Description
A career as a Cyber & Information Security Risk Senior Advisor or Chief Advisor in the Financial Markets Business Operational Strategy, Resilience & Risk Management team at National Bank means supporting the Business Line in the identification, assessment, monitoring and management, of its operational risks by deploying an efficient, practical, and tailored approach that considers the specific context of Financial Markets. In this role, you can use your problem solving and influence skills to have a positive impact on the organization.
Your Job
- Ensure Financial Markets’ Cybersecurity Global Posture remains resilient and versatile in the face of significant business and regulatory changes.
- Develop and maintain relationships and partnerships with key multidisciplinary stakeholders involved in Financial Markets end-to-end business processes.
- Lead transversal investigations formulate recommendations, and business practices regarding the sector's Cybersecurity & Information Security risks.
- Contribute to the elaboration of strategic business plans, deployment and/or maintenance of a vast array of Cyber & InfoSec areas including projects, incident response plans (IRPs), data loss prevention (DLP) scans, tabletop exercises, Financial Markets, training programs and bank-wide threat hunting activities.
- Support the Business Line in monitoring its action plans and implementing its corrective measures to reduce the risk towards the appetite.
- Participate in the drafting and presentation of risk reports to the sector's executive committees.
Your Team
You will be part of a team of 25 colleagues across the FM Business Operational Strategy, Resilience & Risk Management group, and you will report to the Director Cyber & Information Security, Data Privacy & AI. Our team stands out for its diversity, dynamism, agility, and its knowledge of Financial Market activities and sub-processes that support these activities. We want to contribute to your quality of life by offering you as much as possible in your work. For example, we offer a hybrid (remote and in the office) work model.
Our training programs use on-the-job learning to help you master your role. You can access personalized training content and the advisory approach to support your ongoing learning. You’ll also have access to colleagues with a wide range of expertise, experience and backgrounds to enrich all aspects of your development.
Basic Requirements
- University degree in a related field and 5 to 7 years of relevant experience in cybersecurity and operational risk management.
- Knowledge of capital markets and cybersecurity governance in large-scale organization, ideally with operations across international markets.
- Comfortable working in a dynamic and fast-paced environment to support a demanding professional clientele.
- Certifications in business, cybersecurity and technology risk management (e.g., CSC (Canadian Securities Course), CRISC, CISM, CISSP, CISA) an asset.
- Firm understanding of emerging technologies including Artificial Intelligence fundamentals: AI Risk Management Frameworks, AI/ML, GenAI, LLMs, Responsible AI Principles).
- High levels of personal integrity and the ability to handle confidential matters in a professional manner while demonstrating an appropriate level of judgment and maturity.
- Autonomy & critical thinking. Synthesis skills. Social & negotiation skills.
- Proficiency in English and French, both written and spoken, is essential.