Job Description
Information Cybersecurity Operations – Metric Design & Architecture
Location
Montreal, Ontario
Job Function
Metric Design and Architecture (Technology / Cybersecurity Controls)
Position Overview
The Continuous Controls Monitoring (CCM) team is part of the Technology Controls Group within the Technology and Operation Risk organization. The CCM program provides structured, near real-time monitoring of Technology Policy Control implementations across the firm. The goal is to identify and address control failures and ensure compliance with various laws, rules, and regulations.
The successful candidate will join the Metric Design & Architecture team within CCM, which focuses on defining and quantifying Technology control metrics. This team is responsible for translating Technology Policy controls into specific metric definitions, ensuring accurate measurement and reporting of control effectiveness across the firm’s infrastructure.
Key Responsibilities
- Establish and document control metric definitions for Technology controls by engaging with stakeholders and analyzing data for accurate measurement.
- Work with the Technology Policy team to ensure that Control Measurement / Metric requirements are met through the Policy design and update process.
- Partner with Metric consumers to establish reporting frameworks that meet their needs.
- Collaborate closely with the CCM Data acquisition and tooling team for the successful implementation of metrics.
- Quantify and report on the correctness and operational efficiency of Technology controls.
- Translate Technology Policy controls into clear and specific metric definitions, including implementation details, tools, evidence, and formulas for data acquisition, analysis, and reporting.
Required Skills
- 5+ years of experience in information security and/or information technology.
- 2+ years of hands-on experience with cybersecurity or technology control implementations.
- Ability to define metrics and Key Control Indicators (KCIs) to assess control implementation completeness.
- Strong business acumen and strategic mindset.
- Experience understanding and addressing the needs of customers or clients.
- Strong interpersonal skills for interacting at all levels and collaborating effectively as part of a broader team.
- Proven analytical skills and the ability to make data-driven decisions.
- Ability to manage expectations and handle high-pressure situations with tight deadlines.
Desired Skills
- Knowledge of various domains of technology controls/cybersecurity.
- Experience with public cloud technologies.
- Understanding of security concepts and tools across Identity & Authentication, Data Security, System Security, Network Security, and Application Security.
- Experience with security logging, monitoring, and incident response.
- Cybersecurity certifications are a plus.
Vous devez être connecté pour pouvoir ajouter un emploi aux favoris
Connexion ou Créez un compte