Information Security Risk Manager, Orm Enterprise - Toronto, Canada - TD Bank

TD Bank
TD Bank
Verified Company
Toronto, Canada

2 weeks ago

Sophia Lee

Posted by:

Sophia Lee

beBee Recruiter
Description

TD Description
Stay current and competitive. Carve out a career for yourself. Grow with us.


Department Overview


The independent Operational Risk Management (ORM) team works in partnership with the business units and corporate groups of TD Bank Group to further the understanding and management of operational risk across the enterprise.


The Information Security Risk Manager will partner with the first line of defense and other second line of defense teams to oversee and challenge the execution of risk management activities and leading practices/technologies used to keep up with the constantly evolving cyber threat landscape.

Reporting to the Senior Manager, ORM ETech, this role will have the following accountabilities:

  • Execute 2nd line challenge activities required to support the ORM Framework, and related activities including but not limited to:
  • Regulatory Risk including performing analysis of bank's preparedness on new regulatory requirements and industry best practices,
  • Digital Crown Jewels (DCJ),
  • Cybersecurity Awareness,
  • Technology Standards,
  • Technology Risk Assessments,
  • Key Risk Indicators, and;
  • Other areas as appropriate to support the technology areas in risk management.
  • Build Second Line methodology for ongoing oversight.
  • Assist in building data driven models for second line oversight.
  • Effectively communicate risk management practices and methodologies and results of risk assessments to Executive and senior management in a supportive and collaborative manner and influence risk based remediation.
  • Be a positive team player to consistently maintain high levels of integrity, motivation and morale.
  • Will be required to keep abreast of Technology and Cybersecurity emerging risks, the evolving Cyber threat landscape, best practices to address/mitigate Cybersecurity risks, and applicable Regulatory and Compliance requirements.
  • Position will deal with senior management in technology areas and technology risk professionals.
  • Conduct risk assessment, reporting and monitoring based on a risk based methodology in areas such as:
  • Security configuration management;
  • Network and endpoint protections;
  • Technology and cybersecurity incidents;
  • Cybersecurity control/process adequacy, and
  • Technology risk assessments.
  • This role is looking for a highly seasoned professional with experience in Cybersecurity, technology, and/or risk management.

Job Requirements

  • Experience in the Cybersecurity, Technology Solutions, Risk Management, or Internal Audit field.
  • An understanding of regulatory and Controls requirements: FFIEC, OCC and OSFI regulatory requirements, PCI, SOX, HIPAA, ISO 2700x and NIST standards.
  • Experience in responding to Regulatory requests.
  • Organizationally astute, with superior influencing, collaboration and communication skills.
  • Experience assessing risk and challenging the status quo.
  • Proven ability to foster a cohesive team and promote a positive, high performing work environment.
  • Expertise in working effectively in teams requires a track record of knowledge across the organization.
  • Strong analytical skills, including segment risk analysis, data analysis, and comparative analysis.
  • In order to provide effective oversight and independent challenge the role requires the incumbent to have a good understanding of the following areas:
  • Regulatory requirements.
  • Risk management frameworks and methodologies;
  • Cybersecurity frameworks, operations, processes, controls, and tools;
  • Technology operations and processes;
  • Cloud service provider management, and;
  • Strong business and financial acumen

Education & Accreditation

  • Undergraduate degree in Computer Science/Computer Engineering/Risk Management is an asset.
  • Accreditation such as CISSP, CISM, CRISC, CEH, OSCP, OSCE and/or similar is preferred

Inclusiveness


At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported.

We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live and serve.

If you require an accommodation for the recruitment/interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.


Job Family

  • Group Risk Management

Job Category - Primary

  • Risk Management

Job Category(s)

  • Risk Management

Hours

  • 37.5

Business Line

  • Corporate

Time Type

  • Full Time

Employment Type

  • Regular

Country

  • Canada

Province/State (Primary)

  • Ontario

City (Primary)

  • Toronto

Work Location

  • TD Centre
  • TD Tower 66 Wellington Street West

Job Expires

  • 06Feb2023
More jobs from TD Bank
See all jobs of TD Bank