Technology Risk Oversight Senior Analyst, Global Risk and Brand Protection

Job Type:  Permanent   Work Model:  Remote   Reference code:  126162 Primary Location:  Toronto, ON All Available Locations:  Toronto, ON; Burlington, ON; Calgary, AB; Ottawa, ON; St. John's, NL; Vancouver, BC; Victoria, BC Our Purpose At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization. By living our Purpose, we will make an impact that matters. Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness. Experience a firm where wellness matters. Be expected to share your ideas and to make them a reality. -- What will your typical day look like? Strategic Align with the firm’s technology risk management strategy to actively contribute to the development of best practices, based on research and industry best practices in regulatory and risk governance matters. Gain awareness of new and emerging technologies being deployed and assist the firm in strengthening internal controls and improving technology risk management and business performance. Demonstrate and encourage an agile mind set to enable effective IT risk management while driving adaptability to ongoing changes in technologies, risks, regulations, and stakeholder expectations. Gain awareness of implementable risk governance methodologies and programs that deliver on stakeholder expectations and support the strategic and annual planning processes with a focus on maturing the Technology & Cyber Risk Management capabilities. Operational Support the first line of defense technology risk policy review processes. Fulfill activities to determine the effectiveness of technology controls mitigating key technology risks, support the identification of control enhancements in end-to-end processes, provide challenges on remedial actions, and share insights and best practices with relevant business units as a proactive measure to reduce the likelihood and impact of future risk events. Demonstrate and apply strong project management skills, inspire teamwork and responsibility with team members, and use current technology and tools to enhance the effectiveness of deliverables and services. Support assessment activities through remote or onsite assessments with various subject matter experts. Support initiatives to educate technology functions on technology risk management requirements according to regulatory requirements, firm policy, data classification, client commitments, etc. Demonstrate and apply a working understanding of technology trends to identify issues and communicate this information to the management team through written correspondence and verbal presentations. Work alongside project managers to: Document results of the work performed Review deliverables for completeness and accuracy Assist with preparing team operational schedules and cost estimates Provide additional project management and administration support to management and leadership, as required Perform other job-related duties, as assigned. Relationship Management Build strong relationships with key internal stakeholders and relevant first line of defense Technology Risk Management, technology teams, and member firms, as needed. Maintain regular communication with the management team, including escalation of findings, where applicable. About the team Global Risk & Brand Protection protects, preserves and enhances the Deloitte brand. We navigate the dynamic risk landscape across the areas of risk management, confidentiality & privacy, cyber security oversight, regulatory, independence & conflicts, and Anti-Corruption/financial crimes. We foster trusting relationships across the Deloitte network through collaboration, facilitation and responsive guidance. Enough about us, let’s talk about you Basic knowledge of significant security and privacy laws and regulations in the Americas, Europe, Middle East, Asia, Africa, and Oceania is preferable (e.g., GDPR). Working knowledge in two or more of the following IT and risk domains: cloud hosting, infrastructure, cyber security, secure SDLC, service management, data protection, privacy, IT risk management, maturity assessments, third-party risk management. (Cloud, RPA, Artificial Intelligence) and ways of working (Agile/SAFe) in the context of applicable regulatory requirements and IT delivery model. Experience in developing and applying standards, principles, methods, and supporting IT risk governance practices in a medium-scale to large-scale Information Security, Technology environments. Analytical and problem-solving mindset; demonstrated ability to synthesize large amounts of data in short periods of time for consumption by multiple stakeholders. Effective relationship-building, communication, presentation, and interpersonal skills. Highly disciplined, with strong organizational abilities. Ability to multi-task, prioritize work and work independently. Possess exceptional level of integrity and customer focus. Total Rewards The salary range for this position is $69,000 - $114,000, and individuals may be eligible to participate in our bonus program. Deloitte is fair and competitive when it comes to the salaries of our people. We regularly benchmark across a variety of positions, industries, sectors, targets, and levels. Our approach is grounded on recognizing people's unique strengths and contributions and rewarding the value that they deliver. Our Total Rewards Package extends well beyond traditional compensation and benefit programs and is designed to recognize employee contributions, encourage personal wellness, and support firm growth. Along with a competitive base salary and variable pay opportunities, we offer a wide array of initiatives that differentiate us as a people-first organization. Some representative examples include: $4,000 per year for mental health support benefits, a $1,300 flexible benefit spending account, 38+ days off (including 10 firm-wide closures known as "Deloitte Days"), flexible work arrangements and a hybrid work structure. Our promise to our people: Deloitte is where potential comes to life. Be yourself, and more. We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance. You shape how we make impact. Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute. Be the leader you want to be. Be the leader you want to be Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader. Have as many careers as you want. We are uniquely able to offer you new challenges and roles – and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors. Our TVP is about relationships – between leaders and their people, the firm and its people, peers, and within in our communities.