Senior Manager, Technology Risk

About The Position

Requirements

• Bachelor’s degree in Computer Science, Engineering, Business, or a related field or equivalent experience.
• 8+ years of experience in technology risk management, IT governance, or cybersecurity.
• Strong understanding of IT risk frameworks and standards (e.g., NIST, ISO 27001, COBIT, CIS Controls).
• Experience developing and implementing policies, standards, and governance processes.
• Proficiency in risk reporting, data analysis, and dashboard development.
• Analytical Thinking: Ability to interpret complex risk data and translate it into actionable insights.
• Strategic Alignment: Skilled in aligning governance initiatives with business and risk objectives.
• Communication: Strong written and verbal communication skills, with the ability to engage stakeholders at all levels.
• Collaboration: Proven ability to work cross-functionally and influence without authority.
• Accountability: Committed to maintaining high standards of governance and ethical conduct.

Nice To Haves

• Certifications such as CRISC, CISSP, CISM, or CISA are preferred.

Responsibilities

• Collaborate with technology teams and the second line of defence function to develop and maintain technology risk policies, standards, and guidelines.
• Conduct regular reviews and updates to ensure relevance and effectiveness in supporting compliance with cybersecurity regulations and frameworks.
• Align standards with enterprise technology risk policy, industry best practices, and regulatory requirements.
• Support the second and third lines of defense by ensuring clear documentation and demonstrable compliance.
• Support the Director in establishing and maintaining integrated governance frameworks across Information Security, IT Solutions & Availability, and Data Governance domains.
• Coordinate governance activities across business units to ensure consistency and alignment with enterprise risk frameworks.
• Assess and enhance control effectiveness to mitigate risks and ensure compliance.
• Lead initiatives to streamline governance processes while maintaining oversight and accountability.
• Develop and maintain Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) to monitor risk posture and control performance.
• Deliver actionable insights through dashboards and reports to inform strategic decisions and enable proactive risk management.
• Use data-driven analysis to identify trends, gaps, and opportunities for improvement.
• Identify and close gaps in risk and governance practices to strengthen control effectiveness.
• Contribute to the enhancement of risk frameworks and governance models through structured reviews and stakeholder engagement.
• Promote a culture of accountability and risk ownership across teams.
• Partner with cross-functional stakeholders to embed governance principles and improve operational resilience.
• Act as a liaison between technology teams, risk functions, and business units to ensure transparency and alignment.
• Support responses to internal audits, regulatory reviews, and third-party assessments.
• Provide subject matter expertise and guidance on policy interpretation, control documentation, and compliance requirements.

Benefits

• competitive base salary
• performance-weighted bonus
• education/career support
• option to join Employee Share Purchase Plan with employer matching component
• competitive health and dental coverage
• flexible plan for you and your family
• short-term & long-term disability plans
• voluntary Group RRSP enrolment with employer matching component
• paid volunteer days
• competitive time off including 10 wellness days off
• WorkPerks discount program
• hybrid & flex work arrangements
• living our core values: Be a Team, Be Accountable, Be Better
• engaging with community through Business Resource Groups (BRG communities are volunteer employee-led groups formed around a common interest, identity, or background)