Cyber Security and Information Technology Risk Lead
2 weeks ago
We are banking at another level.
Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to fuel the success of Canadian entrepreneurs.
Choosing BDC as your employer also means:
- Flexible and competitive benefits, including an Employee Savings and Investment Plan where BDC matches part of your voluntary contributions, a Defined Benefit Pension Plan, a $750 wellness and health care spending account, to name a few- In addition to paid vacation each year, five personal days, sick days as necessary, and our offices are closed from December 25 to January 1- A hybrid work model that truly balances work and personal life- Opportunities for learning, training and development, and much more...
POSITION OVERVIEW
The Operational Risk Management (ORM) team oversees the effectiveness of multiple operational risk management programs and is responsible for supporting and challenging the business in the management of risks.BDC and the financial services industry are rapidly evolving introducing more interconnected operational risks. The ORM team deploys an array of programs to support the first line of defence to better manage risk as BDC undergoes its digital and strategic transformation. The ORM team is comprised of individuals who are passionate about risk management and improving BDC operations.
We are looking for a Cyber Security and Information Technology Risk Lead, who will become a key member of the ORM team. They will be positioned as an InfoSec/IT and ORM expert responsible to review the first line of defense in the identification and management of InfoSec and IT risks across the ORM Framework. They will have the opportunity to work with individuals across the entire organization and contribute to many initiatives and projects. They will play a key role in the design, deployment, and evolution of the ORM Framework and methodologies.
- CHALLENGES TO BE MET- Support first and second-line stakeholders executing ORM Programs including: Risk and Control Self Assessments, Key Risk Indicators, Operational Risk Events, Business Continuity Management, Risk Appetite, and new product and business initiative risk assessments for products, projects and other changes.- Effectively challenge and critically review first and second line InfoSec/IT risk assessments and risk events- Monitoring and oversight of remediation activities and action plans- Recommend new technology risk assessment methodologies and tools.- Ensure the strength of ORM work methods and their evolution in line with BDC operational realities and industry best practices- Manage and improve ORM program reporting including program reporting, data collection and analysis, risk reporting, action plans, and committee presentations- Develop and maintain ORM stakeholder relationships including first line leadership, second line risk functions, and communication with senior leaders- Develop, enhance, and document ORM Governance and procedures- Coaching and sharing knowledge with more junior members of the team improving functions overall capability
- WHAT WE ARE LOOKING FOR- Bachelor’s degree in Information Technology, Communications, Business Administration, Social Sciences-related discipline- Master’s degree or other equivalent combination of education and work experience preferred- Recognized technology and/or Risk certification preferred (CRISC, CISM, CISA, Open FAIR, CISSP, COBIT, etc.)- Five years of experience working in Technology Risk, Technology Resilience, Technology Audit or related field- Subject matter expertise in IT Operations, Data, Digital, Emerging Technology and/or Information Security- Experience with understanding and translating complex business requirements in a fast-paced banking sector preferred- Strong business acumen, analytical qualitative and quantitative skills (advanced MS Excel, Power BI an asset)- Excellent French and English written and verbal communication skills, including for the development and delivery of presentations- Excellent understanding of modern governance, risk and control frameworks, including the three lines of defense- Comfortable dealing with and challenging senior stakeholders- Responsive, agile approach to manage changing priorities- Continuous improvement/learning mindset, challenging the status quo and seeking self improvement- Acuity for perceiving and understanding client/stakeholder needs- Strong planning, coordinating, organizing, training and implementation skills-
- Ability to prioritize, meet tight deadlines, escalate when necessary, and work in a multicultural, bilingual and dynamic environment- Proficiency with MS Office Suite (Word, PowerPoint, Visio)
.
-
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
Technology and Cyber Risk Manager
4 days ago
Montréal, Canada WSP Full timeWSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...
-
Cyber Security Specialist
1 month ago
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
IT/Information Security Consultant
2 days ago
Montréal, QC, Canada Genpact Full timeWith a startup spirit and 115,000 + curious and courageous minds, we have the expertise to go deep with the world’s biggest brands—and we have fun doing it! We dream in digital, dare in reality, and reinvent the ways companies work to make an impact far bigger than just our bottom line. We’re harnessing the power of technology and humanity to create...
-
IT Security Risk Analyst
4 days ago
Montréal, Canada WSP Full timeWSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...
-
Senior Manager Technology Risk
5 days ago
Montréal, Canada National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Cyber Security Specialist
1 month ago
Montréal, QC, Canada AtkinsRéalis Full timeSpécialiste en cyber sécurité (ICS/OT) Vous êtes à la recherche d’une opportunité enrichissante en tant que spécialiste en cyber sécurité (ICS/OT)? Ce rôle correspond à la mission de AtkinsRéalis de transformer, d'adopter les technologies numériques et de garantir la croissance continue de ses capacités en cybersécurité industrielle dans...
-
Information Security Governance Manager
4 days ago
Montréal, Canada Humanity Full timeCompany Description Jobs for Humanity is dedicated to building an inclusive and just employment ecosystem. Therefore, we have dedicated this job posting to individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Ethnic Minority, and the Previously Incarcerated. If you identify with any of the following...
-
Cyber Security Advisor
2 days ago
Montréal (St-Laurent ), Canada CAE Full timeRole and Responsibilities Working within the Cybersecurity team, the Global Cybersecurity Advisor will engage with stakeholders across Civil and D&S (Germany & Canada) lines of business to represent the collective cybersecurity interests of the team during project engagements through various primary activities listed below.Developing and maintaining an...
-
Information and Technology Audit Advisor
1 month ago
Montréal, Canada Canadian National Railway Full timeAt CN, everyday brings new and exciting challenges. You can expect an interesting environment where you’re part of making sure our business is running optimally and safely―helping keep the economy on track. We provide the kind of paid training and opportunities that long-term careers are built on and we recognize hard workers who strive to make a...
-
Manager, Technology Risk Consulting
1 day ago
Montréal, Canada KPMG-Canada Full time**Overview** At KPMG, you'll join a team of diverse and dedicated problem solvers, connected by a common cause: turning insight into opportunity for clients and communities around the world. The opportunity: **What you will do - Conducting assessments of IT risks and controls in support of internal and external audit and advisory engagements, related to...
-
Montréal, QC, Canada Soho Square Solutions Full timeRole: Cyber Security Advisor Duration: 12 Months (Temp-to-perm) (Renewable) Bilingual: French & English Montreal, QC A career as a Senior Advisor – Cyber-Resilience Initiatives and Operations means having a positive impact on our organization by daily improving the Bank's capabilities to defend itself against all types of cyber events through your...
-
Resilience Security Specialist
1 month ago
Montréal, QC, Canada Cyber Crime Full timeUbisoft Welcome to the official website for Ubisoft, creator of Assassin's Creed, Just Dance, Tom Clancy's video game series, Rayman, Far Cry, Watch Dogs and many others. Learn more about our breathtaking games here! View company page The incumbent will play a pivotal role in ensuring the safety and security of our Pan-Canadian Studios;...
-
Information Security Policy Analyst
1 month ago
Montréal, Canada Fivesky Full timeDo you work with Global cybersecurity teams to assess, guide and rewrite policies and standards? Are you collaborating at all levels within your organization to enhance policies, ensure compliance, and support policy adoption efforts? If this sounds like you, you might be Fivesky's **_Information Security Policy Analyst!_** **Who you are**: - 5-7 + years...
-
Information Security Policy Analyst
4 weeks ago
Montréal, Canada Fivesky Full timeDo you work with Global cybersecurity teams to assess, guide and rewrite policies and standards? Are you collaborating at all levels within your organization to enhance policies, ensure compliance, and support policy adoption efforts? If this sounds like you, you might be Fivesky's **_Information Security Policy Analyst!_** **Who you are**: - 5-7 + years...
-
Analyst, Information Security
5 days ago
Montréal, Canada Fed IT Full timeHello, I'm Clémence, recruitment and business development consultant at FED IT, a recruitment agency specializing in IT professions. I work on two types of recruitment: temporary and permanent. All our consultants are IT experts who speak your language and work in your environment. We cover the full range of IT professions: development, business...
-
Montréal, QC, Canada Axium Infrastructure Full timeEn tant qu'administrateur de la sécurité réseau / cyber analyste, vous serez à l'avant-garde pour assurer la sécurité et l'intégrité de notre infrastructure réseau tout en analysant et en répondant aux cyber menaces. Ce rôle nécessite un mélange d'expertise technique en administration de la sécurité réseau et en analyse des cyber menaces,...
-
Montréal, Canada Axium Infrastructure Full timeEn tant qu'administrateur de la sécurité réseau / cyber analyste, vous serez à l'avant-garde pour assurer la sécurité et l'intégrité de notre infrastructure réseau tout en analysant et en répondant aux cyber menaces. Ce rôle nécessite un mélange d'expertise technique en administration de la sécurité réseau et en analyse des cyber menaces,...
-
Spécialiste en cyber sécurité
1 month ago
Montréal, QC, Canada AtkinsRéalis Full timeSpécialiste en cyber sécurité (ICS/OT) Vous êtes à la recherche d’une opportunité enrichissante en tant que spécialiste en cyber sécurité (ICS/OT)? Ce rôle correspond à la mission de AtkinsRéalis de transformer, d'adopter les technologies numériques et de garantir la croissance continue de ses capacités en cybersécurité industrielle...
-
Montréal, QC, Canada Canadian National Railway Company Full timeExpert, Information Security Third Party Risk Management At CN, we work together to move our company—and North America—forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize...
