Manager, Infosec Cyber Grc
1 week ago
No other bank is doing what we do.
At BDC, we help Canada and its entrepreneurs create a prosperous, inclusive and green economy. Our mission is to help Canadian businesses thrive by providing financing, capital and advisory services. We’re devoted to Canadian entrepreneurs. We’re also dedicated to our employees. Adaptable. Inspiring. Different. There’s a reason we like to work here, and we think you’ll like it too. Join BDC and help make a difference
Diversity. Equity. Inclusion. They’re more than just words for BDC. These concepts are foundational to our success and to our ability to attract, retain, mobilize and develop the right talent, as well as to offer a healthy, professional and collaborative environment. We are committed to cultivating and preserving an environment where all employees can thrive, and, for over a decade, we have been recognized as one of Canada's Top 100 Employers and one of Canada's Best Diversity Employers. In recruiting for our team, we welcome the unique contributions that you can bring in terms of your education, opinions, culture, ethnicity, race, sex, gender identity and expression, nation of origin, age, languages spoken, veteran’s status, color, religion, disability, sexual orientation, beliefs, experiences, and more.
POSITION OVERVIEW
The Manager InfoSec, IT Risk contributes to the overall successful development and execution of BDC’s overall First Line of Defense IT Tech Risk program designed to give confidence to customers, our shareholders, management, and regulators that BDC operates in a proactive, well-manages, and risk-conscious manner.
The Manager InfoSec, IT Risk supports the risk identification and management process across all aspects of Information Technology. He/she will collaborate with business units and corporate functions to ensure IT risks, policies, processes and standards are communicated and to provide appropriate IT Risk Management awareness and training. He/she ensures the organization has appropriate and effective IT risk reporting, analysis and governance according to international, industry, and company-specific requirements.
CHALLENGES TO BE MET- Oversee the operations of a team composed of IT Risk and GRC professionals to ensure the efficient operation of the function- Assist in the development and recommendations of IT risk limits, key risk indicators and key action plans- Support the maintenance and development of technology risk management framework, methodologies, and independent assurance activities with a focus on business impacts- Build and enhance the function brand and act as a trusted advisor to the business- Improve BDC understanding of risk and how to operate a risk-conscious environment.- Deliver in-depth risk assessments/reviews, including identifying and documenting risks and controls, creating detailed process flows and assessing the implementation- Support in the ownership, accountability, oversight, and roadmap of the Tech Risk service- Assist within the operation of the IT Tech Risk operating model as well as roles and responsibilities- Coordinate and oversee the IT Risk programs, services, operations, and activities- Establish and manage IT Tech Risk procedures- Assist with the development and implementation of a risk identification and assessment program and process to best fit evolving internal and external business environments- Ensure an alignment with diverse staff and leadership to promote trust, collaboration, and partnership across the organization- Support the IT internal control environment and the cross-functional IT risk mitigation efforts- Maintain the IT Risk management dashboard to monitor adherence to the IT Tech Risk Corporate Directive- Provide relevant IT Risk limits and information to IT Risk owners and users- Support and alignment with Organization Risk Management (ORM)- Coordinate the reporting on the ORM and IRM function on business units’ and corporate functions’ IT risk profile- Assist senior management and Board Risk Committee executive with IT Risk and compliance reporting (metrics, KPIs)- Liaise with the various internal stakeholders for IT Risk Management matters- Identify education requirements, conduct training, and implement communication plans for the GRC team, IT staff, managers, partners, and stakeholders- Coaching and sharing knowledge with more junior members of the team improving functions overall capability- Perform other duties, as assigned
WHAT WE ARE LOOKING FOR- Bachelor’s degree in Information Technology, Communications, Business Administration, Social Sciences-related discipline- Master’s degree or other equivalent combination of education and work experience preferred- Recognized technology and/or Risk certification preferred (CRISC, CISM, CISA, Open FAIR, CISSP, COBIT, etc.)- 3-5 years of experience in a leadership role- Five to ten years of experience working in Technology Risk, Technology Resilience, Technology Audit, or related field- Previous ex
-
Chef, Infosec Cyber Grc
1 week ago
Montréal, Canada Business Development Bank of Canada Full timeAucune autre banque ne fait ce que nous faisons. À BDC, nous aidons le Canada et ses entrepreneur.es à créer une économie prospère, inclusive et verte. Notre mission est d’aider les entreprises canadiennes à prospérer en leur offrant du financement, des capitaux et des services-conseils. Nous sommes dévoué.es aux entrepreneur.es canadien.nes....
-
Infosec Grc Specialist
2 weeks ago
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
Infosec
3 weeks ago
Montréal, Canada Business Development Bank of Canada Full timeViens faire banque à part. Choisir BDC comme employeur, c’est évoluer dans un milieu de travail sain, inclusif, riche de compétences et qui met de l'avant les meilleures conditions pour rassembler des équipes uniques où le pouvoir d'agir est réel. C’est aussi être au centre de projets économiques et financiers ambitieux afin de voir plus loin et...
-
Montréal-Est, Quebec, Canada emergiTEL Full timeJob DescriptionThe Manager, Cyber Security GRC & Process Improvement and his/her team are responsible for the cybersecurity controls, methodology and risk assessment, as well as compliance with the standards follows. The manager and his/her team are also responsible for evaluating, designing, and implementing business process best practices to improve...
-
Intern, Infosec Grc
2 weeks ago
Montréal, Canada Cogeco Communications Inc. Full timeOur culture lifts you up—there is no ego in the way. Our common purpose? We all want to win for our customers. We aim to always be evolving, dynamic, and ambitious. We believe in the power of genuine connections. Each employee is a part of what makes us unique on the market: agile and dedicated. Time Type: Intern (Fixed Term) (Trainee) Job...
-
Intern, Infosec Grc
1 week ago
Montréal, Canada Cogeco Communications Inc. Full timeOur culture lifts you up—there is no ego in the way. Our common purpose? We all want to win for our customers. We aim to always be evolving, dynamic, and ambitious. We believe in the power of genuine connections. Each employee is a part of what makes us unique on the market: agile and dedicated. Time Type: Intern (Fixed Term) (Trainee) Job Description: -...
-
Infosec Specialist, Training
2 weeks ago
Montréal, Canada Business Development Bank of Canada Full timeNo other bank is doing what we do. At BDC, we help Canada and its entrepreneurs create a prosperous, inclusive and green economy. Our mission is to help Canadian businesses thrive by providing financing, capital and advisory services. We’re devoted to Canadian entrepreneurs. We’re also dedicated to our employees. Adaptable. Inspiring. Different....
-
Spécialiste Grc Infosec
2 weeks ago
Montréal, Canada Business Development Bank of Canada Full timeViens faire banque à part. Choisir BDC comme employeur, c’est évoluer dans un milieu de travail sain, inclusif, riche de compétences et qui met de l'avant les meilleures conditions pour rassembler des équipes uniques où le pouvoir d'agir est réel. C’est aussi être au centre de projets économiques et financiers ambitieux afin de voir plus loin et...
-
Montréal, Canada American Iron and Metal Full timeCompany Description American Iron & Metal (AIM) is a family-owned company and recognized global leader in the metal recycling industry with more than 125 sites and 4000 employees worldwide. We have continued to prosper for the last eight decades thanks to the dedication of our employees and the ongoing trust and support of our customers. Become part of...
-
Montréal-Est, Canada American Iron and Metal Full timeJob DescriptionThe Manager, Cyber Security GRC & Process Improvement and his/her team are responsible for the cybersecurity controls, methodology and risk assessment, as well as compliance with the standards that AIM follows. The manager and his/her team are also responsible for evaluating, designing, and implementing business process best practices to...
-
SAP Grc
3 weeks ago
Montréal, Canada CGI Full timeThe role of SAP GRC & Security Specialist is responsible for managing SAP access requests and providing continued support for the BRP Organization end users and its partners. The Administrator will take charge of any requests or inquiries related to SAP GRC authorizations / workflow issues according to the agreed Service Level and targets defined by BRP. The...
-
Lead Advisor, Infosec Threat and Vulnerability
2 weeks ago
Montréal, Canada Cogeco Communications Inc. Full timeOur culture lifts you up—there is no ego in the way. Our common purpose? We all want to win for our customers. We aim to always be evolving, dynamic, and ambitious. We believe in the power of genuine connections. Each employee is a part of what makes us unique on the market: agile and dedicated. Time Type: Regular Job Description: SUMMARY OF...
-
SAP Security/grc Consultant
3 weeks ago
Montréal, Canada Q1 Technologies Full time**Role**:SAP Security/GRC Consultant** **Duration: Fulltime** **Skills Required**: - Minimum 4-6 years of experience in Data migration - At least one end to end implementation experience to Implement Roles and Authorization - Have worked on SAP S/4 HANA GRC for Implementation / Support - Requirement Gathering - Should have a good command over Roles and...
-
Administrateur SAP Grc
3 weeks ago
Montréal, Canada CGI Full timeL'administrateur SAP GRC et Sécurité est chargé de la gestion des demandes d'accès SAP et de l’assistance continue donnée aux utilisateurs finaux de l'organisation et de ses partenaires. L'administrateur prend en charge toutes les demandes ou requêtes liées aux autorisations SAP, conformément au niveau de service convenu et aux objectifs définis....
-
SAP Security/grc Consultant
3 weeks ago
Montréal, Canada Q1 Technologies Full timeSkills Required: - Minimum 4-6 years of experience in Data migration - At least one end to end implementation experience to Implement Roles and Authorization - Have worked on SAP S/4 HANA GRC for Implementation / Support - Requirement Gathering - Should have a good command over Roles and Authorization Management, Design and creation of Roles for an...
-
Cyber Security and Information Technology Risk
2 weeks ago
Montréal, Canada Business Development Bank of Canada Full timeWe are banking at another level. Choosing BDC as your employer means working in a healthy, inclusive, and skilled workplace that puts forward the best conditions to bring together unique teams where employees are empowered to act. It also means being at the centre of ambitious economic and financial projects to see further and to do things differently, to...
-
Cyber Security Manager
2 weeks ago
Montréal, QC, Canada emergiTEL Full timeWe are seeking a Manager, Cybersecurity GRC & Process Improvement. Bilingual (French/English) Hybrid work model (4 days onsite, 1 day remote) Must be legally entitled to work full time in Canada for any employer Oversee cybersecurity controls, methodology, risk assessments, and compliance Enhance the information security governance framework ...
-
SAP Security/grc Consultant
3 weeks ago
Montréal, Canada Atlantis IT group Full time**Role: SAP Security/GRC Consultant** **Location: Montreal, QC** **Duration - Long Term** Have worked on SAP S/4 HANA GRC for Implementation / Support Requirement Gathering Should have a good command over Roles and Authorization Management, Design and creation of Roles for an implementation Project. Experienced in Portal Security Management and other...
-
SAP Security/grc Consultant
3 weeks ago
Montréal, Canada Atlantis IT group Full time**Role: SAP Security/GRC Consultant** **Location**:MONTREAL,QUEBEC** **Duration - Long Term** Have worked on SAP S/4 HANA GRC for Implementation / Support Requirement Gathering Should have a good command over Roles and Authorization Management, Design and creation of Roles for an implementation Project. Experienced in Portal Security Management and...
-
Cyber Security Manager
3 weeks ago
Montréal, Canada Prime Import Export Full timeWe are looking for a **Cyber Security Manager** to join the team and work on a range of projects covering the breadth of Cyber Security including : Cyber Strategy Development, Cyber Programme Management and Definition, Cyber Maturity Assessments, Cyber Transformation and Cyber Risk. **Tasks** - Manage and deliver Cyber Security engagements - Supporting in...
