We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk ... This role will work closely with the Information Security Governance & Compliance (GRC) team and ...
New
Our Technology Risk Services team is growing. We are looking for a Senior Consultant to join our ... Planning, managing, and completing IT Audit project tasks including liaising with client and KPMG ...
Our Technology Risk Services team is growing. We are looking for a Senior Consultant to join our ... Planning, managing, and completing IT Audit project tasks including liaising with client and KPMG ...
Our Technology Risk Services team is growing. We are looking for a Senior Consultant to join our ... Planning, managing, and completing IT Audit project tasks including liaising with client and KPMG ...
Our Technology Risk Services team is growing. We are looking for a Senior Consultant to join our ... Planning, managing, and completing IT Audit project tasks including liaising with client and KPMG ...
The IT Operational Risk Representative (ORR) encompasses the management of IT permanent control and IT risk reporting. As an IT Permanent Control Senior Officer, the ORR operates as a first-line ...
Quick apply
The IT Operational Risk Representative (ORR) encompasses the management of IT permanent control and IT risk reporting. As an IT Permanent Control Senior Officer, the ORR operates as a first-line ...
Lead IT Auditor
CA$112K - CA$140K/yr
Report findings to senior leadership and collaborate with global teams. IT Audit & Risk Management * Lead and execute IT audit engagements in compliance with internal policies, regulatory ...
Lead IT Auditor
CA$112K - CA$140K/yr
Report findings to senior leadership and collaborate with global teams. IT Audit & Risk Management * Lead and execute IT audit engagements in compliance with internal policies, regulatory ...
Your main role will be to support the maturation of the IT risk management and compliance system in order to address the organization's key challenges: implementing a security management system in ...
Quick apply
Your main role will be to support the maturation of the IT risk management and compliance system in order to address the organization's key challenges: implementing a security management system in ...
Your main role will be to support the maturation of the IT risk management and compliance system in order to address the organization's key challenges: implementing a security management system in ...
Your main role will be to support the maturation of the IT risk management and compliance system in order to address the organization's key challenges: implementing a security management system in ...
Define, develop and deploy the overall technology, cyber and data risk management strategy and the Vice-President's business capabilities * Determine the Bank's appetite for technological ...
Define, develop and deploy the overall technology, cyber and data risk management strategy and the Vice-President's business capabilities * Determine the Bank's appetite for technological ...
Manulife is seeking an experienced Manager, Technology & Cyber Risk Standards Governance to drive ... All information shared during the accommodation request process will be stored and used in a manner ...
Manulife is seeking an experienced Manager, Technology & Cyber Risk Standards Governance to drive ... All information shared during the accommodation request process will be stored and used in a manner ...
You will leverage your technical expertise in compliance, risk management, regulatory requirements ... You have hands-on experience with IT security assessments, information security consulting, or ...
You will leverage your technical expertise in compliance, risk management, regulatory requirements ... You have hands-on experience with IT security assessments, information security consulting, or ...
Knowledge of security protocols, risk management, and compliance standards * A proactive and growth ... des technologies de l'information * 3+ années dans un poste de gestion avec un accent sur le ...
Quick apply
Knowledge of security protocols, risk management, and compliance standards * A proactive and growth ... des technologies de l'information * 3+ années dans un poste de gestion avec un accent sur le ...
IT Manager [#4931]
Montreal, QC · On-site
Knowledge of security protocols, risk management, and compliance standards * A proactive and growth ... technologies de l'information * 3+ annees dans un poste de gestion avec un accent sur le reseau, le ...
IT Manager [#4931]
Montreal, QC · On-site
Knowledge of security protocols, risk management, and compliance standards * A proactive and growth ... technologies de l'information * 3+ annees dans un poste de gestion avec un accent sur le reseau, le ...
Manager, IT Projects
Montreal, QC · Hybrid
Manage IT Operational services provided by the team, including risk remediations and 2 nd level IT support for incidents. * Ensure customer satisfaction is met through continuous improvements. What ...
Manager, IT Projects
Montreal, QC · Hybrid
Manage IT Operational services provided by the team, including risk remediations and 2 nd level IT support for incidents. * Ensure customer satisfaction is met through continuous improvements. What ...
Manager, IT Projects
Montreal, QC · Hybrid
Manage IT Operational services provided by the team, including risk remediations and 2 nd level IT support for incidents. * Ensure customer satisfaction is met through continuous improvements. What ...
Manager, IT Projects
Montreal, QC · Hybrid
Manage IT Operational services provided by the team, including risk remediations and 2 nd level IT support for incidents. * Ensure customer satisfaction is met through continuous improvements. What ...
The Director, Internal Audit - Technology, Information Security, and AI leads the planning and ... Excellent understanding of risk management and related governance concepts, tools, techniques and ...
The Director, Internal Audit - Technology, Information Security, and AI leads the planning and ... Excellent understanding of risk management and related governance concepts, tools, techniques and ...
A career as a risk Governance Advisor in the Technology, Cybersecurity and Data risk Management team at National Bank means acting as a technology, cybersecurity and data risk governance specialist.
A career as a risk Governance Advisor in the Technology, Cybersecurity and Data risk Management team at National Bank means acting as a technology, cybersecurity and data risk governance specialist.
IT Manager
Montreal, QC · Hybrid
Solid understanding of cybersecurity principles, risk management, and compliance frameworks such as ... Experience defining and executing IT automation strategy. * Strong leadership, decision-making, and ...
Quick apply
IT Manager
Montreal, QC · Hybrid
Solid understanding of cybersecurity principles, risk management, and compliance frameworks such as ... Experience defining and executing IT automation strategy. * Strong leadership, decision-making, and ...
It Risk Manager information
See Quebec salary details
$45.91 - $50.72
13% of jobs
$55.07 is the 25th percentile. Wages below this are outliers.
$50.72 - $55.53
14% of jobs
$55.53 - $60.34
18% of jobs
The median wage is $62.23 / hr.
$60.34 - $65.14
15% of jobs
$65.14 - $69.95
5% of jobs
$73.24 is the 75th percentile. Wages above this are outliers.
$69.95 - $74.76
16% of jobs
$74.76 - $79.57
5% of jobs
$79.57 - $84.38
5% of jobs
$84.38 - $89.18
5% of jobs
$89.18 - $93.99
1% of jobs
$93.99 - $98.80
3% of jobs
$45
$67
$98
How much do it risk manager jobs pay per hour?
As of Jun 19, 2026, the average hourly pay for it risk manager in Quebec is $67.31, according to ZipRecruiter salary data. Most workers in this role earn between $55.29 and $75.00 per hour, depending on experience, location, and employer.
What are some common challenges faced by IT Risk Managers when implementing risk mitigation strategies across different departments?
IT Risk Managers often encounter challenges such as varying levels of risk awareness among departments, resistance to new controls or procedures, and balancing business objectives with security requirements. Successful risk mitigation requires clear communication, stakeholder buy-in, and tailored training to ensure all teams understand the importance of compliance. Building strong relationships and fostering a culture of shared responsibility are key to overcoming these hurdles and ensuring effective risk management across the organization.
Do risk managers make good money?
Risk managers typically earn competitive salaries that vary based on experience, industry, and location. According to industry data, median annual pay ranges from $80,000 to over $130,000, with higher earnings possible for those with certifications like FRM or CRM and extensive experience. They often work in corporate environments, analyzing and mitigating financial, operational, or cybersecurity risks.
What are the key skills and qualifications needed to thrive as an IT Risk Manager, and why are they important?
To thrive as an IT Risk Manager, you need a solid understanding of risk assessment, information security, and compliance frameworks, often backed by a bachelor's degree in information technology or related fields. Familiarity with tools such as risk management software, GRC platforms, and certifications like CISSP, CISM, or CRISC is typically required. Strong analytical thinking, communication skills, and the ability to influence stakeholders are crucial soft skills in this role. These skills ensure effective identification, mitigation, and communication of IT risks, supporting organizational resilience and compliance.
What does an IT Risk Manager do?
An IT Risk Manager is responsible for identifying, assessing, and mitigating risks that could impact an organization's information technology systems and data. They develop and implement risk management strategies, policies, and procedures to protect against cybersecurity threats, data breaches, and compliance violations. IT Risk Managers also work closely with other departments to ensure security best practices are followed and often lead risk assessments, audits, and incident response planning.
What is the difference between It Risk Manager vs Cybersecurity Analyst?
| Aspect | It Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CISSP, Security+, CEH |
| Work Environment | Oversees risk management strategies across IT systems | Monitors and responds to security threats and incidents |
| Industry Usage | Used in organizations with complex IT infrastructures | Common in security-focused roles across industries |
The It Risk Manager focuses on identifying and managing IT risks at an organizational level, ensuring compliance and risk mitigation strategies. In contrast, a Cybersecurity Analyst primarily monitors security threats and responds to incidents. While both roles require similar certifications and work within the IT security domain, the It Risk Manager has a broader scope related to risk management policies, whereas the Cybersecurity Analyst concentrates on threat detection and response.
How much does a risk manager get paid?
Risk managers typically earn a median annual salary of around $100,000, with salaries ranging from approximately $70,000 to over $150,000 depending on experience, industry, and location. Professionals often hold certifications like CRM or FRM and work in finance, insurance, or corporate sectors.
Are risk managers in high demand?
Risk managers are in high demand across various industries due to increasing concerns about cybersecurity, compliance, and operational risks. Employers seek professionals with skills in risk assessment, mitigation strategies, and certifications like FRM or CRM, making it a growing field with strong job prospects.
What is the role of IT risk manager?
An IT risk manager is responsible for identifying, assessing, and mitigating information technology risks within an organization. They develop security policies, implement controls, and ensure compliance with industry standards to protect digital assets and infrastructure. Strong knowledge of cybersecurity, risk management frameworks, and relevant certifications like CISSP or CISM are often required.
What are popular job titles related to It Risk Manager jobs in Quebec? For It Risk Manager jobs in Quebec, the most frequently searched job titles are:
What job categories do people searching It Risk Manager jobs in Quebec look for? The top searched job categories for It Risk Manager jobs in Quebec are:
Other
Medical, Retirement
Posted 2 days ago
Job description
We are seeking a highly skilled Senior Analyst - Technology Risk Management & Third-Party Risk Management (TPRM) to support and strengthen our tech risk program. This role will work closely with the Information Security Governance & Compliance (GRC) team and cross-functional stakeholders to assess, monitor, and manage technology-related risks, in addition to managing the technology risk register.
YOU'LL HAVE THE OPPORTUNITY TO:
Perform comprehensive risk assessments of third-party vendors delivering technology products and services.
Review and analyze vendor responses to cybersecurity and risk questionnaires, including evaluation of supporting documentation and evidence.
Conduct technology risk analysis, develop mitigation strategies, and track remediation efforts through to closure.
Evaluate and report on residual risk levels, ensuring proper documentation and escalation of high-risk issues.
Support and execute technology due diligence activities for both new and existing vendors.
Collaborate with internal stakeholders (Procurement, Legal, Privacy, Architecture, and IT teams) to ensure vendor engagements meet internal policies, regulatory requirements, and industry best practices.
Contribute to the continuous improvement of the TPRM framework, processes, and controls.
Manage the lifecycle of risk events in the technology risk register
Discuss coordinated action plans with IT architecture teams and multiple departments
YOU’LL THRIVE IN THIS ROLE IF YOU HAVE THE FOLLOWING SKILLS AND QUALITIES:
Proven experience in Technology Third-Party Risk Management (TPRM) and vendor risk assessments.
Proven experience in managing 2LoD (second line of defence) requirements for risk management.
Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory expectations.
Strong understanding of Business continuity and Disaster recovery processes and methodologies
Solid knowledge of SOX IT General Controls (ITGCs) and their application to third-party service providers.
Hands-on experience in technology risk analysis, remediation planning, and residual risk management.
Experience conducting technology due diligence for vendors and service providers, including review of SOC2 type 2 reports, etc.
Excellent analytical, communication, and documentation skills.
The ability to manage multiple priorities and work independently in a fast-paced environment.
ACKNOWLEDGING THE POWER OF DIVERSITY
BRP is dedicated to nurturing a culture that invites, connects, and propels the ambitions of people of all backgrounds, profiles, beliefs and experiences. Ultimately, the diversity and uniqueness of our people fuel our ingenuity and set the course for the path ahead!
For this reason, we value diversity and we strive to always push each other forward to build an inclusive workplace where every employee feels like they belong, where they can grow and find meaning.
AT BRP, WHEN WE TALK ABOUT BENEFITS, WE GO ALL IN.
Let’s start with a strong foundation - You want it, we have it:
Annual bonus based on the company’s financial results
Generous paid time away
Pension plan
Collective saving opportunities
Industry leading healthcare fully paid by BRP
What about some feel good perks:
Flexible work schedule
A summer schedule that varies by department and location
Holiday season shutdown
Educational resources
Discount on BRP products
WELCOME TO BRP
We’re a world leader in recreational vehicles and boats, creating innovative ways to move on snow, water, asphalt, dirt and even in the air. Headquartered in the Canadian town of Valcourt, Quebec, our company is rooted in a spirit of ingenuity and intense customer focus. Today, we operate manufacturing facilities in Canada, the United States, Mexico, Finland, Australia and Austria, with a workforce made up of close to 17,000 spirited people, all driven by the deeply held belief that at work, as with life itself, it’s not about the destination: It’s about the journey.
#LI-Hybrid
About BOMBARDIER RECREATIONAL PRODUCTS
Sourced by ZipRecruiter
Industry
Manufacturing
Company size
10,000+ Employees
Headquarters location
Valcourt, QC, CA