Technology and Cyber Risk Manager

6 months ago


Montréal, Canada WSP Full time

WSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients.

To run our global Technology & Cyber Risk Management process, we are seeking a talented and experienced Senior Manager for Technology and Cyber Risk. This role will report to the Global Director of IT Risk.

As a Senior Manager for Technology and Cyber Risk, your primary role will be to manage the full IT Risk Process from identification, assessment, mitigation and monitoring. This role is a key player in fostering relationships and coordinating efforts to manage technology-related risks. It calls for a strong analytical ability, and the capacity to work effectively in a diverse, global environment.

**MAIN RESPONSIBILITIES**
- Implement and maintain a comprehensive and effective IT risk management practice across the WSP global IT organisation. This should include identification of potential IT risks, the evaluation of their impact, the formulation of strategies to mitigate these risks, and the tracking of their mitigation and/or acceptance. Conduct regular monitoring and review of the IT risk management process to ensure its effectiveness and alignment to the organization’s risk appetite and business objectives.
- Establish reporting and communication methods that ensure that relevant stakeholders within IT and business leadership have an accurate and timely view of IT risks. Analyse and process data related to risk, issues, and deficiencies to identify patterns and trends.
- Work with WSPs Executive Risk Management (ERM) team on the evaluation and reporting of relevant IT Risks as part of the ERM process.
- Lead and manage a team of risk analysts, fostering a collaborative environment that encourages open communication, mutual respect, and shared responsibility in managing cyber and technology risks.
- Deliver risk management training within the IT community and establish a culture of risk-aware decision-making, accountability, and a commitment to maintaining an effective control environment.
- Own and manage the evolution of the Integrated Risk Management Platform (Service-Now IRM). This includes entities, risk statements and controls management.

**Leadership and People Responsibilities**:

- Displays leadership and independence in performing their role.
- High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity.
- Develop positive working relationships with other team members and business partners and partners across teams to align with WSP internal and external client demands.
- Capable of rapidly assimilating and internalizing complex business, technology, and risk management concepts and dependencies.
- Able to exercise judgement when policies are not well-defined.
- Critical thinker with strong problem-solving and organization skill.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate between specialized groups of business unit and IT professionals.
- Ability to work with people from different backgrounds and cultures across the region and the world. Accommodation of schedule for international conference calls.

**Requirements**:
**About you**:

- 8+ years related senior level experience in Information Security, IT Audit with at least 2 years in Risk Management.
- Bachelor’s degree in information technology, Computer Science, Engineering, or related field.
- Experience working in large/global enterprise IT.
- Experience with IT Governance frameworks such as NIST and ISO 2700x
- Experience with governance, compliance and audit within IT environments
- Experience of risk management, including risk analysis, mitigation and monitoring
- Knowledge of information security regulations
- Excellent interpersonal and communication skills, able to interact with different layers of management.
- Ability to work with mínimal supervision and little to no instructions.
- Strong organizational and project management skills.
- Excellent analytical and diagnostic problem-solving skills
- Demonstrated experience in understanding and demonstrating compliance with information security requirements.
- Limited travelling may be required.

Due to the nature of this role, you may need to work outside of standard business hours occasionally.

**Preferred**
- Knowledge of Service-Now Integrated Risk Management platform (IRM)
- Professional certification in one or more of the following disciplines — IT governance (e.g., CGEIT), security (e.g., CISSP, CISM), internal audit (CISA) or Payment Card Industry (PCI)



  • Montréal, QC, Canada National Bank of Canada Full time

    As a Chief Advisor, Technology and Cyber Risk Management for Business Lines on the Technology, Cyber and Data Risk Management team at National Bank, you will act as a second line of defence specialist on information technology and cybersecurity. Your experience in several areas of technology (IT architecture, cloud, cyber) will help you to have a positive...


  • montréal, Canada National Bank Full time

    As a Senior Advisor on the Technology, Cyber and Data Risk Management team at National Bank, you’ll act as a specialist in support of the implementation of the Bank’s risk management strategy. This role will enable you to have a positive impact on the organization by taking charge of risk governance for the 2nd line of defence.Your role Contribute to the...


  • montréal, Canada National Bank Full time

    As a Senior Advisor on the Technology, Cyber and Data Risk Management team at National Bank, you’ll act as a specialist in support of the implementation of the Bank’s risk management strategy. This role will enable you to have a positive impact on the organization by taking charge of risk governance for the 2nd line of defence.Your role Contribute to the...


  • Montréal, Canada Business Development Bank of Canada Full time

    We are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...


  • Montréal, Canada MNP Full time

    What do you think of when you hear the name MNP? Most likely tax and accounting, but as one of Canada’s largest consulting organizations, we’re so much more! We’re also serious about technology. Make an impact with our Cyber Security & Privacy - Risk Management team as an Analyst. This diverse team of tech-savvy problem solvers enables clients to take...


  • Montréal, Canada Business Development Bank of Canada Full time

    We are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...


  • Montréal, QC, Canada Intact Full time

    Our employees are at the heart of what we do best: helping people, businesses and society prosper in good times and be resilient in bad times. When you join our team, you’re bringing this purpose to life alongside a passionate community of experts. Feel empowered to learn and grow while being valued for who you are - here, diversity is a strength. You...


  • Montréal, Canada Intact Full time

    Our employees are at the heart of what we do best: helping people, businesses and society prosper in good times and be resilient in bad times. When you join our team, you’re bringing this purpose to life alongside a passionate community of experts. Feel empowered to learn and grow while being valued for who you are - here, diversity is a strength. You...


  • Montréal, QC, Canada Fivesky Full time

    Are you passionate about mitigating technology risks and ensuring security within a complex environment? Do you want to take your career in vulnerability management and risk mitigation to the next level? If so, then you might be Fivesky's next Technology Risk Specialist! **Who you are**: - Have 5+ years of technology experience, including work in...

  • Risk Officer

    3 weeks ago


    Montréal, QC, Canada Société Générale Full time

    **Responsibilities**: The Risk Management Department contributes to the sustainable growth of the Societe Generale group through its expertise, understanding of risks, and risk management techniques. The department’s mission is to independently analyze, assess, manage and monitor risk-taking activities with the objective of achieving, together with the...


  • Montréal, Canada MNP Full time

    What do you think of when you hear the name MNP? Most likely tax and accounting, but as one of Canada’s largest consulting organizations, we’re so much more! We’re also serious about technology. Make an impact with our Cyber Risk Management team as a Consultant. This diverse team of tech-savvy problem solvers enables clients to take a proactive and...


  • Montréal, Canada WSP Full time

    WSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...

  • Cyber Insurance Broker

    7 months ago


    Montréal, Canada BFL CANADA Full time

    **We offer more than a job, we offer a career!** - We support our employees to shape their career by encouraging continuing education and investing in training and development. - We put our employees at the center of what we do to allow them to grow personally and professionally, with projects and challenges that are motivating and rewarding. - We inspire...


  • Montréal, Canada Business Development Bank of Canada Full time

    We are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...


  • Montréal, Canada Kruger Inc. Full time

    *** The Cyber Compliance Analyst is responsible for evaluating, implementing, and maintaining cybersecurity policies, procedures, and controls to ensure compliance with regulatory requirements and industry standards. This role involves conducting assessments, monitoring security systems, and collaborating with internal teams to address compliance gaps and...

  • Cyber Security Expert

    7 months ago


    Montréal, Canada Equans Full time

    **Requisition ID**: 53969 **Domain**: Digital and IT/Cybersecurity **Contract type**: Permanent **Schedule**: Full-Time **_Equans is looking for a cybersecurity Expert!_** The Equans group is a world leader in the energy and services industry. The Group operates in 20 countries, with 90,000 employees working on 5 continents. Equans is a Bouygues group...

  • Chief Advisor IT Risk

    3 months ago


    Montréal, QC, Canada National Bank of Canada Full time

    Are you looking to make a direct and positive impact by contributing to the transformation of National Bank? As a Senior Operational Risk Advisor, you will play a key role by overseeing the activities of a squad dedicated to managing operational, technological, and cyber risks, while collaborating closely with IT teams. Your expertise in risk management and...


  • Montréal, Canada BFL CANADA Risk and Insurance Full time

    We offer more than a job, we offer a career! We support our employees to shape their career by encouraging continuing education and investing in training and development. We put our employees at the center of what we do to allow them to grow personally and professionally, with projects and challenges that are motivating and rewarding. We inspire people to...


  • Montréal, Canada Fuze Logistics Services Inc Full time

    **Manager, Risk and Legal Affairs - Montreal Office** Fuze Logistics Services is a next generation 3PL headquartered in Montreal, with offices across North America, leveraging cutting-edge technologies and decades of industry expertise to facilitate the transport of freight globally. **Duties and Responsibilities**: - Claims: process claims, as required;...


  • Montréal, Canada National Bank of Canada Full time

    Joining the Risk Management team at National Bank means contributing to the transformation and having a direct impact on clients. As Strategic Advisor, Quantitative Risk Management, Cybersecurity and Technology, you will support the implementation of the Bank’s risk management strategy and carry out quantitative assessments of cybersecurity and technology...