Manager, Cyber & Technology Risk

About The Position

Requirements

• Over 7+ years’ experience in a cyber technology management role in retail or with a global footprint, or a similar industry
• Experience in evaluating and deploying a wider range of cyber security technologies (e.g., firewalls, cloud, IDS/IPS, DLP, IDAM, etc.)
• Deep knowledge of industry leading cyber security frameworks and regulations for identifying and managing cyber security risk (e.g., NIST, ISO, COBIT, PCI, etc.)
• Expert knowledge of network technologies, cloud, hardware platforms and operating systems
• Expert understanding of security interoperability through an entire technology stack
• Good knowledge of applicable data privacy practices and laws
• Ability to exercise effective independent judgment, to prioritise and deliver business results in a fast moving, high pressure and demanding environment with competing priorities.
• Strong interpersonal, communication, and influencing skills to build credibility and collaboration
• Bachelor's degree or equivalent experience in Cybersecurity, Computer Science, Engineering, Business, Mathematics, or related field.

Nice To Haves

• Certifications in CISSP, CISM, and SCF CRISC and CISA a definite asset

Responsibilities

• Provides a layer of independent challenge of cyber risk through targeted independent assessments of current cyber security practices, roadmaps, and strategies across the enterprise.
• Evaluate existing and future cyber technologies within the CTC environment to ensure the correct technologies are deployed to effectively mitigate cyber risks to an adequate level.
• Ensure technology alignment with the published cybersecurity roadmap.
• Maintain the process for developing and managing Cyber Risk governance and management activities.
• Act as a liaison between cyber and technology risk functions in the first line such as IT, cybersecurity, business, Enterprise Risk and Internal Audit functions.
• Measure the cyber program against defined risk appetite and tolerance limits based on business needs and informed by regulatory compliance, industry standards, frameworks and technical capabilities.
• Facilitate the identification and influence the remediation of cyber risk initiatives through effective KPI management leveraging metrics and stakeholders as required.
• Partner with cybersecurity, IT, and business stakeholders to assess the effectiveness of current operational resilience, business continuity planning and disaster recovery, providing recommendations and influencing as required.
• Promote a culture of Cyber Risk awareness throughout CTC.

Benefits

• Comprehensive benefits and retirement programs
• Performance incentives
• Continuing Education Programs
• Other perks to support your well-being
• Career growth opportunities
• product discounts
• competitive salaries and wages
• store discounts
• supported learning through our Triangle Learning Academy
• Canadian Tire Profit Sharing
• retirement and savings programs for eligible employees
• mental health benefits in the amount of $5,000 per year for benefits-eligible employees and their families
• total well-being, and mental health tools and resources for all employees