Accountabilities
Nature of Work
Support the CISO organization from a Risk and Controls perspective with Information Security risks, IT controls and
issues.
Supports the functional leadership team to manage IT risks and controls:
- drive robust risk management through control and issue analysis
...
- advise, consult and coach stakeholders with the identification and assessment of risks
- promote security awareness and culture
Coordinate and manage IT Risk reports at various Local and Group levels.
Report and escalate on the status of the relevant risks and controls through established processes.
Advantages
Internal Collaboration
Day to day engagement with a range of local control owners and nominees involved in all aspects of Risk
Management to ensure proactive and timely Risk mitigation.
Engagement with Risk and Governance teams and Business Leadership across business units (globally and in Canada)
to identify and implement Best Practices and Standards.
External Collaboration
Ability to foster and build good working relationships with areas inside and outside the business unit.
Responsibilities
Risks & Controls
Provide analysis and recommendations for appropriate strategic decisions and actions to maintain acceptable risk
exposure.
Report and escalate the status of the relevant risks, controls and standards as appropriate.
Monitor progress of complex issues and actions to ensure remediation timelines are met.
Partners with key stakeholders to build and implement remediation plans where require.
Provide support in various Risk Assessments (inherent and residual, root cause analysis, RCSAs, Risk Events, Risk
Exceptions).
Produce regular risk reporting for our client and client Group IT. This includes risk monitoring, co-ordinating input
and updates, analysis and reviews of reports.
Maintain appropriate records on iCARE or Archer (IT Risk and Compliance tools).
Support a strong and continuously improving Risk & Control environment across IT .
Maintains knowledge of industry trends, developments, and regulatory changes to support IT and our client.
Work closely with IT and Risk partners to improve risk management practices. This includes drafting, developing, and
documenting IT Risk processes and procedures, and supporting the tools used by IT Risk (e.g. iCare and Archer).
Qualifications
Capabilities
Strong communication and interpersonal skills.
Strong analytical and problem solving skills.
Proficiency and resourcefulness in identifying and analyzing relevant information to identify critical issues and
alternatives.
Understanding of the CIO business, strategy and plans.
Ability to prioritize and deliver multiple activities concurrently.
Self-starter who is able to operate independently, part of a large matrix network and as a team member.
Prior information security, audit or risk management experience including crafting or assessing the efficiency of
processes, systems and controls with the ability to identify key business risks.
3 or more years experience with Information Security, or Risk and Compliance (preferably within the
Property/Casualty insurance industry).
Preference will be given to candidates with a solid understanding in the areas of Cyber Security.
Knowledge of other insurance functional areas is an asset.
Ability and desire to inspire change in a sophisticated environment.
Proven dedication to high standards of performance.
Commitment to ongoing professional and technical development.
Post-secondary education or a combination of technical and business experience.
Preference will be given to candidates with CISA, CISM and/or CISSP designations.
Summary
Care More
Care like crazy about our customers each other and the communities we operate in.
Kill Complexity
Be obsessed with making things simpler for our customer and each other – manage complexity so our customers don’t have to.
Never Rest
Be driven every single day to be edgy, think bigger and do better for our customers and each other.
Create Legacy
Strive to create a future for our customers and each other which is every bit as bright and sustainable as others created
before us.
If you feel this is the right fit for you please email me your word resume to aaron.lail@randstad.ca
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
Accountabilities
Nature of Work
Support the CISO organization from a Risk and Controls perspective with Information Security risks, IT controls and
issues.
Supports the functional leadership team to manage IT risks and controls:
- drive robust risk management through control and issue analysis
- advise, consult and coach stakeholders with the identification and assessment of risks
- promote security awareness and culture
Coordinate and manage IT Risk reports at various Local and Group levels.
Report and escalate on the status of the relevant risks and controls through established processes.
Advantages
Internal Collaboration
Day to day engagement with a range of local control owners and nominees involved in all aspects of Risk
Management to ensure proactive and timely Risk mitigation.
Engagement with Risk and Governance teams and Business Leadership across business units (globally and in Canada)
to identify and implement Best Practices and Standards.
External Collaboration
Ability to foster and build good working relationships with areas inside and outside the business unit.
Responsibilities
Risks & Controls
...
Provide analysis and recommendations for appropriate strategic decisions and actions to maintain acceptable risk
exposure.
Report and escalate the status of the relevant risks, controls and standards as appropriate.
Monitor progress of complex issues and actions to ensure remediation timelines are met.
Partners with key stakeholders to build and implement remediation plans where require.
Provide support in various Risk Assessments (inherent and residual, root cause analysis, RCSAs, Risk Events, Risk
Exceptions).
Produce regular risk reporting for our client and client Group IT. This includes risk monitoring, co-ordinating input
and updates, analysis and reviews of reports.
Maintain appropriate records on iCARE or Archer (IT Risk and Compliance tools).
Support a strong and continuously improving Risk & Control environment across IT .
Maintains knowledge of industry trends, developments, and regulatory changes to support IT and our client.
Work closely with IT and Risk partners to improve risk management practices. This includes drafting, developing, and
documenting IT Risk processes and procedures, and supporting the tools used by IT Risk (e.g. iCare and Archer).
Qualifications
Capabilities
Strong communication and interpersonal skills.
Strong analytical and problem solving skills.
Proficiency and resourcefulness in identifying and analyzing relevant information to identify critical issues and
alternatives.
Understanding of the CIO business, strategy and plans.
Ability to prioritize and deliver multiple activities concurrently.
Self-starter who is able to operate independently, part of a large matrix network and as a team member.
Prior information security, audit or risk management experience including crafting or assessing the efficiency of
processes, systems and controls with the ability to identify key business risks.
3 or more years experience with Information Security, or Risk and Compliance (preferably within the
Property/Casualty insurance industry).
Preference will be given to candidates with a solid understanding in the areas of Cyber Security.
Knowledge of other insurance functional areas is an asset.
Ability and desire to inspire change in a sophisticated environment.
Proven dedication to high standards of performance.
Commitment to ongoing professional and technical development.
Post-secondary education or a combination of technical and business experience.
Preference will be given to candidates with CISA, CISM and/or CISSP designations.
Summary
Care More
Care like crazy about our customers each other and the communities we operate in.
Kill Complexity
Be obsessed with making things simpler for our customer and each other – manage complexity so our customers don’t have to.
Never Rest
Be driven every single day to be edgy, think bigger and do better for our customers and each other.
Create Legacy
Strive to create a future for our customers and each other which is every bit as bright and sustainable as others created
before us.
If you feel this is the right fit for you please email me your word resume to aaron.lail@randstad.ca
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
show more
