education/Certification/Designation ·Bachelor’s degree in Computer Science, Business Administration, System Analysis or other relevant field (or) an additional 5 years of relevant experience.
·Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Privacy Professional (CIPP), Certified in Risk and Information Systems Control (CRISC), etc.
Competencies ·Demonstrated capability to understand the security implications of complex business operations and how they are linked to technological or process solutions that provide practical risk mitigation and business enablement
·Proven collaborative leadership and teamwork aligning to strategic business objectives
·Excellent written and verbal English communication skills with French highly desirable, able to interact with a broad cross-section of personnel to explain risks and enforce security measures
·Knack for prioritizing tasks and working in a fast-paced, Agile environment
Technical Skills/Knowledge ·Knowledge and practical experience applying standards, frameworks, regulations, and legislation governing information security and privacy, e.g. Knowledge and general understanding of IT and OT security controls and control models.
·Knowledge of data classification, security policies and standards, strategic threat intelligence, threat modeling, vulnerability management, risk assessments, third party risk programs, risk management techniques, risk registries, regulatory compliance, security awareness training and testing, security metrics, security enforcement, and other relevant GRC areas of practice.
Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. S. through a 19,500 mile rail network,CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN is committed to programs supporting social responsibility and environmental stewardship.
-
Chief Advisor Data Risk and Governance
3 days ago
Montréal, QC, Canada National Bank Full timeJob Description Attendance Hybrid Job Number 19866 Category: Senior Professional Status: Permanent Type of Contract: Permanent Schedule: Full-Time Full Time / Part Time? Full-Time Posting date: 21-Feb-2024 Location: Montreal, Quebec City: Montreal Province/State: Quebec Area of Interest: Risk management Your role Participate in the Bank’s data...
-
Specialist, Operational Risk Management
1 month ago
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
Senior Technology Risk Management Specialist
3 days ago
Montréal, QC, Canada Sun Life Financial Full timeManager, Fraud Risk Management page is loaded Manager, Fraud Risk Management Apply locations Montreal, Quebec Toronto, Ontario Waterloo, Ontario time type Full time posted on Posted Yesterday job requisition id JR00096113 You are as unique as your background, experience and point of view. You'll work with dynamic colleagues - experts in their fields -...
-
Chief Advisor Data Risk and Governance
1 day ago
Montreal, QC, G4F, CA National Bank Full timeA career as a Chief Advisor in data risk and governance gives you a unique opportunity to join a team of passionate people who want to change the banking world. We are client-centric and play a major role in high-impact big data projects. Your role Participate in the Bank’s data transformation and enhancement strategy and lead risk management initiatives...
-
Senior Analyst, Enterprise Risk Management
2 days ago
Montréal, Canada TMX GROUP Full timeVenture outside the ordinary - TMX Careers The TMX group of companies includes leading global exchanges such as the Toronto Stock Exchange, Montreal Exchange, and numerous innovative organizations enhancing capital markets. United as a global team, we’re connecting cross-functionally, traversing industries and geographies, moving opportunity into...
-
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
Health, Safety, Risk Business Partner
1 month ago
Bécancour, QC, Canada In Demand Recruitment and Consulting Inc. Full timeIN DEMAND Recruitment & Consulting Inc. is currently recruiting a BILINGUAL ENVIRONMENTAL HEALTH & SAFETY BUSINESS PARTNER for our Becancour, QC client. Our client is a global agricultural network and realizes the power in connecting local farmers to countries around the world. They are committed to creating a workplace that provides people with the...
-
Senior Manager Technology Risk
1 day ago
Montreal, QC, G4F, CA National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Montréal, Canada Desjardins Group Full timeAs a senior advisor for Desjardins General Insurance Group (DGIG), you'll recommend priorities and strategies to increase the organization's maturity in environmental, social and governance (ESG) risk management, and specifically climate risk management. Your role involves helping departments in the Property and Casualty Insurance Executive Division...
-
Compliance and Risk Manager
4 weeks ago
Montréal, Canada BrainFinance Full timeWe are looking for a Compliance and Risk Manager to develop the appropriate solutions to managing compliance and regulatory risks in understanding the short - and long-term goals of the organization. **What You’ll Do** - Leadership: Collaborate with all departments to monitor the enforcement of standards and regulations. Independently champion compliance...
-
Risk Officer
1 month ago
Montréal, Canada Société Générale Full time**Responsibilities**: **Responsibilities** The RISQ division's mission is to contribute to the development of the SG Group's activity by facilitating the objectives of the Business Lines while maintaining independent oversight through risk evaluation and monitoring. The RISQ division in the US supports all the activities in the Americas Region (US, Canada...
-
Senior Business Analyst
4 weeks ago
Montréal, QC, Canada Egon Zehnder Full timePlease submit application materials in English* We are seeking a highly motivated and proactive Senior Business Analyst to join our Expert team serving North America based in Montreal. In this fast-paced role, the Senior Business Analyst will be responsible for guiding internal client teams of consultants and other Experts in the execution of Executive...
-
Regional Manager, Government Relations
9 hours ago
Montréal, QC, Canada Lock Search Group Full timeRegional Manager, Government RelationsQuebec, & Atlantic CanadaJob SummaryOur client, a multinational medical device company, is seeking a Regional Manager, Government Relations to join their team. The incumbent must be fluently bilingual (EN/FR). Key ResponsibilitiesDevelop outreach plans for the provincial government in Quebec and Atlantic Canada,...
-
Regional Manager, Government Relations
4 hours ago
Montréal, QC, Canada Lock Search Group Full timeRegional Manager, Government RelationsQuebec, & Atlantic CanadaJob SummaryOur client, a multinational medical device company, is seeking a Regional Manager, Government Relations to join their team. The incumbent must be fluently bilingual (EN/FR). Key ResponsibilitiesDevelop outreach plans for the provincial government in Quebec and Atlantic Canada,...
-
Montréal, QC, Canada Canadian National Railway Company Full timeExpert, Information Security Third Party Risk Management At CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize...
-
Lead Advisor Environment Social Risk Management
1 month ago
Montréal, Canada Laurentian Bank Full timeSeeing beyond numbers **TM** At Laurentian Bank, we believe we can change banking for the better. Founded in Montreal in 1846, Laurentian Bank helps families, businesses and communities thrive. Today, we have over 3,000 employees working together as One Team, to provide a broad range of financial services and advice-based solutions for customers across...
-
Risk Analyst Ii
1 month ago
Montréal, Canada Excelgens Full timeCompliance Specialist supporting the Rio Tinto Ethics and Compliance (E&C) team in the management and implementation of the Business Integrity Compliance Programme primarily across Canada and within the broader Americas (AMA) region. This is a great opportunity to be recognized as an expert in the area of Ethics & Compliance. You will ensure appropriate...
-
Montréal, Canada WSP Full time**Overview**: As part of the Strategy & Governance IT group, this senior managerial position is crucial for realizing WSP Enterprise IT's vision: To contribute to the development, update, and implementation of the IT strategy and governing its execution. Leading the creation, revision, optimization, enhancement and enforcement of governance and performance...
-
Senior Vendor Risk Management Specialist
2 weeks ago
Montréal, Canada Payments Canada Full timeThursday, April 25, 2024 Payments Canada's purpose is to make payments easier, smarter and safer for all Canadians. We care deeply about our employees' well-being and are committed to providing a flexible, hybrid work environmentthat supports in-person connection and remote work. Get to Know Us We are a unique organization situated at the centre of...
-
Senior Vendor Risk Management Specialist
2 weeks ago
Montréal, Canada Payments Canada Full timeThursday, April 25, 2024 Payments Canada's purpose is to make payments easier, smarter and safer for all Canadians. We care deeply about our employees' well-being and are committed to providing a flexible, hybrid work environmentthat supports in-person connection and remote work. Get to Know Us We are a unique organization situated at the...