This job board retrieves part of its jobs from: Emploi Trois-Rivières | Emploi Saint-Jérôme | Work From Home

The best job offers in Canadian territory

To post a job, login or create an account |  Post a Job

  MNCV JOBS  

Bringing you new job offers in Canada every single day

previous arrow
next arrow
Slider

BANQUE DE DÉVELOPPEMENT DU CANADA: Manager Infosec, It Risk

BANQUE DE DÉVELOPPEMENT DU CANADA

This is a Full-time position in Baie-Durfe, QC posted May 27, 2021.

No other bank is doing what we do.

At BDC, we’re devoted to Canadian entrepreneurs.

We’re also dedicated to our employees.

Adaptable.

Inspiring.

Different.

There’s a reason we like to work here and we think you’ll like it too.

POSITION OVERVIEW The Manager InfoSec, IT Risk contributes to the overall successful development and execution of BDC’s overall First Line of Defense IT Risk Management program designed to give confidence to customers, our shareholder, management and regulators that BDC operates in a proactive, well-manages, and risk-conscious manner.

The Manager InfoSec, IT Risk supports the risk identification and management process across all aspects of Information Technology.

He/she will collaborate with business units and corporate functions to ensure IT risks, policies, processes and standards are communicated and to provide appropriate IT Risk Management awareness and training.

He/she ensures the organization has appropriate and effective IT risk reporting, analysis and governance according to international, industry, and company-specific requirements.

CHALLENGES TO BE MET Oversee the operations of a team composed of 3-7 IT Risk professionals to ensure the efficient operation of the function Assist in the development and recommendations of IT risk limits, key risk indicators and key action plans Support the maintenance and development of technology risk management framework, methodologies and independent assurance activities with a focus on business impacts Build and enhance the function brand and act as a trusted advisor to the business Improve BDC understanding of risk and how to operate a risk conscious environment.

Deliver in depth risk assessments/reviews, including identifying and documenting risks and controls, creating detailed process flows and assessing the implementation Support in the ownership, accountability, oversight, and roadmap of the ITRM service Assist with in the operation of the ITRM operating model as well as roles and responsibilities Coordinate and oversee the ITRM programs, services, operations and activities Establish and manage ITRM procedures Assist with the development and implementation of a risk identification and assessment program and process to best fit evolving internal and external business environments Ensure an alignment with diverse staff and leadership to promote trust, collaboration, and partnership across the organization Support the IT internal control environment and the cross-functional IT risk mitigation efforts Maintain the IT Risk management dashboard to monitor adherence to the ITRM Corporate Directive Provide relevant IT Risk limits and information to IT Risk owners and users Support and alignment with Organization Risk Management (ORM) Coordinate the reporting on the ORM and IRM function on business units’ and corporate functions’ IT risk profile Assist senior management and Board Risk Committee executive with IT Risk and compliance reporting (metrics, KPIs) Liaise with the various internal stakeholders for IT Risk Management matters Identify education requirements, conduct training, and implement communication plans for the ITRM team, IT staff, managers, partners, and stakeholders Coaching and sharing knowledge with more junior members of the team improving functions overall capability Perform other duties, as assigned WHAT WE ARE LOOKING FOR Bachelor’s degree in Information Technology, Communications, Business Administration, Social Sciences-related discipline Master’s degree or other equivalent combination of education and work experience preferred Recognized technology and/or Risk certification preferred (CRISC, CISM, CISA, Open FAIR™, CISSP, COBIT, etc.) 3 years of experience in a leadership role Five years of experience working in Technology Risk, Technology Resilience, Technology Audit or related field Subject matter expertise in IT Operations, Data, Digital, Emerging Technology and/or Information Security Experience with understanding and translating complex business requirements in a fast-paced banking sector preferred Must qualify for Secret clearance Strong business acumen and analytical skills Exceptional French and English written and verbal communication skills, including for the development and delivery of presentations Excellent understanding of modern governance, risk and control frameworks, including the three lines of defense Comfortable dealing with and challenging senior stakeholders Responsive, agile approach to manage changing priorities Continuous improvement/learning mindset, challenging the status quo and seeking self improvement Acuity for perceiving and understanding client/stakeholder needs Active participation and representation within industry and professional groups to help expand the organization’s access to pertinent risk management and framework information Strength of character and personal ethics (this role requires access to confidential and non-public information) Ability to work in a complex array of matrix reporting structures and lead and manage teams efficiently with demonstrated experience and comfort in a fast-paced, high-growth environment with unknowns Strong planning, coordinating, organizing, training and implementation skills Proven record in applying judgment in creating and sustaining a sense of urgency in anticipating and/or preventing impacts to business operations Ability to prioritize, meet targets, escalate when necessary, and work in a multicultural, bilingual and dynamic environment EQUAL OPPORTUNITY EMPLOYER At BDC, we value diversity in our workforce and encourage all qualified candidates to apply.

We appreciate all responses and advise that only those candidates selected for an interview will be contacted.