Jobs
>
Toronto

    Senior Manager of GRC, Information Security - Toronto, Canada - First National

    First National
    First National Toronto, Canada

    5 days ago

    Default job background
    Full time
    Description

    We are hiring a Senior Manager of GRC in our Information Security department

    The Role:

    A strategic and integral member of the Information Security Team, reporting to the AVP, Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. The candidate will contribute to the management and continuous improvement of security program(s). The position entails the development, implementation, and compliance of security control programs across the organization.

    This role requires the following skills:

  • Specialized knowledge and experience in information security, security strategies, and security management frameworks.
  • Knowledge and understanding of current security standards and best practices, particularly ISO 27001.
  • Development, maintenance and review of Information Security Policy, Standards, Processes and Procedures
  • Effective and dynamic communicator.

    • Reporting To:

    Assistant Vice President, Information Security

    Full-Time/Part- Time:

    Full-time

    Posting Date:

    March 6, 2024

    Closing Date:

    April 6, 2024

    Hours of Work:

    8:30 – 5:00

    Grade:

    Office Location:

    Downtown Toronto

    Great location Steps away from the main public transit station

    What we offer:

    Highly competitive compensation package which includes, base salary, bonus, benefits, and career advancement opportunities

    *Eligibility for benefits is dependent on the terms of employment

    What you will do:

  • Review and improve the Information Security Management Framework.
  • Build strong cross-organizational relationships.
  • Manage the security risk management and compliance strategy, framework, and approach.
  • Advise other teams within First National in the design and implementation of effective security controls.
  • Proactively track and communicate the status of the risk response activities.

    • Governance

  • Defining, implementing, communicating, and monitoring the Information Security Strategy and Program.
  • Review, update, development, and implementation of security policies, procedures, and technical security standards to secure First National Assets and ensure security and compliance with associated risks, contracts, regulations, and industry standards.
  • Ensure that the Security Governance frameworks are institutionalized and compliant, and aligned with security standards, particularly ISO27001.
  • Support in preparing and running the security steering committee meetings.
  • As part of managing the larger GRC program, the role involves managing the Data Security program, IAM Program and Physical Security program.
  • Participate and promote the security training awareness program.
  • Development reports and presentations as required.
  • Provide briefings to senior management and advise them of critical risks and issues that may affect enterprise security objectives.
  • Support in expansion of the Information Security framework and program within the enterprise.
  • Ensure that Information Security projects meet their required goals, constraints are addressed, and resources are aligned, as defined by the project stakeholders.

    • Risk Management

  • Lead the Information Security Risk Management program, through evaluation of information security risks, accounting for people, processes, data, and all associated security controls.
  • Provide oversight of all relevant information security risks, and support in risk treatment of identified risks.
  • Assist in the third-party risk assessments process to ensure risk identification, transparency and business acceptance and contractual obligations.
  • Ensure that all the program-specific risk assessment results, such as Data Security, IAM security, Physical Security, Security Operations, Application Security, etc. dovetail into the information security risk management program.

    • Compliance Management

  • Control monitoring and review of internal security risk assessments.
  • Develop, document, and assess measures, metrics, and internal controls related to cyber security assessments and acceptance.
  • Develop, document, and assess measures, metrics, and internal controls related to information security assessments and acceptance.
  • In conjunction with Legal, Privacy and Compliance, identify information management and protection laws and regulations and implement actions to ensure compliance.
  • Ensure that the programs maintain compliance with relevant laws and regulations, as appropriate.

    • Audit Management

  • Assist in all current and future security related audit and certification processes.
  • Support audit and assessment activities, such as internal and external audit, vendor assessments, benchmarking, etc.

    • The Requirements Needed:

  • A total of 10 years of experience, with a minimum of 7 years of prior information security management work experience in a medium or large size organization is required in the GRC domain.
  • Bachelor's degree in computer science or the equivalent work experience is required. Graduate degree preferred.
  • Information security certifications, such as CISSP, CISM, ISO27001 or equivalent preferred.
  • Information systems auditing certification such as CISA, or experience is desirable.
  • Preference will be given to candidates who have experience and/or familiarity with Azure, Defender for Cloud, and Microsoft suite of security products.
  • Management experience in financial services industry is beneficial.
  • Must have experience with information security management frameworks.
  • Experience developing and maintaining information security policies, standards, processes, guidelines, procedures, controls, for financial institutions or processors.
  • Track record of planning and executing complex work efforts.
  • Strong interpersonal communication, analysis, and writing skills.
  • Leadership skills including ability to work effectively with business unit managers, application development and IT operations staff.
  • Able to align management and leadership strategies when working on projects.
  • Ability to work effectively with business unit and IT department managers, including Application Development, Infrastructure, Operations, Network, Technical Support, and others.
  • Superior verbal and written communication skills.
  • Must be a team player.
  • Ability to successfully lead extended teams through new and complex concepts and processes.

    • The team you will join:

    Founded in 1988, First National is one of Canada's largest non-bank lenders. We provide residential mortgages exclusively through our mortgage broker channel and service commercial clients through our national origination team of empowered advisors.

    At First National, It's in our Nature is our rallying cry. It underlies our values, beliefs, and how we show up for each other, our clients, our partners and the community. Our nature defines who we are and guides every decision we make.

    First National is proud to be an equal opportunity employer and is committed to diversity and inclusion regardless of race, color, religion, national origin, age, gender identity, physical or mental disability, sexual orientation or any other category protected by law.

    First National supports requests for accommodation from applicants with disabilities; please contact Human Resources at .

    We would like to thank all applications for their interest, but only candidates selected for an interview will be contacted.

    #FNLOON

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    398874BR · Technology Solutions · Toronto, ON · February 13, 2023 · Company Overview · Department Overview · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of c ...

  • eSentire

    Information Security Consultant

    1 day ago

    eSentire Toronto, Canada

    About The Technical Deployments Team · We're continuing to build out a team of passionate Information Security Consultants. We are looking for a security analyst with experience in implementing Endpoint Detection and Response technologies, evaluating information security controls ...

  • Toronto Transit Commission

    Information Security Analyst

    6 days ago

    Toronto Transit Commission Toronto, Canada

    **JOB INFORMATION** · **Requisition ID**: 8184 · **Number of Vacancies**: 1 · **Department**: Information Technology Services Information Security Office · **Salary Information**: $88, $110,401.20 · **Pay Scale Group**: 9SA · **Employment Type**: Regular · **Weekly Hours**: 35 · ...

  • TD Bank

    Information Security Specialist

    5 days ago

    TD Bank Toronto, Canada

    **Information Security Specialist ( Data Protection)**: · BR · **Job Category - Primary** · - Technology Solutions · **Work Location** · Front Street West Corporate · **Employment Type** · - Regular · **City** · - Toronto · **Time Type** · - Full Time · **Province/State** · - Ont ...

  • SCFF LLC

    Information Security Analyst

    2 days ago

    SCFF LLC Toronto, Canada

    Key Responsibilities: · - Monitor and analyze security events and alerts, identify potential security incidents, and respond to security incidents as needed · - Conduct security assessments and vulnerability scans, and develop recommendations for remediation · - Collaborate with ...

  • CAAT Pension Plan

    Information Security Analyst

    1 day ago

    CAAT Pension Plan Toronto, Canada

    **We believe that everyone has the right to DEFINE themselves and their future.** · **That includes YOU.** · How would you like to do it in a fun, high-performance culture that's truly one of a kind - on a team that appreciates you for being you, helps our members retire with con ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    401095BR · Technology Solutions · Toronto, ON · March 8, 2023 · Company Overview · Department Overview · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of chang ...

  • Turner & Townsend

    Information Security Consultant

    5 days ago

    Turner & Townsend Toronto, Canada

    **Company Description** · From the inception of a project through to completion and beyond, Turner & Townsend help to deliver the outcomes that matter through transformational programs covering the full spectrum of consultancy, project delivery and post-project operations. · With ...

  • Ada Health GmbH

    Information Security Analyst

    1 day ago

    Ada Health GmbH Toronto, Canada

    **ABOUT US** · At Ada, we envision a world where everyone has access to the healthcare they need. In one of the biggest challenges facing the world, we pioneered a new form of artificial intelligence, combining medical knowledge with intelligent technology to empower millions of ...

  • Nucleo Digital

    Information Security Analyst

    3 days ago

    Nucleo Digital Toronto, Canada

    **Responsibilities**: · - Focused on providing information security consultation to business and IT clients · - Working with project teams to identify required security controls, and ensuring controls have been implemented prior to transitioning technology platforms to production ...

  • Manulife

    Information Security Specialist

    1 week ago

    Manulife Toronto, Canada

    **_Are you looking for a supportive, collaborative workplace with great teams and inspiring leaders? You've come to the right place. We're looking for ambitious people who share our values and want to make every day better for people around the world. If this sounds like you, and ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    **TD Description** · Stay current and competitive. Carve out a career for yourself. Grow with us. · **Department Overview** · **Building a World-Class Technology Team at TD** · - Technology Risk Management and Information Security (OCISO) is a group of technology, security and ri ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    425217BR · Technology Solutions · Toronto, ON · November 22, 2023 · Hours · 37.5 · Workplace Model · Hybrid · Pay Details · Department Overview · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    **TD Description** · Stay current and competitive. Carve out a career for yourself. Grow with us. · **Department Overview** · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. Th ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    **TD Description** · Stay current and competitive. Carve out a career for yourself. Grow with us. · **Department Overview** · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. Th ...

  • Toronto Transit Commission

    Information Security Analyst

    1 week ago

    Toronto Transit Commission Toronto, Canada

    **JOB INFORMATION** · **Requisition ID**: 8002 · **Number of Vacancies**: 1 · **Department**: Information Technology Services Information Security Office · **Salary Information**: $88, $110,401.20 · **Pay Scale Group**: 9SA · **Employment Type**: Regular · **Weekly Hours**: 35 · ...

  • Univeris Corp

    Information Security Manager

    1 week ago

    Univeris Corp Toronto, Canada

    Who we are · Univeris has been successfully building and modernizing wealth management software for over 30 years. We are the go-to solution for many financial services firms (e.g., mutual fund dealers, securities dealers, wealth management firms and insurance companies) that wan ...

  • Fidelity Investments

    Information Security Analyst

    5 days ago

    Fidelity Investments Toronto, Canada

    Job Description · Current work authorization for Canada is required for all openings. · You will be working on a Hybrid office schedule as part of Fidelity's dynamic working arrangement. · At Fidelity, we've been helping Canadian investors build better financial futures for over ...

  • TD Bank

    Information Security Specialist

    1 week ago

    TD Bank Toronto, Canada

    **TD Description** · Stay current and competitive. Carve out a career for yourself. Grow with us. · **Department Overview** · **Building a World-Class Technology Team at TD** · We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. Th ...

  • Canada Life Assurance Company

    Information Security Analyst

    1 week ago

    Canada Life Assurance Company Toronto, Canada

    **Job Description**: · The Information Security Analyst II is part of the first line of cyber defense team, working with IT and business partners to help them understand and manage information security risks and comply with the organizational information security policies. The ro ...