This job board retrieves part of its jobs from: Brampton Jobs | Commis d'Entrepôt | Work From Home

The only jobs board exclusive to the people of Hamilton, ON

To post a job, login or create an account |  Post a Job

   Hamilton Jobs   

No need to go to Toronto for the job of your dreams. Find a job near home!

previous arrow
next arrow
Slider

Manager Infosec, It Risk

BANQUE DE DÉVELOPPEMENT DU CANADA

This is a Contract position in Hamilton, ON posted June 5, 2021.

No other bank is doing what we do.At BDC, were devoted to Canadian entrepreneurs.

Were also dedicated to our employees.

Adaptable.

Inspiring.

Different.

Theres a reason we like to work here and we think youll like it too.POSITION OVERVIEWThe Manager InfoSec, IT Risk contributes to the overall successful development and execution of BDCs overall First Line of Defense IT Risk Management program designed to give confidence to customers, our shareholder, management and regulators that BDC operates in a proactive, well-manages, and risk-conscious manner.The Manager InfoSec, IT Risk supports the risk identification and management process across all aspects of Information Technology.

He/she will collaborate with business units and corporate functions to ensure IT risks, policies, processes and standards are communicated and to provide appropriate IT Risk Management awareness and training.

He/she ensures the organization has appropriate and effective IT risk reporting, analysis and governance according to international, industry, and company-specific requirements.CHALLENGES TO BE METOversee the operations of a team composed of 3-7 IT Risk professionals to ensure the efficient operation of the functionAssist in the development and recommendations of IT risk limits, key risk indicators and key action plansSupport the maintenance and development of technology risk management framework, methodologies and independent assurance activities with a focus on business impactsBuild and enhance the function brand and act as a trusted advisor to the businessImprove BDC understanding of risk and how to operate a risk conscious environment.

Deliver in depth risk assessments/reviews, including identifying and documenting risks and controls, creating detailed process flows and assessing the implementationSupport in the ownership, accountability, oversight, and roadmap of the ITRM serviceAssist with in the operation of the ITRM operating model as well as roles and responsibilitiesCoordinate and oversee the ITRM programs, services, operations and activitiesEstablish and manage ITRM proceduresAssist with the development and implementation of a risk identification and assessment program and process to best fit evolving internal and external business environmentsEnsure an alignment with diverse staff and leadership to promote trust, collaboration, and partnership across the organizationSupport the IT internal control environment and the cross-functional IT risk mitigation effortsMaintain the IT Risk management dashboard to monitor adherence to the ITRM Corporate DirectiveProvide relevant IT Risk limits and information to IT Risk owners and usersSupport and alignment with Organization Risk Management (ORM)Coordinate the reporting on the ORM and IRM function on business units and corporate functions IT risk profileAssist senior management and Board Risk Committee executive with IT Risk and compliance reporting (metrics, KPIs)Liaise with the various internal stakeholders for IT Risk Management mattersIdentify education requirements, conduct training, and implement communication plans for the ITRM team, IT staff, managers, partners, and stakeholdersCoaching and sharing knowledge with more junior members of the team improving functions overall capabilityPerform other duties, as assignedWHAT WE ARE LOOKING FORBachelors degree in Information Technology, Communications, Business Administration, Social Sciences-related disciplineMasters degree or other equivalent combination of education and work experience preferredRecognized technology and/or Risk certification preferred (CRISC, CISM, CISA, Open FAIR, CISSP, COBIT, etc.) 3 years of experience in a leadership roleFive years of experience working in Technology Risk, Technology Resilience, Technology Audit or related fieldSubject matter expertise in IT Operations, Data, Digital, Emerging Technology and/or Information SecurityExperience with understanding and translating complex business requirements in a fast-paced banking sector preferredMust qualify for Secret clearanceStrong business acumen and analytical skillsExceptional French and English written and verbal communication skills, including for the development and delivery of presentationsExcellent understanding of modern governance, risk and control frameworks, including the three lines of defenseComfortable dealing with and challenging senior stakeholdersResponsive, agile approach to manage changing prioritiesContinuous improvement/learning mindset, challenging the status quo and seeking self improvementAcuity for perceiving and understanding client/stakeholder needsActive participation and representation within industry and professional groups to help expand the organizations access to pertinent risk management and framework informationStrength of character and personal ethics (this role requires access to confidential and non-public information)Ability to work in a complex array of matrix reporting structures and lead and manage teams efficiently with demonstrated experience and comfort in a fast-paced, high-growth environment with unknownsStrong planning, coordinating, organizing, training and implementation skillsProven record in applying judgment in creating and sustaining a sense of urgency in anticipating and/or preventing impacts to business operationsAbility to prioritize, meet targets, escalate when necessary, and work in a multicultural, bilingual and dynamic environmentEQUAL OPPORTUNITY EMPLOYERAt BDC, we value diversity in our workforce and encourage all qualified candidates to apply.

We appreciate all responses and advise that only those candidates selected for an interview will be contacted.