Information security specialist - (business continuity management)
Lieu de travail :
Toronto, Ontario, Canada
Horaire :
37.5
Secteur d’activité :
Solutions technologiques
Détails de la rémunération :
$91,200 - $136,800 CAD
Description du poste :
The Information Security Specialist will be responsible for building and leading the Business Continuity Management Plan across Protect Operations functions of Cyber and Fraud Threat Management and Physical Security and will be an integral member of the Protect Operations Strategic Services team that is accountable for the overall Protect Operations strategic and critical reporting functions, providing standardized operations and change processes from intake to implementation.
In addition to working with our core functions of Cyber, Fraud and Physical response and operational teams, this role is a part of the Strategic Services team who support the 24x7, Always-on capabilities to protect against real-time threats to TD working alongside partners in Protect Platform. This pillar drives the coordination of initiatives and project delivery coordination. Strategic planning and recommendations for new projects and transformative activities, advisory, policy, change management, project management and operations. Strategic partnership facilitation by leading relationships with key enterprise partners and interfacing with respective leadership team to effectively manage operations area and clarifies scope of accountabilities while influencing and aligning others as needed. Integrated and aggregated view of all related activities across the overall function providing escalations, recommendations, and decision support to leadership. Provides forecasts programs/initiatives and demand, and coordinates prioritization of the portfolio/initiatives with key stakeholders. The pillar also supports with advanced level of financial and strategic acumen to provide insight on strategy development and execute effectively on a broad range of key business management activities.
This individual will be a part of the team that is responsible to lead the Business Continuity Planning and other Compliance requirements across Operational teams, track manage deliverables to be Green compliant (Plans/Call Tree, BIA, Tabletop, Test Scenario, Approval & Review) and consistently review business impact activities, document response plans, identify control gaps and opportunities, identify lessons learned and best practices, and ensure their appropriate remediation/incorporation into the necessary controls, processes, within the teams. The individual will also create, plan and execute the test scenario to completion for yearly compliance and be the main point of contact for business impact related crisis coordination and reporting. At times the individual will also work on compliance initiatives, responding to regulatory or audit requests or information for reporting to stakeholders. The mandate of this role as a part of the team is consistent with general regulatory requirements and industry best practices/standards is developed, maintained and adhered to across the Enterprise.
Responsibilities
- Manage and lead business continuity plans across Operations, facilitate to enhance standards and methodologies, supporting the design, facilitation and documenting of exercises and tests using meaningful scenarios.
- Develop and maintain business continuity plans for Operation's key functions, including incident response procedures, crisis management, and disaster recovery strategies.
- Periodically assist in the coordination of the Bank's enterprise crisis management protocol in response to a significant business disruption event impacting the Bank.
- Provide thought leadership and analysis and reporting on the outcome of exercises and incidents including the tracking of findings, issues, and associated action plans.
- Assist with the design, execute, and document exercises and tests of the Bank's incident/crisis management protocols and business continuity plans.
- Review and enhance the Bank's Standards and Guidelines for exercises and tests that align to regulatory requirements, industry standards and best practices.
- Collaborate with internal and external stakeholders to ensure the bank's business continuity plan aligns with their requirements.
- Stay current on emerging threats and industry best practices related to business continuity and disaster recovery.
- Monitor the external environment for potential threats and emerging risks and update the business continuity program accordingly.
- Provide training and awareness to employees on the business continuity program and educate them on their roles and responsibilities during a disruption.
- Stay up to date with industry best practices, regulations, and standards related to business continuity and risk management.
- Development and maintenance of appropriate guides, scenarios, information resources, templates, and other materials to support the effective and efficient execution of exercises and tests.
- Prepare Business Continuity reports and assist with creating executive or board presentations as needed.
- Manage the bank's emergency notification system xMatters/PagerDuty for Operations, has knowledge of Merlin.
- Highly developed relationship management, influencing and leadership skills.
- Must participate in ‘on-call’ manager duties (7/24 pager on rotational schedule) in support of the EBCCM Event Management escalation function.
Experience
- 5+ years of experience with breadth of exposure to operations production and technology environment and/or various LOB environments within the financial services industry and/or Business Continuity Management industry.
- 5+ years of Project management experience, managing people and building new teams/processes and strong organizational skills.
- Reasonable depth of exposure/understanding of Business Continuity Management processes and best practices.
- Prior experience in Business Continuity Management practices and protocols, including in-depth knowledge of international BCM standards promoted by BCI and DR and ISO.
- A strong understanding of Operational risk and resilience, Business Process improvement methods as well as risk related control frameworks and practices (COCO, COSO, ISO, ITIL, CMM, COBIT, etc.).
- All aspects of the Bank’s organizational structure and critical products and services, including the delivery mechanisms and IT associated with each, and the technical and operations infrastructure.
- Familiarity with various cyber security, fraud, physical technologies, and collaboration tools.
- Solid knowledge of IT and Operations Audit methodology.
- Corporate Policies and Standards of TD and its operating subsidiaries.
- Solid understanding of the Operational Risk Management methodology and CSA related requirements.
- Expert communications skills, both verbal and written.
- Ability to think critically, leverage an investigative mindset, and listen actively.
Preferred Qualifications
- 3/4-year degree in a related field (technology, security, risk management, finance).
- Industry certification in one or more of the following: BCI, PMI, CCSA, CISA, CA, CCSP, ISC, ITIL, CISSP, Sec+ or other relevant certifications.
- 5+ years managing projects of moderate to high complexity.
- 2+ years risk management frameworks (NIST, RFM, COCO, COSO, ISO, ITIL, CMM, COBIT, etc.).
#LI-Tech
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
