Principal Analyst

About The Position

Requirements

• Official Language Proficiency: Bilingual - Imperative (CBC/CBC)
• A degree OR diploma from a recognized post-secondary institution with specialization in information technology, information/cyber security, computer science, engineering, business, commerce, economics, finance, mathematics or other relevant field.
• OR An acceptable combination of relevant experience AND education or training.
• Significant (1) experience in the financial services industry (2) related to technology and cyber risk management and response in one of the following areas: Business or Technology Operations, system/data analysis, or a related control function (i.e. cyber security, business continuity management or operational risk).
• Significant (1) experience of performing regulatory supervision of technology and cyber risk.
• Experience analyzing data, generating reports, liaising with and making presentations to Senior Management (3).
• Knowledge of cyber security penetration testing process, methods, and frameworks.
• Knowledge of current and emerging technology or cyber risks and trends, as they relate to the financial services industry.
• Knowledge of current and emerging cyber threats, as they relate to the financial services industry.
• Collaboration
• Results Orientation
• Critical Thinking
• Ability to communicate effectively in writing.
• Ability to communicate effectively verbally.

Nice To Haves

• A relevant graduate degree from a recognized post-secondary institution.
• One or more relevant designations/certifications such as: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA).
• Recent (1) and significant (2) experience related to technology and cyber risk management and response in two of the following areas: Business or Technology Operations, system/data analysis, or a related control function (i.e. cyber security, business continuity management or operational risk).
• Significant (2) experience related to technology risk management and cyber risk management in the financial services industry (3).
• Knowledge of current and emerging business and environmental trends/issues as they relate to the financial services industry.
• Knowledge of the banking or insurance sectors including key products and functions, and the information and techniques used in their measurement and management.
• Innovation
• Growth and development

Responsibilities

• Provides specialty technology and cyber risk expertise in assessing risks at Federally Regulated Financial Institutions (FRFIs).
• Assessment may involve identifying FRFI-specific risks, industry-wide risks and/or sector specific trends and developments related to technology and cyber risks that may impact a FRFI’s operational resilience.
• Expertise includes technology and cyber risk management practices, familiarity with penetration testing, red and blue teamwork and in-depth understanding and assessments of threats to any process or function that involves systems, data, infrastructure, networks, cyber security and digital technology impacting the financial services industry.

Benefits

• The ability to work remotely from home within Canada with access to the Internet in one’s residence is a condition of employment.
• Ability and willingness to travel within Canada when required.