Information Security Risk Manager
3 months ago
The Information Security Risk Manager (ISRM), as part of the Enterprise Risk Management team is the second line of defense for Cyber Security covering Munich Re’s Life and Health North America (LHNA) entities. The ISRM supports the identification, prioritization, communication, and monitoring of cyber security risks in the Life and Health North America entities.
Key Accountabilities
Interim LHNA Cluster Information Security Officer Support adoption of Munich Re’s Information Security Management (ISM) policies and guidelines, providing feedback to the VP ERM and Cluster ISO (Information Security Officer) on adaptions to the IS Strategy, ISM Policy and Guidelines Support/ execute prioritized initiatives for Cyber Security covering Life and Health North America Support local data protection initiatives such as data masking, unstructured data security, access management and access reduction, Data leakage Prevention alert investigations, etc. Cyber risk dashboard coordination,update and reporting to key stakeholders Execution of ad hoc cyber risk assessments Support client security requests Support with data flow discovery and data residency Support with project risk assessments Local threat detection and industry data breach tracking Proactive participation in risk and security forums and other relevant industry communities Monitor cyber security and regulatory landscape Supports compliance with regulatory requirements and regulatory audits Support Third Party Risk Management activities Alignment between security and business strategy Communication, enforcement and update of local and Global Cyber Risk policies and guidelines Participation in security audits and support gap remediation Support cyber threat scenario creation and participation in incident response tabletop exercises Support creation and execution of security awareness and training programs Support contract reviews for confidentiality and data protection language Support cyber risk process improvements and process automation Continual interaction with other relevant internal and external stakeholders, from 2nd line of defense, that have an interface to information security, such as BCM (Business Continuity Management), Operational Risk and Third-Party Management Function and Internal Audit.Qualifications
Bachelor's degree in information systems, computer science or a relevant field, IT Security Management certificate would be an asset 5+ years relevant industry experience in implementing cyber risk processes and frameworks CISSP designation Other information security designations such as CRISC, CISM, CEH, CISA would be beneficial Demonstrated experience in security risk and compliance management Practical experience in client contacts and contract review Demonstrated experience in supporting the remediation of information security gaps Sound knowledge of regulatory compliance and data privacy requirements (GDPR, PIPEDA (Personal Information Protection and Electronic Documents Act), etc.) Sound knowledge of internationally recognized information security standards and frameworks (ISO/IEC 27000 family, NIST CSF)What Can We Offer You?
We are pleased to offer our employees great benefits and resources to support their mental, physical and financial wellbeing. These include:
An engaging and collaborative environment that promotes continuous learning and development A hybrid work environment that combines weekly in-office and remote days with Meeting-Free lunch hours and Focus Friday afternoons A great compensation package including annual company bonus Market leading company-paid flexible health and dental benefits, starting on your first day Flexible dollars provided by the company to put towards Health Spending Account and/or Wellness Spending Account Immediate participation in DC Pension Plan with an automatic 5% employer contribution, plus optional company match Generous time off including vacation, personal days, unplanned time, Statutory Holidays and company-wide early closure half-days Learning and development programs and resources, including unlimited access to LinkedIn Learning, Education Assistance Program and reimbursement for professional fees Maternity, Parental & Adoption Leave top-up program Employee Referral Program, Recognition & Rewards PlatformAbout Munich Re
Together, we engage with everything we have and are, to help humankind act braver and better.
As the world’s leading reinsurance company with more than 40,000 employees in over 50 locations around the globe, Munich Re introduces a paradigm shift in the way you think about insurance. By turning uncertainty into manageable risk, we enable fundamental change. We recognize Diversity, Inclusion, and Belonging as a key priority with a culture that welcomes different thoughts and opinions. We dare to think big and are continuously innovating on behalf of our clients.
Our data, our technology, and our teams place us in a unique position to drive transformative change in the life insurance industry. We invest strategically in our world class talent, offering our employees a work experience that promotes professional development, innovation, and rewards high performance.
Please note that only candidates who are selected for interview will be contacted directly. We thank all candidates for their interest.
Munich Re is committed to providing a work environment that is inclusive and free of employment barriers and discrimination. Accommodations will be made for qualified applicants with a disability throughout the recruitment process. If you receive a request for an interview and you have a disability which will require an accommodation to support your participation, please contact as soon as practical so that suitable accommodations can be arranged.
-
Information Security Risk Manager
2 weeks ago
Old Toronto, Canada Munich Re Full timeThe Information Security Risk Manager plays a crucial role in Munich Re's Enterprise Risk Management team, serving as the second line of defense for Cyber Security covering Life and Health North America entities. This position supports the identification, prioritization, communication, and monitoring of cyber security risks in the Life and Health North...
-
Information Security Risk Manager
3 months ago
Old Toronto, Canada Munich Re Full timeThe Information Security Risk Manager (ISRM), as part of the Enterprise Risk Management team is the second line of defense for Cyber Security covering Munich Re’s Life and Health North America (LHNA) entities. The ISRM supports the identification, prioritization, communication, and monitoring of cyber security risks in the Life and Health North America...
-
Information Security Risk Manager
3 weeks ago
Toronto, Ontario, Canada Manulife Full timeJob DescriptionManulife's Internal Audit team is seeking a seasoned Information Security Risk Manager to join their Technology Infrastructure Security Audit team. As a key member of the team, the successful candidate will be responsible for participating in planning, execution, and reporting for large, complex assurance reviews of all types, delivering...
-
Information Security Risk Management Leader
4 weeks ago
Toronto, Ontario, Canada Manulife Full timeJob Title: Information Security Risk Management LeaderThe Information Security Risk Management Leader will be responsible for overseeing the overall delivery of the enterprise Information Security oversight and challenge approach across Manulife. This leader will serve as a Subject Matter Expert on matters of Information Security and must be a principle...
-
Information Security Risk Management Specialist
2 weeks ago
Toronto, Ontario, Canada Toyota North America Full timeAbout Toyota North AmericaToyota North America is a leading provider of retail, leasing and wholesale financial services to Toyota and Lexus dealerships and customers across Canada.Job SummaryWe are seeking an experienced Information Security Risk Management Specialist to join our team in Markham, Ontario. The successful candidate will be responsible for...
-
Information Security Manager
3 months ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Plan, coordinate, and direct all information security tasks within the area of responsibility to meet the global and local security goals.Support all security incidents of the location with alignment to the incident management process.Work with the Procurement and Legal departments to review and screen suppliers.Lead IT/security...
-
Information and Security Manager
1 month ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Plan, coordinate, and direct all information security tasks within the area of responsibility to meet the global and local security goals.Support all security incidents of the location with alignment to the incident management process.Work with the Procurement and Legal departments to review and screen suppliers.Lead IT/security...
-
Chief Information Security Risk Manager
1 week ago
Old Toronto, Canada Manulife Insurance Malaysia Full timeLead Information Security Risk ManagementWe are seeking a seasoned professional to lead our Vendor Information Risk Management team. As Chief Information Security Risk Manager, you will oversee the assessment of information security controls for vendors in North America and serve as a business matter expert in identifying, quantifying, and measuring IS...
-
Information Security Manager
1 month ago
Old Toronto, Ontario, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Develop and implement comprehensive information security strategies to safeguard the organization's assets and data.Collaborate with cross-functional teams to respond to security incidents and ensure alignment with incident management processes.Conduct thorough risk assessments and provide guidance on security best practices to...
-
Toronto, Canada Manulife Full timeThis role offers the opportunity to lead our information security and risk management efforts as the Director of Information Security and Risk Management. By developing and implementing a comprehensive vulnerability management program, updating security policies, and driving security awareness initiatives, you will directly contribute to our mission of...
-
Information Security Risk Management Leader
4 weeks ago
Toronto, Ontario, Canada Company 1 - The Manufacturers Life Insurance Company Full timeAbout the RoleThe Information Security Risk Management Leader will be responsible for the overall delivery of the enterprise Information Security oversight and challenge approach across Company 1 - The Manufacturers Life Insurance Company. This leader will serve as a Subject Matter Expert on matters of Information Security and must be a principle driving...
-
Information Security Risk Management Leader
4 weeks ago
Toronto, Ontario, Canada Manulife Full timeJob DescriptionThe OpportunityManulife is seeking a seasoned Information Security Risk Management leader to oversee the delivery of enterprise Information Security oversight and challenge. The incumbent will serve as a Subject Matter Expert on matters of Information Security and drive the continuous maturation of capabilities across the organization. This...
-
Old Toronto, Canada Manulife Insurance Malaysia Full timeAbout the Role:Manulife is seeking a strong leader to head our information security and risk management efforts. The Director, Information Security and Risk Management will be responsible for developing and implementing a comprehensive vulnerability management program, collaborating with IT leads to facilitate management response and remediation efforts, and...
-
Avp, Information Security and Risk Management
5 months ago
Toronto, Canada Manulife Full timeWe are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and...
-
Old Toronto, Ontario, Canada Société Financière Manuvie Full timeJob OpportunityThe Société Financière Manuvie is seeking a seasoned professional to lead our Vendor Information Risk Management team. As the Director, Information Security and Risk Management, you will be responsible for conducting thorough assessments of information security controls for our vendors.Key ResponsibilitiesLead the Vendor Information Risk...
-
Security Risk Manager
6 days ago
Toronto, Ontario, Canada Paladin Security Full timeAt Paladin Security, we are seeking a highly skilled Security Ambassador to join our team. This is a full-time position with an estimated salary of $55,000 - $65,000 per year.Job DescriptionThe Security Ambassador will work 12-hour shifts in the Emergency Department, providing proactive identification of potential violence and serving as a resource for the...
-
Toronto, Ontario, Canada Foilcon Full timeAbout the RoleFoilion is seeking an experienced Information Security Risk Management Specialist to join our team. As a key member of our security team, you will be responsible for assessing and mitigating internal and external threats to our information systems and resources.
-
Toronto, Ontario, Canada CoreFactor Inc. Full timeCoreFactor Inc. is seeking a highly skilled Chief Information Security and Risk Management Specialist to join their team on a permanent/full-time basis.The role is hybrid, requiring the successful candidate to work in the office two to three times per week.Job Summary:We are looking for a seasoned professional with expertise in information security, risk...
-
Old Toronto, Canada Manulife Insurance Malaysia Full timeDirector, Information Security and Risk Management Location: Toronto, Ontario | Waterloo, Ontario Type: Full-time Posted on: 2 days ago Application Deadline: November 18, 2024 (11 days left to apply) Job Requisition ID: JR24101246 This role offers the opportunity to lead our information security and risk management efforts as the Director of Information...
-
Old Toronto, Canada Manulife Insurance Malaysia Full timeDirector, Information Security and Risk ManagementLocation: Toronto, Ontario | Waterloo, OntarioType: Full-timePosted on: 2 days agoApplication Deadline: November 18, 2024 (11 days left to apply)Job Requisition ID: JR24101246This role offers the opportunity to lead our information security and risk management efforts as the Director of Information Security...
