Bilingual Manager, IT Risk Management and Reporting

About The Position

Requirements

• An undergraduate degree in Computer Science, Business, Finance, Commerce or related field. An equivalent combination of education and/or experience may be considered.
• A minimum of seven years of experience in IT risk management related roles, with at least three years in a managerial role.
• Proficient in developing IT risk management policies, with a solid understanding of the specialization area, industry standards, frameworks, and risk management practices, including assurance and oversight.
• Skilled in identifying, assessing, and managing risks to achieve intended outcomes.
• Excellent leadership and interpersonal abilities, demonstrating tact, sound judgment, diplomacy, professionalism, and political awareness.
• Strong written and verbal communication skills in both official languages (French and English), with a focus on influencing and negotiating internal teams and various stakeholders effectively.
• Capable of delivering compelling and clear presentations that persuade others and secure acceptance of proposals or plans related to IT Risk Management and Compliance.
• Adept at planning and managing multiple priorities simultaneously while working under tight deadlines.

Nice To Haves

• Relevant professional designations such as CISA, CRISC, CRMP and/or CISSP are preferred.
• Experience in the financial services industry is an asset.

Responsibilities

• Create and contribute to the development of a comprehensive IT risk-based plan for the sector in alignment with corporate strategies and corporate operational risk management practices.
• Conduct compliance assessments within the IT sector of the organization, ensuring alignment to regulatory requirements, professional standards, as well as corporate policies and methodologies.
• Manage IT responses to external control attestations.
• Communicate, through channels such as quarterly reports and presentations to the IT Risk Management Steering Committee, complex risk-related information clearly and effectively, influencing decision-making and promoting a culture of risk awareness.
• Establish and manage validation protocols, policies, and guidelines, developing plans that include objectives, risk assessments, and monitoring strategies.
• Stay up-to-date and informed on industry best practices, corporate objectives, priorities, and initiatives across CMHC to adequately identify existing and emerging technology risks.
• Leveraging data analytics, contributes to the identification of trends/gaps in processes and controls and provide insights and recommended improvements necessary to mitigate risks.
• Manage a team of 5+ specialists, providing direction, expert advice, support, and coaching to ensure high quality outputs and the successful delivery of team objectives.

Benefits

• Annual Paid vacation.
• Annual individual performance incentive.
• Defined benefit pension plan.
• Comprehensive group insurance plan to support your well-being from day one.
• Support towards your personal and professional growth with training, mentorship and more.
• An inclusive workplace culture and environment.