What you’ll do
Maintain the process for developing and managing Cyber Risk governance and management activities
Promotes a culture of Cyber Risk awareness throughout CTC
Act as liaison between cyber and technology risk functions in the first line such as IT, cybersecurity and business; and Enterprise Risk and Internal Audit functions.
Challenges the response and recovery from cyber threats and events; and more broadly, as part of a crisis management program
Define risk appetite and tolerance limits based on business needs and informed by regulatory compliance, industry standards and frameworks and technical capabilities.
Facilitate the identification and influence the remediation of cyber risk initiatives through effective KPI management leveraging metrics and stakeholders as required.
Partner with IT and business stakeholders to assess the effectiveness of current business continuity planning and disaster recovery providing recommendations and influencing as required.
Who you are
We are looking for individuals who are :
Creative and courageous, with the ability to manage in an environment of change and ambiguity to help us take bold, strategic moves in this rapidly evolving retail environment
Action oriented, and comfortable taking calculated risks to better serve our customers and business
Outcome focused, critical thinkers with the ability to analyze and visualize, to ensure continuous improvement across our entire business
Collaborative team players with superior influencing skills, who build relationships easily across various stakeholder groups to move initiatives forward
Inclusive leaders who build and develop teams that effectively anticipate and respond to disruption, while consistently delivering strong performance
If you’re curious, ready to take on new challenges and open to doing things differently to help us evolve rapidly, then this is definitely the place to be. What you bring
Over 7+ years’ experience in a cyber security and risk-based role in retail or with a global footprint, or a similar industry
Experience in identifying and understanding cyber security risk in both information technology and operational contexts
Deep knowledge of industry leading cyber security frameworks for identifying and managing cyber security risk (e.g. NIST, ISO, NERC CIP, ISA / IEC etc.)
Certifications in CISSP, CRISC and CISA a definite asset
Solid knowledge of network technologies, hardware platforms and operating systems.
Solid understanding of security requirements through an entire technology stack
Good knowledge of applicable data privacy practices and laws
Ability to exercise effective independent judgment, to prioritise and deliver business results in a fast moving, high pressure and demanding environment with competing priorities.
Strong interpersonal, communication and influencing skills to build credibility and collaboration
Degree-level tertiary qualification or equivalent practical experience in Computer Science, Engineering, Mathematics or a related discipline
About Canadian Tire Corporation Canadian Tire and its family of companies are boldly shaping retail in Canada and we continue to deliver a positive experience for our customers.
As one of the most trusted brands in Canada, our employees take pride in the work we do across the country. It’s more than the iconic triangle that keeps our employees around.
From benefits and perks, to learning and development opportunities, to our commitment to Jumpstart these are some of the many reasons why Canadian Tire Corporation is one of Canada’s Top Employers.
To learn more about this team and the Canadian Tire family of companies follow us on LinkedIn.Canadian Tire is an equal opportunity employer.
We are committed to a diverse and inclusive workplace for all. We recognize that our future success depends on the perspectives and contributions of all our employees their diverse backgrounds, abilities and experiences make our business stronger.
If you are contacted for a job opportunity, please advise us of any accommodations needed to ensure fair and equitable access throughout the recruitment and selection process.
All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.
Jul 4, 2019, 2 : 32 : 25 PM