- Chair the Information Technology Risk Committee and sit on the Risk Management Executive Committee
- Produce the TDIS risk report and incorporate the required elements into the CRO's quarterly report
- Report the TDIS risk profile and escalate tolerance breaches to the appropriate parties
- Communicate and promote the TDIS risk and control management framework
- Contribute to the implementation of the second line of defence in your area of responsibility
- Contribute to the development of TDIS risk policies and guidelines
- Monitor emerging risks for TDIS domains
- In collaboration with the Chief Compliance Officer, contribute to the monitoring of risks related to the protection of personal information
- Ensure that TDIS risk assessment work is carried out in accordance with the framework and mechanisms in place
- In collaboration with the CRO management committee, ensure consistency in communications between the organization and regulatory authorities
- Provide oversight and support for the first line of defence:Support, advise and assist the lines of defence in controlling and applying the TDIS risk management frameworkMonitor risk levels of deployed processes and controls in relation to TDIS risk appetiteEnsure monitoring of cybersecurity, technology and data governance activitiesConduct an objective review of front-line risk assessmentsEnsure follow-up of action plans related to relevant risk events
- Ensure the development and maintenance of the knowledge and skills required to monitor TDIS risks within iA Group
- Contribute to the development of iA's risk culture
- Promote collaboration and innovation in your approaches
- Motivate and encourage the professional development of your resources
- Excellent oral and written presentation and communication skills
- Excellent knowledge of TDIS risk management
- Demonstrate strong innovation and creative thinking skills within a context of change
- Ability to navigate in a cross-functional process implementation context
- Demonstrated analytical, organizational, coordination, time management, team-building and problem-solving skills
- Recognized leadership in a control function, such as technology, data and information security governance
- Minimum of 15 years of professional experience, including 8+ years of progressive experience as a middle manager in one or more regulated financial services organizations
- Relevant experience in interacting with boards of directors and/or board committees
- University degree in a related field
- Knowledge of IT frameworks, including COBIT, NIST, ITIL, COSO and ISO 27000
- Excellent command of English and French (oral and written) for regular interaction with English- and French-speaking internal and external colleagues and partners across Canada and the United States
Senior Director – Technology, Data and Information Security Risk Monitoring and Reporting - Québec City, Canada - iA Financial Group
Description
Description
Quebec City / Montreal / Toronto / Vancouver / telework
JOB MISSION
Reporting to the Executive Vice-President and Chief Risk Officer, and as part of the Risk Management and Compliance Group management team, the Senior Director is responsible for managing technology, data and information security (TDIS) risks within iA Financial Group. The TDIS Risk Management group is the second line of defence responsible for monitoring risk exposure in accordance with the risk and control management framework.
In this role, you will be responsible for deploying a TDIS risk management program and promoting a sound risk management culture. This program will include a set of tools and processes to prevent, assess and mitigate risks in accordance with the organization's risk appetite and tolerance.
You will also be responsible for ensuring that the Risk Management Executive Committee and the Risk Management, Governance and Ethics Committee of the Board of Directors have an integrated view of the level of risk to which the organization is exposed.
KEY OBJECTIVES
Operationalization of the function of the second line of defence for risk management to identify, assess, monitor, aggregate and report on TDIS risks
Management of the LOB
REQUIRED KNOWLEDGE, SKILLS AND TECHNICAL ABILITIES
MINIMUM QUALIFICATIONS