Job Description

Sommaire de la compagnie
Venez travailler pour une entreprise qui est engagee dans la reussite de chacun de ses employes. C'est un milieu de travail ou les innovateurs et les collaborateurs se rencontrent et tirent parti des talents de chacun. Un endroit ou la diversite est accueillie et celebree.
FCT offre la meilleure assurance titres de l'industrie et fournit des solutions de recouvrement et d'autres produits et services aux professionnels juridiques, du credit, de l'evaluation et de l'immobilier partout au Canada. Chez FCT, vous aurez l'occasion de batir une carriere interessante. Joignez-vous a nous pour nous aider a poursuivre notre travail excitant et a exercer une grande influence sur nos collegues, nos clients et les collectivites.
Sommaire du poste
Nous sommes toujours a la recherche d'excellents talents; de personnes qui font preuve d'engagement profond envers la clientele et le marche que nous desservons. Si vous desirez vous joindre a une entreprise qui s'est engagee envers le succes de chacun de ses employes et qui offre des defis, des objectifs et des occasions de croitre, tant au niveau personnel que professionnel, dans un environnement axe sur le travail d'equipe, vous aimerez travailler avec nous! Nous comprenons que la promotion d'un environnement diversifie et inclusif est essentielle au succes de nos activites, et nous y travaillons activement chaque jour.
The Security Compliance Manager (SCM) provides leadership and guidance for the company's compliance program regarding all aspects of security. The role is responsible for, and will maintain, the company's overall technology compliance, while supporting general governance and risk management. In addition to requiring adequate information security controls, data protection, privacy and software development practices, this role is responsible for helping the organization understand and comply with all laws, rules and regulations governing the company's technology, including third parties and vendor dependencies. The compliance role includes managing alignment with global expectations and a country specific program aligned with established and required frameworks.
The SCM ensures the company's technical systems and information assets are protected in accordance with compliance requirements. Furthermore, the director is responsible for identifying, evaluating and reporting on information security risks when technological systems and software are not meeting compliance requirements. The SCM will work in tandem with cybersecurity, enterprise technology, legal and compliance leadership to ensure all technology conforms to the company's desired compliance and security posture. The position requires a diverse background to understand a variety of systems, including new technologies and legacy systems used by lines of business and vendors. The SCM will report to the CISO.
Job Responsibilities:Work in tandem with enterprise technology, risk management, cybersecurity and business leads to incorporate compliance practices and industry standards. Cultivate working relationships with technology, compliance, cybersecurity, audit and third-party stakeholders. Manage and direct a team of subject matter experts for technology risk, compliance and effective controls. Maintain compliance framework assessment toolkits used in testing and validation procedures. Be accountable for and lead assessments for technology infrastructure, applications and third-party dependencies, aligning to regulations, best practices, corporate governance and customer expectations. Continuously monitor changes to regulatory requirements, the threat landscape and business impact. Manage the Corporate Trust Center providing timely and appropriate information to both prospective and current customers. Steer the program with emphasis around privacy, security, business resiliency and compliance frameworks. Partner with internal and external auditors to validate controls for compliance. Focus on principles aligned with enterprise risk management fundamentals within security and technology teams to maintain up-to-date configuration documentation for systems and processes. Direct compliance teams to document, communicate and enforce security improvements that balance risk with business operations and ensure controls do not weaken efficiencies or business innovation. Create, prioritize and manage the yearly scope of technology compliance obligations. Uphold policy and rigor in the vendor risk assessment process used by all business units. Identify, document and monitor to closure any gaps when compliance responsibilities are not met. Evaluate security controls and opportunities for improvement and communicate recommendations. Guide members of the compliance team and provide constructive feedback related to performance. Maintain a high degree of knowledge with current and proposed security changes impacting regulatory, privacy and security industry best practice guidance. Acquire and retain knowledge including, but not limited to, PCI, SOC 2, NIST, ISO 27001 and other applicable industry standards. Facilitate IT compliance of identified controls, e.g., IT, application, cloud, cybersecurity, etc. Perform other duties as assigned.

Skills and Experience:At least eight years' experience in cybersecurity and at least three years in compliance, risk management or audit. At least five years' experience managing a distributed team and workforce. Capable of working with diverse teams and promoting an enterprise-wide, collaborative security culture. Demonstrated leadership experience and thorough understanding of various regulatory requirements and laws such as, but not limited to PCI, PIPEDA and OSFI's directives including Integrity and Security, B-10 and B-13. Proven project leadership with both legacy and emerging technologies to assess and manage business risk and enforce security controls. Wide-ranging knowledge in technical infrastructure and applications, from legacy through next generation. General knowledge of cloud (AWS, Google Cloud Platform, Azure) security configuration and management. Proficient understanding of business focus and processes and the ability to inject cybersecurity compliance into the business through teamwork and influence. Ability to maintain a high level of integrity, trustworthiness and confidence to represent the company and security leadership with the highest level of professionalism. Excellent project management, personal and organizational skills. Ability to remain credible with the team and external constituents through sustained industry knowledge.

Education Requirements:
Bachelor's degree preferred in computer science, information assurance, MIS or related field. Advanced degree not required, but an MBA or master's degree in information assurance/technology is advantageous.
Experience Requirements:
10-plus years of cybersecurity or information technology practitioner and management experience.
Certification Requirements:
CISM, CRISC, CISSP, CGEIT, CIPP preferable, but not required.

Remuneration directe totale :
137,200 - 167,900
Toute echelle salariale est en dollars canadiens

VOICI CE QUI NOUS DISTINGUE :
Grace au mentorat, a des outils novateurs et a une variete de programmes qui mobilisent et recompensent les employes, nous donnons a chacun d'eux les moyens d'exceller et d'obtenir des resultats.Avantages sociaux complets qui comprennent l'acces au Programme d'aide aux employes et a la famille (PAEF) et a Bien-etre Essentiel. Un regime d'epargne-retraite collectif assorti d'une cotisation patronale de contrepartie. Des conges payes genereux. Des modalites de travail hybrides. Des occasions de benevolat remunere et des programmes de dons de bienfaisance jumeles. Des programmes de reconnaissance des employes assortis de primes de recommandation. D'eventuels incitatifs fondes sur le rendement. La possibilite de participer a notre regime d'actionnariat. Et plus encore! Conformement aux dispositions du contrat de travail.*

L'Institut Great Place to Work a nomme FCT parmi l'un des 50 Meilleurs lieux de travail au Canada, Meilleurs lieux de travail au Canada pour les services financiers et l'assurance, Meilleurs lieux de travail au Canada pour les femmes, Meilleurs lieux de travail au Canada pour l'inclusion et Meilleurs lieux de travail au Canada pour le bien-etre mental. Nous avons egalement ete reconnus par Achievers comme l'un des 50 milieux de travail les plus impliques en Amerique du Nord.
En vous joignant a nous, vous ferez non seulement partie d'une entreprise primee, mais egalement d'un effectif engage et habilite a reussir.
Merci d'avoir pris FCT en consideration. Nous avons hate de vous rencontrer.En conformite avec le Code des droits de la personne en Ontario et la Loi sur l'accessibilite des personnes handicapees de l'Ontario, une demande d'accommodement sera acceptee dans le cadre du processus d'embauche de FCT.

Afin d'eviter tout delai dans le processus d'embauche, si vous avez besoin d'un accommodement pour postuler, veuillez nous faire part de vos besoins a l'avance. Vous pourriez devoir fournir une preuve medicale ou autre aux Ressources humaines lors de votre demande d'accommodation.

FCT est un employeur souscrivant au principe de l'egalite d'acces a l'emploi et a mis en place un programme antidiscriminatoire actif. Tous les processus de recrutement, d'embauche, de placement, de transfert, de promotion, de formation, de remuneration, d'avantage, de discipline et toutes autres modalites et stipulations liees a l'emploi se feront sur la base des qualifications de la personne sans egard a sa race, sa couleur, son lieu d'origine, son origine ethnique, sa citoyennete, son handicap (y compris les handicaps mentaux et physiques), son sexe, son orientation sexuelle, son identite et son expression sexuelles, son appartenance (la religion), son etat civil, son statut familial (la famille monoparentale), son age, ou toute autre discrimination interdite par les lois sur les droits de la personne applicables au niveau federal et provincial.