Technology and Cyber Risk Manager
1 month ago
Description
About WSP
WSP is a global leader in engineering and professional services. We pride ourselves on delivering innovative solutions to our clients and maintaining a robust IT operation to support our employees worldwide. WSPs vast global network is today comprised of over 1,000 offices, 29 data centers, 1,300 data circuits, and used by over 65,000 users.
Technology and Cyber Risk Manager (flexible location)
WSP’s Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients.
To run our global Technology & Cyber Risk Management process, we are seeking a talented and experienced Technology and Cyber Risk Manager. This role will report to the Global Director of IT Risk.
As a Technology and Cyber Risk Manager, your primary role will be to manage the full IT Risk Process from identification, assessment, mitigation, and monitoring. This role is a key player in fostering relationships and coordinating efforts to manage technology-related risks. It calls for a strong analytical ability, and the capacity to work effectively in a diverse, global environment.
Main Responsibilities
·Implement and maintain a comprehensive and effective IT risk management practice across the WSP global IT organisation. This should include identification of potential IT risks, the evaluation of their impact, the formulation of strategies to mitigate these risks, and the tracking of their mitigation and/or acceptance. Conduct regular monitoring and review of the IT risk management process to ensure its effectiveness and alignment to the organization’s risk appetite and business objectives.
·Establish reporting and communication methods that ensure that relevant stakeholders within IT and business leadership have an accurate and timely view of IT risks. Analyse and process data related to risk, issues, and deficiencies to identify patterns and trends.
·Work with WSPs Executive Risk Management (ERM) team on the evaluation and reporting of relevant IT Risks as part of the ERM process.
·Lead and manage a team of risk analysts, fostering a collaborative environment that encourages open communication, mutual respect, and shared responsibility in managing cyber and technology risks.
·Deliver risk management training within the IT community and establish a culture of risk-aware decision-making, accountability, and a commitment to maintaining an effective control environment.
·Own and manage the evolution of the Integrated Risk Management Platform (Service-Now IRM). This includes entities, risk statements and controls management.
·Be a subject matter expert in relation to IT risk and risk mitigation. Empower IT stakeholders to assume responsibility for the IT risks in their respective areas and encourage them to report any potential IT risks.
·The successful candidate will work directly with all levels of IT Leadership and business stakeholders to ensure issues and risks are well understood so that effective decisions can be made.
Leadership and People Responsibilities:
·Displays leadership and independence in performing their role.
·High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity.
·Develop positive working relationships with other team members and business partners and partners across teams to align with WSP internal and external client demands.
·Capable of rapidly assimilating and internalizing complex business, technology, and risk management concepts and dependencies.
·Able to exercise judgement when policies are not well-defined.
·Critical thinker with strong problem-solving and organization skill.
·Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate between specialized groups of business unit and IT professionals.
·Ability to work with people from different backgrounds and cultures across the region and the world.
·Accommodation of schedule for international conference calls.
Qualifications
Requirements:
About you:
·8+ years related senior level experience in Information Security, IT Audit with at least 2 years in Risk Management.
·Bachelor’s degree in information technology, Computer Science, Engineering, or related field.
·Experience working in large/global enterprise IT.
·Working (not necessarily technical) knowledge of enterprise IT security concerns and technologies, including but not limited to VPNs, network security, encryption, authentication, application-level network protocols, Firewall, LAN/WAN, and TCP/IP
·Knowledge of technology best practices (applications, network, etc.)
·Experience with IT Governance frameworks such as NIST and ISO 2700x
·Experience with governance, compliance, and audit within IT environments.
·Experience of risk management, including risk analysis, mitigation, and monitoring
·Knowledge of information security regulations
·Excellent interpersonal and communication skills, able to interact with different layers of management.
·Ability to work with minimal supervision and little to no instructions.
·Strong organizational and project management skills.
·Excellent analytical and diagnostic problem-solving skills
·Demonstrated experience in understanding and demonstrating compliance with information security requirements.
·Limited travelling may be required.
Due to the nature of this role, you may need to work outside of standard business hours occasionally.
Preferred
·Knowledge of Service-Now Integrated Risk Management platform (IRM)
·Professional certification in one or more of the following disciplines - IT governance (e.g., CGEIT), security (e.g., CISSP, CISM), internal audit (CISA) or Payment Card Industry (PCI)
#LI-Hybrid #OneIT
-
Technology and Cyber Risk Manager
4 weeks ago
Montreal, Canada WSP Canada Full timeWSP's Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients. ...
-
Technology and Cyber Risk Manager
3 weeks ago
Montreal, Canada WSP Canada Full timeWSP's Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients. ...
-
Senior Manager Technology Risk
1 month ago
Montreal, Canada National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Avp, Cyber Risk Management
3 days ago
Montreal, Quebec, Canada Sun Life Full timeVous êtes unique, comme le sont votre parcours, votre expérience et votre façon de voir les choses. Ici, on vous encourage et on vous motive à donner le meilleur de vous-même, et on vous donne les moyens de le faire. Vous travaillerez avec des collègues dynamiques - experts dans leur domaine - qui sont impatients de partager leurs connaissances avec...
-
Senior Manager Technology Risk
3 weeks ago
Montreal, Canada National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Senior Manager Technology Risk
1 month ago
Montreal, Canada National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Senior Manager Technology Risk
1 month ago
Montreal, Canada NBC Full timeArea of Interest: Risk management ...
-
Senior Manager Technology Risk
1 month ago
Montreal, QC, G4F, CA National Bank Full timeThe Risk Management team at National Bank is expanding and we’re looking for an experienced person to play a key role as Senior Manager - Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technology, you’ll actively contribute to the Bank’s...
-
Senior Manager Technology Risk
1 month ago
Montreal, Canada National Bank Full timeAttendance Hybrid Job Number 20579 Category Manager Status: Permanent Type of Contract Permanent Schedule: Full-Time Full Time / Part Time? Full-Time Posting date 12-Apr-2024 Location: Montreal, Quebec City Montreal Province/State Quebec Area of Interest: Risk management The Risk Management team at National Bank is expanding and we’re looking for an...
-
Senior Manager Technology Risk
4 days ago
Montreal, Quebec, Canada National Bank Full timeThe Risk Management team at National Bank is expanding and we're looking for an experienced person to play a key role as Senior Manager Technology and Cyber Risk Management for business lines. In this role, which combines team management skills and extensive expertise in cybersecurity and technolo
-
Montreal, Quebec, Canada Cyber Crime Full timeSenior Cybersecurity Governance, Risk Management and Compliance SpecialistMontreal Cote-De-Liesse, QC, CanadaReporting to the Head of digital trust and governance, the incumbent is responsible to develop and implement various standards, processes, controls and metrics in the areas of cybersecurity governance, risk and compliance.They will act as a...
-
Montreal, Canada Cyber Crime Full timeSenior Cybersecurity Governance, Risk Management and Compliance SpecialistMontreal - 8585 Cote-De-Liesse, QC, CanadaReporting to the Head of digital trust and governance, the incumbent is responsible to develop and implement various standards, processes, controls and metrics in the areas of cybersecurity governance, risk and compliance.They will act as a...
-
Montreal, Canada Cyber Crime Full timeSenior Cybersecurity Governance, Risk Management and Compliance SpecialistMontreal - 8585 Cote-De-Liesse, QC, CanadaReporting to the Head of digital trust and governance, the incumbent is responsible to develop and implement various standards, processes, controls and metrics in the areas of cybersecurity governance, risk and compliance.They will act as a...
-
Cyber Security Advisor
3 days ago
Montreal, Quebec, Canada The Nugget Group Full timeJob DetailsCyber Security Advisor OPOR, 5/13/2024Job ID#: 7800Job Category: TechnologySalary: to $100.00As the Cyber Security Lead, your primary role is to ensure our organization's safety against cyber threats. Here's what you'll be doing:Implementing Security Practices: Put into action the best practices recommended by the Department of Cyber Security &...
-
Cyber Security Architect
4 weeks ago
Montreal, Canada The Nugget Group Full timeAs the Cyber Security Lead, your main job is to make sure that our organization stays safe from cyber threats. Here's what you'll be doing: 1. **Implementing Security Practices**: You'll put into action the best practices recommended by our client, the Department of Cyber Security & Digital Solutions. This involves meeting with different teams, both inside...
-
Cyber Security Architect
4 weeks ago
Montreal, Canada The Nugget Group Full timeAs the Cyber Security Lead, your main job is to make sure that our organization stays safe from cyber threats. Here's what you'll be doing: 1. **Implementing Security Practices**: You'll put into action the best practices recommended by our client, the Department of Cyber Security & Digital Solutions. This involves meeting with different teams, both inside...
-
Cyber Security Architect
4 weeks ago
Montreal, Canada The Nugget Group Full timeAs the Cyber Security Lead, your main job is to make sure that our organization stays safe from cyber threats. Here's what you'll be doing: 1. **Implementing Security Practices**: You'll put into action the best practices recommended by our client, the Department of Cyber Security & Digital Solutions. This involves meeting with different teams, both inside...
-
Security Risk Expert
3 days ago
Montreal, Quebec, Canada The Nugget Group Full timeCyber Security Advisor OPOR , : 5/13/2024 Job ID#: 7800 As the Cyber Security Lead, your main job is to make sure that our organization stays safe from cyber threatsImplementing Security Practices: You'll put into action the best practices recommended by our client, the Department of Cyber Security & Digital Solutions. This involves meeting with different...
-
Montreal, Canada Rio Tinto Full timeConseiller/ère, risques et conseils en matière de cybersécurité – Amériques et EMEA Formidable occasion de travailler pour une entreprise minière diversifiée et mondiale. Contribuez à obtenir des technologies de pointe, comme la robotique, l’automatisation et les métadonnées, dans un environnement très innovant. Poste hybride basé à...
-
Montreal, Canada Rio Tinto Full timeConseiller/ère, risques et conseils en matière de cybersécurité – Amériques et EMEA Formidable occasion de travailler pour une entreprise minière diversifiée et mondiale. Contribuez à obtenir des technologies de pointe, comme la robotique, l’automatisation et les métadonnées, dans un environnement très innovant. Poste hybride basé à...
