Information Security Governance Manager

2 weeks ago

Toronto, Canada Xerox Full time

**City**:Toronto

**State/Province**:Ontario

**Country**:Canada

**Department**:Service Delivery

**Date**:Thursday, March 9, 2023

**Working time**:Full-time

**Ref#**:20022334

**Job Level**:Manager without Direct Reports

**Job Type**:Experienced

**Job Field**:Service Delivery

**Seniority Level**:Associate

**Description & Requirements**:
**About Xerox Holdings Corporation**- OVERVIEW:
The Governance Manager oversees the programs related to certifications and the governance of our information security programs at our shared Imaging and Print centers in the Americas (Canada and the US). The Governance Manager will ensure the continued certifications of our sites to the ISO27001 standard, as well as manage the PCI (Payment Cards Industry) certification for a subset of clients and work towards the new certification of our SOC2 certifications. The Governance Manager will lead the program and work with our operational and technology teams who are key stakeholders in the certification and audit processes that lead to successful certification.PRIMARY RESPONSIBILITIES:
The Governance Manager’s responsibilities fall into 3 key areas - (1) Program leadership to ensure we stay current on industry requirements and (2) leading the Governance and Operational teams to complete key inputs and (3) complete internal audits and risk reviews prior to external audits being completed on an annual basis**(1) Program Leadership**
- ** Owns the Governance Program for the Americas** - through the management of the processes leading to the successful completion of annual Governance objectives
- Drives continuous and measurable** improvement of information security standards** by conducting regular risk reviews and participating in incident management programs
- Provides **monthly updates to the senior leaders** outlining how we are doing against the timelines and objectives that we have set out at the start of the year. In cases where gaps exist, follow a root-cause analysis process to create a corrective action plan to ensure we meet the annual objectives.
- Ensures **robust tools are used** and are in place to effectively manage the program and provide visibility to stakeholders (operations, technology, clients and executive teams)
- ** Monitor the Changing Landscape** of the ISO, SOC2 and PCI standards and ensure changes are put in place to pro-actively meet and exceed the data security standards for our operational sites in the Americas

**(2) Lead Operations and Technical Teams in Governance Activities**
- ** Leads, motivates, mentors** the stakeholders in the provision of governance inputs in preparation for certification and recertification activities. Manages stakeholders either directly and/or indirectly to ensure the stakeholders understand their role in the process
- ** Provides Direction** to stakeholders as the Subject Matter Expert on Information Security and their obligations and provide insight so they may continuously improve the ways we protect our client’s privacy and cultivate an environment of information security

**(3) Auditing Sites**
- ** Performs Internal Audits and Risk Reviews** in support of the ISO 27001 and PCI programs through the verification of controls that are used by our operational and technology teams. Validate evidence is available to support the controls and ensure that this data is comprehensive and accurate.
- ** Lead the Closure of Deficiencies** that exist within the technical and operations teams (build an action document CAD - to drive identification of issues, steps for closure with operational and technical teams). Participate in Incident Management reviews to understand key areas for improvement or remediation.
- ** Be the focal point with the External Auditors** - Governance Manager works with External Auditor providing timely and accurate evidence to obtain recertification/certification on ISO, PCI and SOC 2 audits.

QUALIFICATIONS:
- Certified Internal Auditor for ISO 27001
- Demonstrated experience in ISO 27001, PCI (Payment Cards Industry) and SOC2
- Demonstrated Leadership with working with cross functional teams
- 3-5 years’ experience working in Information Security
- Demonstrated organizational and leadership skills
- Strong ability to analyze data to make recommendations related to Information Security
- Demonstrated resilience in times of change, transition and challenging business situations

LI-CB1

  • Manager, Information Security

    4 weeks ago

    Toronto, Canada North York General Hospital Full time

    Company Bio IMAGINE a hospital where everyone is committed to excellence. We did. We are. From boardroom to bedside, we go above and beyond to offer the best and safest patient care. At North York General Hospital (NYGH), we put our patients first in everything we do. We are achieving a new standard of excellence in integrated patient-centered care and as...

  • Head of Information Security

    3 weeks ago

    Toronto, ON, Canada WSP USA Full time

    Position Summary WSP’s Information Security Office (ISO) is responsible for the deployment of the information security framework in to both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...

  • Head of Information Security

    3 weeks ago

    Old Toronto, Canada WSP USA Full time

    Position Summary WSP’s Information Security Office (ISO) is responsible for the deployment of the information security framework in to both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...

  • Head of Information Security

    3 weeks ago

    Old Toronto, Canada WSP USA Full time

    Position Summary WSP’s Information Security Office (ISO) is responsible for the deployment of the information security framework in to both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...

  • Head of Information Security

    4 weeks ago

    Old Toronto, Canada WSP USA Full time

    Position Summary WSP’s Information Security Office (ISO) is responsible for the deployment of the information security framework in to both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our...

  • Information Security Specialist

    3 weeks ago

    Toronto, Canada TD Bank Full time

    **TD Description** Stay current and competitive. Carve out a career for yourself. Grow with us. **Department Overview** **Building a World-Class Technology Team at TD** We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and...

  • IAM Manager, Information Security

    3 weeks ago

    Toronto, ON, Canada First National Financial LP Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 2, 2024 Closing...

  • IAM Manager, Information Security

    3 weeks ago

    Old Toronto, Canada First National Financial LP Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 2, 2024 Closing...

  • IAM Manager, Information Security

    3 weeks ago

    Old Toronto, Canada First National Financial LP Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 2, 2024 Closing...

  • IAM Manager, Information Security

    4 weeks ago

    Old Toronto, Canada First National Financial LP Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 2, 2024 Closing...

  • Information Security Specialist

    2 weeks ago

    Toronto, Canada TD Bank Full time

    400552BR Technology Solutions Toronto, ON March 6, 2023 Company Overview Department Overview **Building a World-Class Technology Team at TD** We can’t afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open-minded in the way we...

  • IAM Manager, Information Security

    2 weeks ago

    Toronto, ON, Canada Toronto, ON, Canada Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 24, 2024 Closing...

  • IAM Manager, Information Security

    3 weeks ago

    Old Toronto, Canada Toronto, ON, Canada Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 24, 2024 Closing...

  • IAM Manager, Information Security

    2 weeks ago

    Old Toronto, Canada Toronto, ON, Canada Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 24, 2024 Closing...

  • IAM Manager, Information Security

    2 weeks ago

    Old Toronto, Canada Toronto, ON, Canada Full time

    The Role: A strategic and integral member of the Information Security Team, reporting to the Senior Manager (GRC), Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. Reporting To: Senior Manager, GRC Full-Time/Part- Time: Full-time Posting Date: April 24, 2024 Closing...

  • Senior Manager of GRC, Information Security

    3 weeks ago

    Toronto, Canada First National Full time

    We are hiring a Senior Manager of GRC in our Information Security department! The Role: A strategic and integral member of the Information Security Team, reporting to the AVP, Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. The candidate will contribute to the...

  • Information Security Specialist

    6 days ago

    Toronto, Canada Manulife Full time

    **_Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You’ve come to the right place. We’re looking for ambitious people who share our values and want to make every day better for people around the world. If this sounds like you, and the career below sounds exciting, we’d like to hear from you....

  • Information Manager

    4 days ago

    Toronto, Canada Turner & Townsend Full time

    **Company Description** Do you want to be part of our successful team supporting top clients for **Turner & Townsend** in Canada? We are hiring a bold and forward-thinking **Information Manager **to work in our growing team. At Turner & Townsend we’re passionate about making the difference. That means delivering better outcomes for our clients, helping...

  • Information Security Specialist

    5 days ago

    Toronto, Canada TD Bank Full time

    **Information Security Specialist**: - 417594BR **Job Category - Primary** - Technology Solutions **Work Location** - 310-320 Front Street West Corporate **Employment Type** - Regular **City** - Toronto **Time Type** - Full Time **Province/State** - Ontario **Hours** - 37.5 **Workplace Model** - Hybrid **Pay Details** **Department...

  • Security Team Manager

    4 weeks ago

    Toronto, ON, Canada Securitas Security Services USA, Inc. Full time

    SUMMARY: The Security Team Manager (STM) serves as the day-to-day manager of a site security team that includes administrative security guards, security responders, security supervisors, control room supervisors and other security personnel at a client's datacenter. The STM is responsible for building a cohesive and high performing team. Reporting directly...