Toronto, ON ยท On-site
CA$124K - CA$155K/yr
Strong stakeholder management skills, with the ability to influence and build consensus. * Intellectual curiosity and commitment to ongoing learning in technology and risk governance. * Understanding ...
Toronto, ON ยท On-site
CA$124K - CA$155K/yr
Strong stakeholder management skills, with the ability to influence and build consensus. * Intellectual curiosity and commitment to ongoing learning in technology and risk governance. * Understanding ...
This is an exciting opportunity to contribute to a robust risk management framework, collaborate ... Professional technology risk designations i.e. CISA, CRISC, CISSP Nice-to-have * Experience in ...
This is an exciting opportunity to contribute to a robust risk management framework, collaborate ... Professional technology risk designations i.e. CISA, CRISC, CISSP Nice-to-have * Experience in ...
Manulife is seeking a Director, Information Risk Management, as a Line 2 leadership role ... Ensure technology and data risks are clearly articulated, quantified where possible, and aligned to ...
Manulife is seeking a Director, Information Risk Management, as a Line 2 leadership role ... Ensure technology and data risks are clearly articulated, quantified where possible, and aligned to ...
Manulife is seeking a Director, Information Risk Management, as a Line 2 leadership role ... Ensure technology and data risks are clearly articulated, quantified where possible, and aligned to ...
Manulife is seeking a Director, Information Risk Management, as a Line 2 leadership role ... Ensure technology and data risks are clearly articulated, quantified where possible, and aligned to ...
Toronto, ON ยท On-site
CA$90K - CA$110K/yr
You will play a key role in helping clients implement practical governance and risk management structures for AI and emerging technologies. Key Responsibilities * Lead and deliver engagements across ...
Toronto, ON ยท On-site
CA$90K - CA$110K/yr
You will play a key role in helping clients implement practical governance and risk management structures for AI and emerging technologies. Key Responsibilities * Lead and deliver engagements across ...
Reporting to the Director, Technology Strategy within Group Risk Management Enterprise Resilience Risk (ERR), you will lead Second Line of Defense engagement across all Regulatory Examinations and ...
Reporting to the Director, Technology Strategy within Group Risk Management Enterprise Resilience Risk (ERR), you will lead Second Line of Defense engagement across all Regulatory Examinations and ...
CA$79K - CA$131K/yr
What you'll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units, the ...
CA$79K - CA$131K/yr
What you'll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units, the ...
The Senior IT Auditor works closely with business, technology, risk management, compliance, and internal audit stakeholders to identify control gaps, assess technology and cyber risks, and support ...
The Senior IT Auditor works closely with business, technology, risk management, compliance, and internal audit stakeholders to identify control gaps, assess technology and cyber risks, and support ...
IT Third party risk management. * Business continuity and disaster recovery * Cloud security * Data ... Operational experience with Canadian or US regulations for technology risk, e.g. OSFI B13, E21, etc.
IT Third party risk management. * Business continuity and disaster recovery * Cloud security * Data ... Operational experience with Canadian or US regulations for technology risk, e.g. OSFI B13, E21, etc.
Toronto, ON ยท On-site
CA$79K - CA$131K/yr
What youu2019ll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units ...
Toronto, ON ยท On-site
CA$79K - CA$131K/yr
What youu2019ll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units ...
Toronto, ON ยท On-site
CA$79K - CA$131K/yr
What youu2019ll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units ...
Toronto, ON ยท On-site
CA$79K - CA$131K/yr
What youu2019ll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across Enterprise Risk Management, Cybersecurity, IT, Privacy and other key Business Units ...
The successful candidate will supervise Technology & Operations (1st Line of Defense) adherence to the Enterprise Third Party Risk Management Policy and Standards, lead the implementation of third ...
The successful candidate will supervise Technology & Operations (1st Line of Defense) adherence to the Enterprise Third Party Risk Management Policy and Standards, lead the implementation of third ...
CA$120K - CA$138K/yr
Advise management on control design and remediation strategies for operating control deficiencies. Audit & Advisory Projects * Plan and execute IT compliance and advisory projects, including risk ...
CA$120K - CA$138K/yr
Advise management on control design and remediation strategies for operating control deficiencies. Audit & Advisory Projects * Plan and execute IT compliance and advisory projects, including risk ...
Engagement risk management: quality assurance through file review, engagement planning, development and monitoring, engagement profitability - Simultaneously deliver multiple client engagements of ...
Engagement risk management: quality assurance through file review, engagement planning, development and monitoring, engagement profitability - Simultaneously deliver multiple client engagements of ...
This role is part of a strategic and comprehensive IT Risk Management Function within the Global Technology Control Testing team and ensures design and implementation in accordance with regulatory ...
This role is part of a strategic and comprehensive IT Risk Management Function within the Global Technology Control Testing team and ensures design and implementation in accordance with regulatory ...
The Technology Risk Consulting practice provides a variety of services to our clients. The ... Engagement risk management: quality assurance through file review, engagement planning, development ...
The Technology Risk Consulting practice provides a variety of services to our clients. The ... Engagement risk management: quality assurance through file review, engagement planning, development ...
... technology risk management. Executive Reporting: 3+ years of dedicated experience crafting ... executive-grade risk reports and presentations for C-suite or steering committees. Technical & Core ...
... technology risk management. Executive Reporting: 3+ years of dedicated experience crafting ... executive-grade risk reports and presentations for C-suite or steering committees. Technical & Core ...
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
System asset management tooling. * Supporting assessments for broader information security topics as well as IT General Controls (ITGCs). * Monitoring relevant technology risk standards and practices.
$28.5K - $42K
5% of jobs
$42K - $55.5K
6% of jobs
$55.5K - $69K
4% of jobs
$69K - $82.5K
5% of jobs
$89.3K is the 25th percentile. Wages below this are outliers.
$82.5K - $96K
8% of jobs
$96K - $109.5K
11% of jobs
The median wage is $114.8K / yr.
$109.5K - $123K
24% of jobs
$132K is the 75th percentile. Wages above this are outliers.
$123K - $136.5K
16% of jobs
$136.5K - $150K
8% of jobs
$150K - $163.5K
7% of jobs
$163.5K - $177K
4% of jobs
$28.5K
$112.1K
$177K
A Technology Risk Management job involves identifying, assessing, and mitigating risks related to an organization's technology infrastructure, systems, and data. Professionals in this field develop policies, ensure compliance with regulatory requirements, and implement security controls to protect against cyber threats and operational failures. They collaborate with IT, security, and business teams to address vulnerabilities and enhance resilience. The role requires knowledge of risk assessment frameworks, regulatory standards, and emerging technology risks.
To excel in Technology Risk Management, you need a background in information security, risk assessment, and regulatory compliance, often supported by a relevant degree and experience in IT or cybersecurity. Familiarity with risk management frameworks (such as NIST or ISO 27001), governance, risk and compliance (GRC) tools, and certifications like CISA, CISSP, or CRISC are highly valued. Strong analytical thinking, communication skills, and the ability to influence and collaborate across departments are vital soft skills for this role. These competencies are crucial to effectively identify, mitigate, and communicate technology risks, helping organizations manage threats while ensuring business continuity and compliance.
Professionals in Technology Risk Management are typically responsible for identifying and assessing potential technology-related risks, developing policies and controls to mitigate those risks, and monitoring compliance with internal and external regulations. Their day-to-day activities often include conducting risk assessments, coordinating with IT teams on security initiatives, preparing reports for senior management, and responding to incidents or audit findings. Collaboration with various departments such as IT, compliance, and business units is frequent to ensure comprehensive risk oversight. This role requires staying up-to-date on emerging threats and evolving regulatory requirements to proactively manage the organization's risk posture.
CA$124K - CA$155K/yr
Other
Medical, Dental, Life, Retirement
Posted 13 days ago
Own and deliver portfolio-level risk profiles by consolidating risk and security insights across assets, initiatives, and key domains.
Develop and maintain standardized, executive-ready risk reporting, including KRIs/KPIs, thematic risk views, issue trends, policy exceptions, and control health indicators.
Drive end-to-end governance of portfolio risk reporting, ensuring data quality, integrity, and consistency across inputs from multiple stakeholders and process owners.
Permanent Full Timeย
-
We are seeking a Manager, Technology Risk & Controls, to lead governance, monitoring, and reporting across assigned Technology portfolios. This role focuses on developing actionable risk and security insights through structured risk profiling.ย
Reporting to the Director, this first line (1B) role acts as a trusted advisor, translating complex risk data into clear, actionable insights that inform senior leadership decisions, support business objectives, and strengthen the organization's Information Security & Technology Risk (ISTR) posture.ย
Key responsibilities include, but are not limited to:ย
Own and deliver portfolio-levelย riskย profiles byย consolidatingย risk and security insights across assets, initiatives, and key domains, including Cyber/Information Security,ย Technologyย Operations, andย Technologyย Delivery.ย
Develop andย maintainย standardized, executive-ready risk reporting, including KRIs/KPIs, thematic risk views, issue trends,ย policy exceptions,ย and control health indicators.ย
Drive end-to-end governance of portfolio risk reporting, ensuring data quality, integrity, and consistency across inputs from multiple stakeholders and process owners.ย
Partner with technology process owners, data owners, and delivery teams to ensureย timely,ย accurate, and complete inputs into risk reporting.ย
Act as a central coordination point across Technology, ISTR, Audit, and second line ofย defenseย (2LOD) functions, ensuring alignment and a consistentย riskย narrative.ย
Engage with 2LOD oversight functions to incorporate independent challenge and regulatory expectations into reporting outputs.ย
Collaborate with SMEs across CIO and CISO organizations to align risk reporting with enterprise priorities and emerging risk themes.ย
Present portfolio risk posture, key themes, and emerging risks to senior leadership,ย demonstratingย strong executive presence and influencing decision-making.ย
Provide effective review and challenge of risk inputs (e.g., issues, audit findings, control statements) to ensure accuracy and completeness in executive reporting.ย
Continuously enhance reporting capabilities through automation, visualization, and improved storytelling.ย
Promote a transparent, risk-aware culture by improving visibility and understanding of technology andย informationย security risks.ย
Assistย withย internal policy risk assessments to ensure compliance with standards and regulations.ย
Assistย withย internal,ย externalย andย regulatory audit responses, including stakeholder engagement and evidence collectionย
What You Will Bring:
8-10 years of experience in financial services or another regulated industry.ย
8-10 years of progressive experience in technology risk, information security, regulatory compliance, or IT governance.ย
3-5+ yearsย ofย leadership experience (preferred).ย
Bachelor's degree in computer science, Information Systems, Engineering, orย relatedย field, or equivalent experience.ย
Strong understanding of technology risk,ย informationย security, Enterprise Risk Managementย framework, and regulatory requirements (e.g., OSFI, CIRO), as well as industry standards (COBIT, NIST, ISO, SOC 2).ย
Proven ability to analyze and translateย risksย in a business context.ย
Demonstrated continuous improvement mindset.ย
Excellent written and verbal communication skills.ย
Strong stakeholder management skills, with the ability to influence and build consensus.ย
Intellectual curiosity and commitment to ongoing learning in technology and risk governance.ย
Understanding ofย large enterprise operating models in regulated environments.ย
Understandingย PowerBIย and automation tools or platformsย would be an asset.ย
Preferred certifications: CISA, CRISC, CISM, or CISSP.ย
Experience with GRC tools (e.g., ServiceNow IRM, MetricStream).ย
-
The base salary for this position is between $124,300- $155,300 annually. This represents base salary only and does not represent other variable compensation components of our total compensation ( i.e. annual bonus, commission etc). If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.
Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.
Grow with Canada Lifeย
We'reย united by a shared purpose: to improve the financial,ย physicalย and mental well-beingย of Canadians. Our company is trusted by 1 in 3 Canadians and contributes to the strength of communities across the country.ย ย
We'reย looking for people who live our values everyday: we step up, we do the right thing, and we deliver - for our customers,ย communitiesย and each other.ย Are you someone who always strives to do the right thing, who steps up for themselves and others, and who delivers with impact? Then we want to hear from you!ย
What we offer:ย ย
We're committed to supporting our employees through every stage of their career. Here's what you can expect as a full-time or part-time permanent team member:ย
Learn moreย aboutย Canada Life.ย ย
We'reย committed to removing barriers and ensuring equal access to employment. Applicants requiring reasonable accommodation during the application process may contactย ย talentacquisitioncanada@canadalife.com. All information provided will be handledย in accordance withย applicable laws and Canada Life policies. ย
Canada Lifewould like to thank all applicants, however only those who qualify for an interview will be contacted.ย
#LI-Hybridย
