This job board retrieves part of its jobs from: Emploi Étudiant | Toronto Jobs | Work From Home

Tech jobs every day in Canada!

To post a job, login or create an account |  Post a Job

   Canadian Tech jobs   

Website updated every day with fresh jobs in the IT industry

Slide 1
Slide 2
Slide 3
previous arrow
next arrow

Technology Risk Manager, Independent IT Assessment, Deloitte Global Risk


This is a Contract position in Toronto, ON posted November 7, 2022.

Technology Risk Manager, Independent IT Assessment, Deloitte Global Risk Apply now »

Apply now

  • Start applying with LinkedIn
  • Apply Now
  • Start

  • Please wait…

Apply now

× Apply for Job



Enter your email to apply

Date: Nov 7, 2022

Location: Toronto, Ontario, Canada

Company: Deloitte

Job Type: Permanent
Reference code: 122167
Primary Location: Toronto, ON
All Available Locations: Toronto, ON

Our Purpose

At Deloitte, we are driven to inspire and help our people, organization, communities, and country to thrive. Our Purpose is to build a better future by accelerating and expanding access to knowledge. Purpose defines who we are and gives us reason to exist as an organization.

By living our Purpose, we will make an impact that matters.

  • Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
  • Experience a firm where wellness matters.
  • Be expected to share your ideas and to make them a reality

Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cuttingedge products and services that deliver outstanding value and that are global in vision and scope? Work with premier thought leaders in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture?

What will your typical day look like?


  • Aligns with leadership and actively contribute to the development, implementation, and maintenance of a firm’s technology risk management strategy, methodology and culture.
  • Gains awareness of new and emerging technologies being deployed and ensure risk assessment processes are appropriately applied.
  • Support IT organizational maturity development in Deloitte Member Firms, leveraging the Member Firm Standards
  • Assist design of implementable risk governance methodologies and programs that deliver on stakeholder expectations and drive the strategic and annual planning processes with a focus on maturing the IT & Cyber Risk Management capabilities.
  • Actively contributes to the development of best practices to be used by the broader team, based on research and industry best practices in regulatory and risk governance matters.
  • Keeps the team’s knowledge up to date so that risk management best practices can be recommended to and used by colleagues across levels, including executive management.
  • Fosters and encourages an agile mind set to enable effective technology risk management while driving adaptability to ongoing changes to risks, regulations, and stakeholder expectations.
  • Advise member firms on technologies, processes and procedures to address gaps in conjunction with the Deloitte Technology and Integrity strategies.
  • Advise on the development to the cyber and technology assessment criteria at the start of each assessment cycle – in conjunction with the Global Integrity Assessment Service Leader and the relevant subject matter experts


  • Manages technology risk assessments and reports on findings, consult on remediation plans, track status, aggregate results, and report to management / leadership.
  • Manages deep-dive controls testing for high risk areas within technology for independent validation of issues and remediation efforts.
  • Serves as a subject matter expert to technology functions for technology risk management requirements according to regulatory requirements, firm policy, client commitments, etc.
  • Lead Assessments for geographies within Member Firms completing remote/virtual onsite assessments with various subject matter experts
  • Responsible for continuously improving and updating the technology risk management program, and controls monitoring.
  • Manages notification of updated controls requirements to technology functions due to regulatory and firm policy updates.
  • Provides input into the annual strategic planning and budget processes for technology risk management program.
  • Identifies and puts in place the systems and tools, protocols, analysis methodology and reporting processes necessary to identify, analyze, quantify, monitor and mitigate / control technology risks.
  • Facilitates cross-disciplinary coordination for risk analysis, remediation scoping, reporting and engagement with stakeholders.
  • Manages various technology risk management initiatives in accordance with annual objectives and manage multiple complex technology risk management projects throughout the organization.
  • Contributes to the development and continuous improvement of the technology risk management framework to promote the achievement of firm objectives and safeguard the firm’s reputation.
  • Ensures the maintenance, updating and development of training programs on technology risk management and risk governance, risk reporting for stakeholders to ensure that they are at the leading edge of integrated risk management.
  • Support accelerated improvement to meet needs of member firms, global stakeholders and executive requirements such as compliance with Technology and Risk Standards.
  • Population of compliance tools with compliance assessment results, where necessary, to provide a comprehensive view of Member Firm compliance across all assessed standards compliance with Technology and Risk Standards.
  • Performs other duties as assigned by the Senior Manager within the Independent IT Risk.

Relationship Management

  • Builds strong relationships with internal key stakeholders within second line of defence (2LoD) Technology Risk, relevant first line of defence (1LoD) Technology Risk Management and technology teams.
  • Work closely with colleagues in the Independent Technology Risk leader and collaborate with the First line of defense leaders to provide a risk governance and Member Firm perspectives during risk taking or key risk management activities to help maintain residual risks within Deloitte’s Technology risk appetite.
  • Liaise closely with the Deloitte Technology organization to strengthen the services and support that we provide to member firms
  • Motivates and encourages assigned employees to support and take ownership of technology risk management activities and initiatives to optimize decision quality and exceed expected results.
  • Manages team member performance by engaging and providing feedback to team members, as well as by communicating the firm’s goals and their role in achieving them.
  • Assist the Independent Technology Risk Leader prepare for Governance meetings, liaising with regulatory bodies and external stakeholders.
  • Escalate finding bringing the Member Firm priorities into the spotlight even when they clash with those of the wider Deloitte firm and Deloitte Technology globally Support Deloitte Technology Leaders to develop and manage relationships with Member Firms, taking into consideration different cultural, legislative, and Member Firm issues.
About the team

Deloitte Global:

At Deloitte, we expect results. Incredible-tangible-results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and lead global strategies and provide programs and services that unite our network. In Deloitte Global, everyone has an opportunity to lead. We see the importance of your perspective and your ability to create value. We want you to fit in-with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out-with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. Deloitte Global supports our talented professionals in answering the question: What impact will you make?

Global Risk develops programs, processes, and resources to preserve, protect, and enhance the Deloitte brand around the world. We identify new and emerging risks that might impact the network, mitigate threats as they are identified and proactively engage key stakeholders to develop identification and mitigation procedures.

Enough about us, let’s talk about you

You are someone with:

  • Bachelor’s Degree or higher in business administration, a technology-related field, or equivalent experience
  • Five (5) or more years of demonstrated experience in developing and applying leading practices in a large scale Information Security, Technology Risk or Operational Risk environments, including strategy development and execution, risk and governance experience.
  • Two (2) or more years of people management experience and proven leadership and coaching abilities.
  • Able to demonstrate good relationship management skills
  • Working knowledge of Governance Risk Compliance (GRC) tools (e.g., ServiceNow ideal or Archer, etc.) and Unified Compliance Framework (UCF)
  • Good knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as the ISO family of standards (27001/2, ISO 22301, ISO 27017, etc.), NIST, COBIT, SOC2 reporting framework.
  • Basic knowledge of significant security and privacy laws and regulations in the Americas, Europe, Middle East, Asia, Africa, and Oceania is preferable (e.g., GDPR).
  • Experience in developing and applying standards, principles, methods, and leading IT risk governance practices in large-scale Information Security or Technology environments.
  • Experience working and liaising with executives (e.g., CIO, CISO, Directors, Principals) or senior management.
  • Analytical and problem-solving mindset; demonstrated ability to synthesize large amounts of data in short periods of time for consumption by multiple stakeholders.
  • Effective relationship-building, communication, presentation, and interpersonal skills.
  • Highly disciplined, with strong organizational abilities.
  • Ability to multi-task, prioritize work and work independently. Possess exceptional level of integrity and customer focus. Required Licensed or certifications
  • One or more of CISA, CIA, CISM, CISSSP, CGEIT, ISO 27001/2, ISO27032 Lead Cybersecurity Manager or similar certifications strongly preferred but equivalent knowledge will be considered

Our promise to our people: Deloitte is where potential comes to life.

Be yourself, and more.

We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

You shape how we make impact.

Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute. Be the leader you want to be.

Be the leader you want to be

Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

Have as many careers as you want.

We are uniquely able to offer you new challenges and roles – and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors. Our TVP is about relationships – between leaders and their people, the firm and its people, peers, and within in our communities.

The next step is yours

At Deloitte, we are all about doing business inclusively – that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan, Reconciliation Action Plan and the BlackNorth Initiative.

We encourage you to connect with us at if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations). We’d love to hear from you!

By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.
Deloitte Canada has 30 offices with representation across most of the country. We acknowledge our offices reside on traditional, treaty and unceded territories as part of Turtle Island and is still home to many First Nations, Métis, and Inuit peoples. We are all Treaty people.

Job Segment: Compliance, Relationship Manager, Developer, Information Technology, IT Manager, Legal, Customer Service, Technology

Apply now »

Apply now

  • Start applying with LinkedIn
  • Apply Now
  • Start

  • Please wait…

Apply now

× Apply for Job



Enter your email to apply