Manager, Group Risk

Welcome to Credit Risk Marketplace! Where your tech-savvy risk knowledge will help shape a cyber-safe and stable environment for our customers.

Responsibilities :

• Manage a portfolio of technology assets, providing oversight and control, alongside IT security related advisory services
• Take corrective action against identified technology or security gaps
• Assess technology operational and IT / cyber risks of application, API, and technology changes
• Keen eye for uncovering unidentified and / or edge case risks, ability to critically analyze and support through both technology delivery and lifecycle pipelines
• Completion of regular risk assessments, including reporting discoveries to Senior Manager lead and partner / exec stakeholders
• Gap / Finding identification, remediation, and closure
• Contribute your experience to further enhance our technology governance, bringing it to new heights
• Work with a team of Risk professionals, contributing to the larger shared portfolio
• Provide guidance, leadership, coaching and development to ensure operational results and professional / personal development objectives are achieved
• Follow industry best-practices and frameworks, alongside enterprise policies and standards, to ensure technology applications, APIs, and vendors operate within our risk appetite
• Incorporate consideration of relevant laws, rules, and regulations
• Act as key liaison with partners and external groups and provide Risk subject matter expertise
• Partner effectively with key stakeholder groups such as Compliance, Legal, Audit, AML
• Follow, Lead and develop Risk enterprise-wide frameworks, policies, standards, procedures in coordination with management in line with TD’s Risk Program
• Recommend or implement changes to procedures, as required
• Coach technology teams to ensure functional / operational problems are handled appropriately
• Work with peers, 1st and 2nd line, executive team, senior business management / partners to develop proactive strategies, tactics, policies and programs to effectively manage regulatory / compliance issues
• Participate in / Manage global regulatory examinations and external / internal audits with respect to request for information
• Ensure adherence to enterprise frameworks and methodologies related to overall business management activities
• Keep abreast of emerging issues, trends, and evolving regulatory requirements and assess potential impacts
• Maintain a culture of risk management and control, supported by effective processes in alignment with risk appetite

Requirements :

• Undergraduate degree or technical certificate and / or 7+ years relevant experience
• Candidates holding current technology certification (CISSP, CCSP, CISA, CISM, Security+, etc) highly preferred
• Familiarity with best-practice frameworks (PCI, NIST, COBIT, MITRE, etc) highly beneficial
• Ability to lead and manage a sizeable risk portfolio of diverse technology assets in an area of moderate to high risk, with varying complexity and scope
• Experience presenting risk analysis and making recommendations to senior management and executives
• Coordinates and prioritizes multiple initiatives and manages resource allocation
• Establishes effective relationships with different Stakeholders, Business Sponsors, Executives and LOB
• Previous system administration, developer, or network / cloud experience a bonus