Senior Defensive Security Advisor at Desjardins identifying and mitigating threats across systems and networks. Leading complex initiatives and collaborating with stakeholders for effective security posture.
About the role
- Building relationships with risk and control owners acting as security risk specialist business partner to help deliver against customer, business and strategic outcomes.
- Providing pragmatic advice to support informed key risk decisions and trade-offs (balancing commerciality and risk appetite), being bold to ‘call it’, and influence senior decision makers.
- Proposing solutions to business problems, delivering oversight with insight and innovative thinking to address security risk challenges.
- Input into the implementation of a risk and control oversight plan to assess compliance to relevant laws, regulations, industry standards and established controls.
- Interpret new operational risk regulation and emerging security opportunities and threats accurately and adeptly.
- Forethinking the direction of travel and anticipating the impact of the proposed changes on the Group.
- Support control owners and specialists to implement control measures that are designed to achieve the control objectives.
- Regularly monitoring and validating the effectiveness of the design of control measures to ensure they are achieving the control objectives.
- Drive automation for risk and control measurement, monitoring, and reporting.
- Collaborate with security, data, and analytics teams to call out issues and define action plans, all in pursuit of sustainable risk management.
- Perform continuous monitoring and reporting of the Group’s exposure relative to risk appetite, highlighting any significant deviations.
- Identifies and develops key risk indicators and key performance indicators to enable appropriate monitoring.
- Support Security Risk Specialist colleagues, contributing to the design, implementation and continuous review and enhancement of risk policies and appetite, as well as the ongoing data-led Operational Risk control objectives to meet the needs of risk and control owners, control specialist teams, Audit and external regulators.
Requirements
- Deep operational expertise aligned to Information, Cyber, and Physical Security risk.
- The ability to assess and manage Security risk, including identification, establishing risk appetite, developing policies, ensuring compliance, designing effective controls, providing assurance oversight, and offering advice that balances risk and reward.
- Expertise in Information Security covering key areas such as asset security, security architecture and engineering, communication and network security, identity and access management, security assessment and testing, security operations and software development.
- Demonstrable curiosity and understanding of the emerging technologies shaping the risk landscape (inc. AI, Digital Ledger Technology, Quantum).
- Experience of data analysis and statistical methods to interpret and quantify risk (e.g. Cyber Risk Quantification)
- Knowledge of relevant laws, regulation, industry standards and established practice in technical subject area.
- Effective decision-making, skilfully balancing trade-offs while understanding business strategy and opportunity risks.
- Experience of assimilating a range sources of data and complex information to effectively problem solve and make relevant conclusions and recommendations.
- Effective communication skills to build partnerships and work collaboratively with others, including Risk Owner, Control Owner and Control Office to meet shared objectives.
- The ability to work effectively with all other lines of defence and understands the different but complimentary roles.
- A future-focused mentality by being able to conceptualise and articulate a customer centric desired end state that has clear line of sight to our Group Strategy.
Benefits
- A generous pension contribution of up to 15%
- An annual performance-related bonus
- Share schemes including free shares.
- Benefits you can adapt to your lifestyle, such as discounted shopping.
- 30 days’ holiday, with bank holidays on top
- A range of wellbeing initiatives and generous parental leave policies
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Life and health insurance financial security advisor serving clients by providing advice and maintaining business relationships. Focused on sales of insurance products and services based on client needs.
CE
Care New EnglandDirector, Security
Director of Security overseeing all safety and security operations for Women & Infants Hospital. Responsible for deterring crime, protecting premises, and managing transport services.
Responsable Pôle Sécurité Médiation Fraude managing security operations for public transport services in Metz. Ensuring safety and compliance while optimizing fraud prevention strategies.
RB
Cyber Security Engineer at Regions focusing on cloud and infrastructure security. Designs and implements cybersecurity solutions while providing technical support and guidance.
CA
Capital.comIAM Security Engineer
IAM Security Engineer focusing on identity and access management automation in a dynamic digital assets company. Contributing to scaling IAM infrastructure through automated solutions and secure user lifecycle management.
FC
Ford Motor CompanySecurity Systems Data Integration Specialist
Data Analyst joining Ford's team to focus on security technologies and data integration. Responsible for improving data operations across global infrastructure and complex requests.
FC
Ford Motor CompanyMobile App Product Manager, Vehicle Security
Digital Product Manager at Ford creating connected vehicle experiences through integrated hardware and software solutions. Collaborating with teams to enhance customer experience through new digital products.
Cybersecurity Engineer implementing Zero Trust Reference Architecture solutions at Mythics. Deploying and maintaining Forescout platform within secure environments.
WA
WattpadSecurity Governance Manager
Security Governance Manager at WEBTOON responsible for IT and Security governance framework. Collaborating with Legal, Product, and Engineering teams in Los Angeles headquarters.