Senior Manager, Orm Enterprise Technology Risk & Cloud

TD Description

Tell us your story. Don't go unnoticed. Explain why you're a winning candidate. Think "TD" if you crave meaningful work and embrace change like we do. We are a trusted North American leader that cares about people and inspires them to grow and move forward.

Stay current and competitive. Carve out a career for yourself. Grow with us. Here's our story:

Department Overview

The Group Risk Management team develops and implements TD's risk management strategies, policies, reporting and operating frameworks, regulatory affairs and operations. We assess operational, enterprise and credit risks, and regulatory affairs throughout TD's footprint to ensure Bank has an effective operational risk management program within its risk appetite. If you want to be a brand ambassador who can help strive efficiencies for the bank, then join our team and make an impactful contribution to TD and your own success. The independent Operational Risk Management (ORM) team works in partnership with the business units and corporate groups of TD Bank Group to further the understanding and management of operational risk across the enterprise.

ORM for Enterprise Technology operates as a 2A function in support of the 3 lines of defense model, providing independent oversight and challenge to activities executed by the Technology organization and business groups across the enterprise. They partner with the first line of defense (CIO & CISO organizations) in identifying, reporting, and mitigating technology risk issues and provide subject matter expertise across a broad range of technology and risk management practices

Job Requirements

• Strong knowledge/experience in risk assessment and measurement of cloud applications, infrastructure components, and database systems.
• Strong knowledge of system software and security development lifecycle including their risk identification and assessments.
• Strong presentation skills: able to use data and manipulate with MS Excel to tell a clear, compelling story on risks dimensions.
• Strong analytical and problem-solving skills.
• Knowledge of security programs for access, network, application and testing and scanning
• Knowledge of technology risk control domains
• Experience with enterprise technology architecture as a holistic structure that includes people, process, and technology components combined to achieve business goals.
• Ability to work in ambiguity; working closely with peers where IT risk subject matter expertise is required.
• Organizationally astute, with superior influencing, collaboration and communication skills. Ability to digest and summarize complex technical scenarios and to communicate those effectively to business leaders.
• Proven Change Manager, with the ability to lead and influence
• Experience assessing risk and challenging the status quo
• In order to provide effective oversight and independent challenge the role requires the incumbent to have a good understanding of the following areas:

• Risk management frameworks and methodologies.
• IT operations, processes, controls and tools.
• Third party risk management.
• Experience in the Cybersecurity, Technology Solutions, Risk Management, or Internal Audit field.
• Strong analytical skills, including segment risk analysis, data analysis, and comparative analysis. Ability to identify root causes on risk exposures and to correlate multiple risk exposures to assess aggregated risks and enterprise compensating controls.
• Knowledge of business and financial acumen

Education & Accreditation

• This role requires successful completion of all three levels of TD Operational Risk Management certification. Certification is not a requirement to apply for this role. The successful candidate will have 12 months from the start date in the role to complete required certifications. The required courses are available internally through TD Operational Risk Management.
• Undergraduate degree in Computer Science/ Computer Engineering/ Risk Management is an asset.
• Accreditation such as CISSP, CISM, CRISC, CEH, OSCP, OSCE, and/or similar is preferred.

#LI-Hybrid

Hours

37.5

Job Description

The ORM Enterprise Technology Risk Senior Manager will partner with the first line of defense to oversee and challenge the execution of risk management activities and leading practices/technologies used to keep up with the constantly evolving landscape of technology, and IT management practices. The candidate will identify gaps, inconsistencies and other integrity issues in technology controls and risk metrics and recommend solutions. The candidate will verify and validate technology control measures in the context of technology processes, support applications, and infrastructure.

Reporting to the AVP, ORM - Enterprise Technology, this role will have the following accountabilities:

• Provide domain or practice leadership, direction, advice and guidance to the ORM team
• Contribute to the annual ORM planning process with a focus on developing relevant challenge activities across your domain.
• Lead the execution of ORM ETech challenge activities for your domain and support other members of the team during the ORM challenge activities on complex risk and control assessments.
• Effectively communicate risk management practices, methodologies, and results of risk assessments to executives in a supportive and collaborative manner and influence risk-based decisions and remediation activities.
• Act as the 2nd line oversight and independent challenge of technology risk management activities for the Enterprise.
• Conduct appropriate independent challenge and assessments of Technology for risk identification, assessment, reporting and monitoring in areas such as:

• Innovative business products and services.
• Projects to mature Technology capabilities.
• Technology risk assessments & Third party risk assessments.
• Technology scenario analysis activities
• Challenge lessons learned reviews performed by the technology
• Be a positive team player to consistently maintain high levels of integrity, motivation and morale.
• This position will deal with executives in Technology & Cybersecurity areas and risk professionals across the enterprise.
• Analyze data and leverage existing tools to identify risks, and develop appropriate response
• Advise on continuous monitoring and control test methods and recommend technology metrics in support of decisions concerning technology control objectives.
• Oversee the business's identification and management of Key Operational Risks, related indicators, and associated thresholds
• Perform independent operational risk reviews
• Advice on best practices leveraging expertise and industry insights
• This is a seasoned i risk and technology leader with 10+ years of experience in technology, cyber and risk management

Inclusiveness

At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live and serve. If you require an accommodation for the recruitment/interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.

Business Line

Corporate

Job Category - Primary

Risk Management

Job Category(s)

Risk Management

Job Family

Group Risk Management

Time Type

Full Time

Employment Type

Regular

TD Bank