Current jobs related to Cybersecurity Risk Manager - Montreal, Quebec - SGS Société Générale de Surveillance SA


  • Montreal, Quebec, Canada Intact Financial Corporation Full time

    Job Title: Cybersecurity Risk ManagerAt Intact Financial Corporation, we are seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our cybersecurity team, you will be responsible for managing and mitigating cybersecurity risks across the organization.Key Responsibilities:Develop and implement effective cybersecurity risk...


  • Montreal, Quebec, Canada Intact Financial Corporation Full time

    Job Title: Cybersecurity Risk ManagerAt Intact Financial Corporation, we are seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our cybersecurity team, you will be responsible for managing and mitigating cybersecurity risks across the organization.Key Responsibilities:Develop and implement effective cybersecurity risk...

  • Cybersecurity Advisor

    1 month ago


    Montreal, Quebec, Canada CIMA+ Full time

    About CIMA+CIMA+ is a leading consulting firm that provides expert advice and services to clients across various industries. We are committed to delivering high-quality solutions that meet the evolving needs of our clients.Job DescriptionWe are seeking a highly skilled Cybersecurity Advisor - Risk Management to join our team. As a Cybersecurity Advisor -...

  • Cybersecurity Advisor

    1 month ago


    Montreal, Quebec, Canada CIMA+ Full time

    About CIMA+CIMA+ is a leading consulting firm that provides expert advice and services to clients across various industries. We are committed to delivering high-quality solutions that meet the evolving needs of our clients.Job DescriptionWe are seeking a highly skilled Cybersecurity Advisor - Risk Management to join our team. As a Cybersecurity Advisor -...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Analyst to join our team at Domtar Corporation. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Management SpecialistDomtar Corporation is seeking a highly skilled Cybersecurity Risk Management Specialist to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Management SpecialistDomtar Corporation is seeking a highly skilled Cybersecurity Risk Management Specialist to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor...


  • Montreal, Quebec, Canada Kruger Inc. Full time

    Job SummaryKruger Inc. is seeking a highly skilled and experienced Director of Cybersecurity and Risk Management to lead the company's information security function. The successful candidate will be responsible for developing and implementing a comprehensive cybersecurity strategy, managing risk, and ensuring the protection of the company's assets.Key...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk AnalystDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk AnalystDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a key member of our IT Compliance & Governance Security team, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Produits forestiers Résolu Full time

    Cybersecurity Risk Analyst Job DescriptionResolute Forest Products is seeking a highly skilled Cybersecurity Risk Analyst to join our team in Montreal, Quebec, Canada. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk...


  • Montreal, Quebec, Canada Domtar Corporation Full time

    Cybersecurity Risk Analyst Job DescriptionDomtar Corporation is seeking a highly skilled Cybersecurity Risk Analyst to join our team. As a Cybersecurity Risk Analyst, you will play a critical role in maintaining and improving our IT risk management framework, managing IT exceptions, and performing 3rd party vendor risk assessments.Key...

Cybersecurity Risk Manager

2 months ago


Montreal, Quebec, Canada SGS Société Générale de Surveillance SA Full time
About the Role

We are seeking a highly skilled Cybersecurity Risk Manager to join our Risk Management Department. As a key member of our team, you will be responsible for evaluating and managing cybersecurity risks across our organization.

Responsibilities
  1. Evaluate and assess cybersecurity risks, identifying potential threats and vulnerabilities.
  2. Develop and implement effective risk management strategies to mitigate cybersecurity risks.
  3. Collaborate with IT organizations to establish standards and policies for cybersecurity.
  4. Develop and manage Information Technology & Information Security Risk Program.
  5. Provide independent assurance and validation activities over common cybersecurity controls.
  6. Assess the accuracy, completeness, and sufficiency of the risk management governance framework, processes, and methodologies.
  7. Identify and define emerging cyber threats and risks to our environment.
  8. Perform effective challenge of all critical and highly sensitive processes & controls, and business continuity.
  9. Develop cyber security risk scenarios to identify potential attack vectors and TTP (tactics, techniques, and procedures) to guide the continuous improvement of our cyber defense posture.
  10. Lead and support selected cyber security remediation efforts, involved with strategic planning with 1LOD.
  11. Recommend enhancements to data & technology architectures, processes, and controls to improve cybersecurity, data, and technology risk management capabilities for high-risk processes, regulatory reporting, and risk oversight.
  12. Develop and roll-out tools for the aggregation and surveillance of cybersecurity risk, data risk & technology risk.
  13. Identify legal, regulatory, and contractual requirements, and organizational policies and standards related to data management systems to determine their potential impact on our business objectives.
  14. Expand operational risk processes, data collection, and issues management tools to track and report data-related operational risks and issues.
  15. Participate in and review data breaches and technology incident/response escalation processes.
  16. Develop operational resiliency scenarios for stress testing and capital planning activities.
  17. Lead or support selected cybersecurity remediation efforts.
Requirements
  1. Bachelor's and/or master's degree in computer science, engineering, or a relevant technical field.
  2. Understanding of financial services, specifically within cyber and data privacy-related laws, regulations, frameworks, and guidelines (NYSDFS - 23NYCRR500, ECB, GDPR, GLBA, Regulation S-P, etc.).
  3. Experience in assessing design and operating effectiveness of technology controls.
  4. Solid foundation in information technology and information security principles.
  5. Familiar with common cybersecurity frameworks and standards such as NIST SP 800-53, NIST CSF, Mitre Attack, FFIEC CAT, CSC Top 20, COBIT, ISO 27000 series.
  6. Previous working experiences in cybersecurity operations and relevant security design knowledge.
  7. Previous work within Risk and/or Information Security/Cyber Security, ideally in a 2 LOD Cyber Security Risk function.
  8. Background in IT Risk Assessment, IT Audit, Information Security Management.
  9. Experience integrating vulnerability and patch management tools with IT/IS risk program.
  10. Knowledge of US IT Security regulatory requirements and environment in financial services industry a plus (i.e. FFIEC, FINRA rules, SEC, NIST cybersecurity frameworks).
  11. Strong leadership skills with ability to lead by influence.
Language

Ability to communicate in English, both orally and in writing, is a requirement as the person in this position will need to collaborate regularly with colleagues and partners in the United States.

Benefits

Competitive compensation & benefits offering, including but not limited to:

  1. Minimum of 20 Vacation days + 4 personal days.
  2. Supportive Maternity, paternity, parental, and adoption leave policy.
  3. Health spending ($2,000/year) and personal spending ($1,000/year) accounts with 75+ eligible reimbursement categories (health, training, electronics, etc.).

Fully sponsored virtual healthcare assistance and Employee Assistance Program to you and your immediate family.

Various Employee Resource Groups (ERG) to engage with such as Pride and Allies, American Women Network, Black Leadership Network, One planet, etc.

A culture of continuous development by encouraging our employees through various training programs (online training and coaching platform such as Coursera, GoFluent, Pluralsight, First Finance, and others).