Senior Manager, IT Governance Advisory and Oversight

Supports and maintains effective governance and ensure that IT governance, risk and audit programs are implemented, managed, monitored and strengthened in technology. This includes ensuring adherence to policies/guidelines and providing programs/processes/practices and measures to promote transparency, accuracy and consistency across the organization. Also includes providing a holistic view for stakeholders into the issues, opportunities and status of the business and enables them to determine if it is a satisfactorily functioning, safe and sound business.

Accountabilities:

• Provides strategic input into risk-related business decisions as a trusted advisor for the T&O unit.
• Acts as a IT risk management subject matter expert and trusted advisor on relevant regulations, policies and internal directives and standards for the T&O Unit.
• Represents the governance structure during internal/external regulatory audits and/or examinations.
• Leads the intake of IT audit/regulatory engagements; coordinates, organizes and assigns appropriate technical subject matter experts to ensure the successful delivery of the engagement.
• Applies risk management mindset and negotiates with the identification, classification and addressing of issues.
• Ensures that the T&O unit’s audit and regulatory mandate and functions are effectively executed by fostering a collaborative culture of information sharing and problem solving.
• Provides clear, concise, and timely communications on the status of governance activities to various audiences with an ability to adapt to each audience’s information requirements.
• Ability to develop and present to senior management and executive committees and forums.
• Collaborates and negotiates with multiple internal stakeholders and lines of defence to achieve the T&O unit’s objectives.
• Utilizes multiple information sources to consider broader impacts of remediation activities across the T&O unit.
• Contributes to accurate reporting and metrics that would provide senior leadership visibility into the ongoing Audit and Regulatory engagements.
• Represents the T&O unit’s leadership at relevant forums and committees and provides counsel on the organizations audit and regulatory activity.
• May network with industry contacts to gain competitive insights and best practices.
• Conducts independent research, analysis and assessment to resolve strategic issues.
• Coordinates and participates in the execution of oversight/governance activities - may include (but are not limited to) reporting, assessment of education & training needs, development/delivery of training, development and execution of regulatory administration processes & procedures, management of review/updates to policies, etc.
• Assists with the maintenance, monitoring, measurement & reporting on the status of the governance program to various internal & external stakeholder audiences.
• Supports the development, evolution and maintenance of the governance system and framework. Activities may include supporting policy/standard/operating procedures lifecycle management, education and training assessment, development & delivery, coordination of attestation programs, reporting, etc.
• Applies expertise and thinks creatively to address unique or ambiguous situations and to find solutions to problems that can be complex and non-routine.
• Broader work or accountabilities may be assigned as needed.

Qualifications:

• Typically, 7+ years of relevant experience and post-secondary degree in related field of study or an equivalent combination of education and experience.
• Education: MBA preferred
• Certifications: CISA preferred
• Seasoned IT risk professional with a combination of education, experience working with internal and external auditors, and financial industry knowledge.
• Strong knowledge of various technologies (eg distributed and mainframe legacy)
• Strong knowledge of infrastructure operations technologies and support structures
• Infrastructure Audit experience
• Compliance experience including IT risk & controls development, vetting of regulatory materials, responding to regulatory requests.
• Verbal & written communication skills - In-depth / Expert.
• Analytical and problem-solving skills - In-depth / Expert.
• Influence skills - In-depth / Expert.
• Collaboration & team skills; with a focus on cross-group collaboration - In-depth / Expert.
• Able to manage ambiguity under tight timelines - In-depth / Expert.
• Self-starter - In-depth / Expert.