Senior Program Manager (IT Risk Management- BCP/DRP) TORONTO, ONTARIO
Montgomery Benz (IT Security Recruitment Consultants) - Toronto, ON

This job posting is no longer available on Indeed. Find similar jobs:Senior Program Manager jobs - Montgomery Benz jobs

The Senior Program Manager (Risk Management) will lead and manage the Business Transformation (BT) Risk Management Program and associated risk, compliance and service continuity management initiatives to ensure that adequate controls and proper measures are put in place within BT to achieve continuous compliance with relevant policy, regulatory and legislative requirements.


  • Provide program management leadership for the ongoing Risk Management Program under the directions of

the Business Transformation Leadership Team and the Control Steering Committee (CSC) to ensure that risks are
mitigated to an acceptable level with controls in place that have been designed and operated effectively in accordance
with key compliance requirements

  • Provide project management leadership and oversight for all risk, compliance and service continuity management

initiatives undertaken by the IT Services Risk Management Team to ensure that all project deliverables are completed
on time and within budget in accordance with the scopes and objectives of the projects

  • Assist the Director, IT Services Risk Management, in the development and implementation of the service models,

support structures (including third parties) and funding mechanisms for all IT Services Risk Management internal and
external services related to SOX, SSAE16/CSAE3416, PCI, BCP and DRP

  • Manage the engagement process for the IT Services Risk Management Team and assist the Director, IT Services

Risk Management in establishing work priorities and task assignments in accordance with established service delivery commitments

  • Assist the Director, IT Services Risk Management in establishing and implementing relevant risk management

policies, procedures, standards, guidelines, key performance indicators and code of ethics to assure quality service
delivery and professionalism within the IT Services Risk Management Team

  • Provide leadership, guidance and/or advisory support to members of the IT Services Risk Management Team on all

program/project related matters including best practices from a project management perspective

  • Liaise with other Business Transformation program and/or project managers in the monitoring and tracking of risk-sensitive projects for

report back to the CSC, particularly those that are critical for remediating against deficiencies for SOX and/or other
compliance requirements

  • Assist the Director, IT Services Risk Management, in establishing a proper control framework for project risk

management and be an advocate and/or advisor in raising the awareness within other BT PMOs of the requirement to have proper process controls in place to mitigate risks related to project planning and executions

  • Liaise with process key stakeholders to ensure that Methods and/or other SDLC methodologies currently

used by Business Transformation teams have embedded all business and/or process requirements related to SOX, PCI, PIPEDA, Bill
101, BCP, DRP and/or other policy/regulatory/legislative requirements

  • Lead or participate in steering committee or stakeholder group meetings and conduct risk management

presentations to senior leadership teams or internal/external assurance groups in support of the BT control
accountability structure
Required Knowledge:

  • Expertise in IT program and project management with extensive experience in managing changes in requirements

without impacting the timeliness and quality of program/project deliverables

  • Good knowledge of IT governance, risk, compliance and service continuity management, with hands on experience in

managing projects related to SOX, PCI, SSAE16/CSAE3416, PIPEDA, ISO27002, Bill 101, COBIT, ITIL, BCP or DRP

  • Good understanding of industry standards, methodologies and techniques used to conduct risk assessments,

control self assessments, security reviews, cost benefit analysis, and business impact assessments

  • Some experience in supporting audits and management testing for various IT compliance requirements
  • Good understanding of and some hands on experience with various system, network and data management

techniques and the system development life cycle methodology
Required Skills & Abilities:

  • Excellent written and oral communication skills
  • A strategic thinker with the capability to transform conceptual ideas into tangible solutions and/or actions
  • Leadership, program/project management and service management skills

Required Professional Designation/Certification:

  • Project Management Professional or Equivalent (Mandatory)
  • Certified Information Systems Auditor (desirable)
  • Certified Information Systems Security Professional or Certified Information Security Manager (desirable)
  • Certified in Risk and Information Systems Control (desirable)
  • DRI (Institute for Continuity Management) or BCI (Business Continuity Institute) Certification or Equivalent

Required Experience:

  • Minimum 5 years of senior experience in IT program and project management, with 3 years being engaged in IT governance,

risk, compliance or service continuity management

Montgomery Benz is a premier recruitment firm focusing on the specialized fields of Information Systems Security, including Disaster Recovery Planning, Business Continuity, Crisis Management, Incident Response, and Threat Risk Assessment.
For a confidential discussion, please call Harry Benz at 905-864-8585