Senior Manager Payments Security in Toronto at APEX Systems

Date Posted: 6/4/2019

Job Snapshot

Job Description

Job #:  957292


Senior Manager, CIAM & Payments Security
Apex Systems is a large staffing and consulting firm and we are looking for a Senior Manager with Identity Access Management and good management experience to place at our client, a Big Five Bank.
Are you coming from the digital/online/mobile world of identity access management and are interested in leading a new Customer Identity Access Management focused team? Are you able to take a bird’s eye view and examine risk for the enterprise as a whole?
Client: Big Five Bank    Location: Downtown Toronto
Terms: Permanent Role.
Salary/ Benefits: Great salary. Benefits package includes 3-4 weeks vacation, personal and group bonus, ESOP contributions matching, amazing pension plan, medical and dental insurance, banking perks
Application Process: It is best to apply via the medium on which you are seeing this posting. If you encounter technical difficulties submitting your resume, please send a Word version of your resume to Nechama at  ncolman@apexsystems.com . Please reference Senior Manager,  # 957292
Job Description: Mandate is to provide sound governance and guidance on information security risk and to provide critical services central to protecting the Bank against cyber threats. The core principle of Information Security is to protect the confidentiality, integrity, and availability of information. Client achieves this through the development and implementation of strategies, investment plans, services and solutions that support and enable lines of business to operate securely in an increasingly connected global environment. This includes:
  • Setting and driving adoption of the overall strategy for information security risk, including cyber security, for the Bank
  • Establishing and providing governance over the policies, standards, and directives that guide the lines of business in protecting their information assets within the boundaries of their risk appetite
  • Delivering enterprise solutions and services that support the cyber security strategy in a timely and cost effective manner

We are looking for a Senior Manager (Customer Identity & Access Management Security and Payments Security). The role will be a key member of the Enterprise Security Strategy and Architecture team and will review enterprise Customer Identity and Access Management (CIAM) related initiatives as well as the resiliency of Wholesale Payment Systems. The role will collaborate with technology, business and other Information Security teams to ensure the selected capabilities address the threat landscape, improve customer experience and integrate effectively in our client’s environment.
  • Core: Maintain the principles, standards and guidelines focusing on establishing security controls and architecture for all in-scope applications.
  • Inventory and scope: Work with business to understand current controls for applications; understand current control deficiencies for applications, understand the interfaces and data flows for these applications, etc.
  • Security requirements for product selection: Establish product evaluation criteria and help screen or perform due diligence on potential products to be used for CIAM & Payments Security initiatives.
  • Education: Computer Science, Engineering, Information Systems.
  • Background: Broad technical and system-level expertise in one or more areas in information security, at a minimum including Security assessments / reviews, risk analysis, application security, etc.

 Accountabilities:
1. Manage a team of Information Security analysts / specialists
  • Hire, train, mentor, coach and maintain a staff of employees and contractors to complete security analysis and reviews for the CIAM and Payments Security initiatives
  • Resource Management - Addressing any access issues of staff; on-boarding / off-boarding; re-assignments; Vacation / Back-ups; etc.
  • Performance Monitoring - Coordinate and discuss performance / productivity feedback for resources with leader of the CIAM and Payments Security team
  • Level 1 Escalation - Ensuring any slippages are escalated and disagreements with stakeholders are resolved before it reaches the leader of the CIAM and Payments Security team
  • Analyze and present key risks for management decision, escalation or acceptance
  • Management Reporting - Consolidate and report initiative status for management and other stakeholders
  • Conduct awareness events within the bank targeting business and technology stakeholders to elaborate on the security aspects of CIAM and Payment Systems

2. Perform people management responsibilities, consistent with the general directions and strategies provided at the enterprise and divisional levels
  • Talent Review
  • Incentive Pay and Annual Compensation
  • Pulse / Annual Employee Surve
  • Career development and myPerformance process
  • Rewards and Recognition
  • Build team capabilities and redundancies for critical functions
  • Provide strong leadership, coaching and guidance to a multi-disciplinary, professional team of employees

3. Perform responsibilities as a member of the Senior Management team
  • Identifies risks or issues with technology solution & design which may impact realization of project benefits and provide guidance and support to stakeholders in making good decisions to pro-actively resolve or mitigate potential risks/delays to the project.
  • Provide guidance and counsel to LOB’s and projects to ensure alignment to the relevant information security governance programs
  • Proactively identifies and implements strategies to improve reliability, leveraging automation wherever possible
  • Owns and maintains security standards and procedures
  • Exemplify One Bank behaviour and collaborate with various teams to make success look simple.

4. Reporting
  • Provide timely input to management regarding accomplishments as well as outstanding issues
  • Leverage metrics and analytics to gain insight for planning, design and management to facilitate the identification of improvement opportunities
  • Build and maintain reports for Executive management in order to communicate IS risks as it relates to Operating Groups / Legal Entities

5. Become an advocate for the group and recommend improvements to CIAM Security, Payments Security and other group/ Bank processes
  • Provide innovative ideas and identify improvement opportunities in the CIAM Standards and Control Operating Procedures, Payments Security requirements and identify procedures to increase effectiveness and efficiency.
  • Ensure that all stakeholders understand why the process will benefit everyone when completed collaboratively. Be able to explain the risks and importance of our process in mitigating IS related risks.
  • Exemplify  behaviors and adhere to the professional expectations of the job.

Cross-Functional Relationships:
This role requires the incumbent to interact with the following processes and/or groups in:
  • Local Organization Managers, Director and staff, Chief Information Security Officer (CISO), IS, IM and IT Risk Corporate Support Areas (CSA), Information Security Officers (ISO’s), Technology and Operations Liasions, Business Executives, Lines of Business, Other CSAs, Corporate Audit

Knowledge and Skills:
Knowledge
  • In depth knowledge of Information Security risk, ITGC Controls, and industry best practices with a minimum of 10 years relevant experience
  • Advanced understanding of a risk based assessment approach
  • Good knowledge of the technical areas such as data warehouses and databases, mainframes, operating systems, networks, applications, cloud computing, mobile technology, etc.
  • Sufficient business knowledge to assess impact of applied technology on customer’s business processes
  • Expert knowledge of industry standards on Policies, Standards, and operating procedures relating to information security risk
  • Information Security certification is required (e.g. CISSP, GIAC, etc.).

Skills
  • Possesses a deep understanding and problem solving ability of Information Technology of various scale, degree and dimension of complexity
  • Must be passionate about Information Security and like working in a dynamic environment
  • Likes to analyze business problems and build solutions that improve security and create remarkable customer experience
  • Stays abreast of industry technical and business trends through participation in professional associations, practice communities & individual learning
  • Experience engaging business, technology and security leaders and subject matter experts and an ability to influence stakeholders
  • Ability to review technical work
  • Effectively resolves and follows-up on problems as they occur.
  • Analyzes trends to proactively prevent problems
  • Possess good consulting skills
  • Possess advanced analytic skills
  • Highly developed communication skills, both verbal and written
  • Demonstrate strong relationship management skills
  • Possess solid negotiation / mediation skills
  • Possess good Project Management skills
  • Excellent time management skills

Interview Times: Two interviews. One face to face (1 hour) and one telephonically with the Managing Director (30 mins) .
EEO Employer-Apex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at    844-463-6178-6178
 
 
 
 
 
 
 
 
 
EEO Employer
Apex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at 844-463-6178-6178.