InformationRiskManager(IRO)

The **Manager, Information Risk Management** is responsible for supporting the Directors within the team in the delivery of the 2nd Line of Defense risk oversight program across North America. The incumbent will serve as or has the foundation to become a Subject Matter Expert on information security, technology risk, and business continuity and disaster recovery management within the North America IRM team. **Position Responsibilities:** * Support the directors on delivering the 2nd line information risk oversight and challenge program to the U.S. and Canadian Segments while enabling the Segments’ L1 teams to manage their information risks efficiently and effectively. The L2 program covers key initiatives, high risk third parties, business continuity and disaster recovery, severe incidents and loss events, risk exceptions, issues and CAPs, Risk and Control Self Assessments (RCSAs), etc. * Promote a strong information risk culture and diversity, equity and inclusive values. * Stay abreast of new regulations, laws and requirements for information security, cybersecurity, information protection and privacy across jurisdictions. * Maintain and foster relationships with internal customers and risk partners. **Required Qualifications:** * Minimum of 6 years of experience in risk and control space, specifically in the areas of Information Security, Business Resiliency, and Technology Risk * Expertise and prior experience in various aspects of security and information risk management (2nd line of defense preferred) * Strong communication skills and ability to explain highly technical concepts to non-technologists including business executives * Familiarity with IT and security, programming/coding and/or IT compliance **Preferred Qualifications:** * Recognized professional designations in Information Security, Audit and Business Continuity (e.g. CISSP, CISA, CISM, CRISC, CSSLP, MBCP) * Results driven: Timely delivery with high quality * Strong time management and organizatio