Risk Specialist (Technology, Information & Third-Party Risk Management)

Closing Date (MM/DD/YYYY):

Worker Type:

Language(s) Required:

Term Duration (in months):

Salary Range (plus eligible to receive a performance based incentive applicable to position) :

Why FCC

At FCC were proud to be 100% invested in Canadian agriculture and food. As a federal Crown corporation we provide financing knowledge resources and business management software to over 103000 customers nationwide.

Heres what you can expect when you join our team:

• Competitive total rewards packages: market-aligned and performance-based salary and incentive programs flexible and comprehensive group benefit and savings plans and well-being support through benefits and wellness programs

• Purpose-driven work: We build strong relationships share knowledge and support the people who feed the world

• Growth: Learning and development opportunities to help you thrive

• Hybrid work options

What youll do

• Work with stakeholders and partners to understand assess and manage risks according to risk appetite. These risks are related to business processes and projects technology development and deployment information management and third-party risk. Your responsibilities will include:

  • Leading supporting and advising on various types of risk assessments such as new initiative and business process risk assessments advisory engagements RCSA and scenario assessments and third-party risk assessments

  • Leading supporting and advising on risk monitoring activities including control challenges treatment plan reviews and closures and assessments of residual risk

  • Compiling and providing risk assessment and monitoring information for regular reporting

  • Coaching and mentoring others to understand and effectively manage risks understand effective governance and the three lines of defence and operate within risk appetite

• Use expertise research and analysis to advance FCCs methodologies to manage technology information and third-party risk

• Develop and maintain processes methodologies and tools to identify assess and manage risk in alignment with FCCs risk appetite

What youll bring to the team

Required Qualifications:

• A bachelors degree in engineering computer science or business administration

• At least four years of experience in a technology enablement environment (or an equivalent combination of education and experience)

• Extensive knowledge of technology and information management as well as third-party risk management in areas such as:

  • SDLC

  • Artificial Intelligence (internal external and vendor use)

  • Cyber security and risk

  • Third party (nth party) risk management (including assessments and monitoring)

• Software and/or Platform as a Service (SaaS and/or PaaS)

• Experience in risk management practices including assessment control development and challenge and monitoring

• Experience with industry standards and frameworks

Preferred Qualifications:

• Certifications related to technology information and third-party risk management such as CRISC CISM CISA and CTPRP

Not sure you meet every requirement We encourage you to apply anyway.