Manager, Technology Risk Management

Manager, Technology Risk Management at KPMG Canada

At KPMG, you’ll join a team of diverse and dedicated problem solvers, connected by a common cause turning insight into opportunity for clients and communities around the world.

Our Technology Risk Management group in Business Enablement Services is looking for a Risk Manager to join our team. The Technology Risk Management group oversees how the firm manages risk in deploying technology. The Manager, Technology Risk Management will be responsible for helping to execute the globally mandated risk management process overseen by the Canadian Quality & Risk Management Technology Risk team.

The Manager, Technology Risk Management will be responsible for supporting the identification, assessment, and mitigation of risks associated with the use of technology. This role interacts with members within Technology Risk Management, as well as Client Service business lines and other Risk Stakeholders responsible for areas such as Legal, Privacy, Independence, Information Security, Architecture, IT Support & Maintenance, Quality Assurance, and Strategic Risks.

What You Will Do

Facilitate Technology Risk Assessment Submissions and Respond to Consultations

• Gain a thorough understanding of risk assessment requirements and processes and advise business requesters to improve submission quality
• Stay updated on new technologies, e.g. artificial intelligence systems, and ensure risk processes are properly applied
• Gather information on technology tools to ensure the accuracy and completeness of technology risk assessment submissions
• Assist business and risk stakeholders with risk submissions, as required, by gathering necessary information, inputting details into the workflow platform and responding to needs to complete the assessment process
• Collaborate with business and risk stakeholders to provide required support during consultations
• Perform initial review of risk submissions, sign-offs, and supporting documentation to ensure relevant risks are assessed and addressed

Monitor and Facilitate the Timely Completion of Technology Risk Tasks and Approvals

• Collect and track status information from key contacts
• Monitor the completion of action items to ensure timely technology risk assessment approval
• Liaise with stakeholders to identify delays and escalate to Technology Risk management, if needed
• Use ServiceNow and other tools to track technology risk assessment submissions, and report status
• Project manage multiple assessments and keep Technology Risk management informed of progress on a regular basis
• Troubleshoot delays in the technology risk assessment process and develop solutions to resolve them

Conduct Technology Risk Assessments

• Draft risk assessment summaries for review and approval
• Present significant risks or complex findings regarding Legal, Privacy, Independence, Information Security, Architecture, IT Support & Maintenance, Quality Assurance, Strategic Risks, and Artificial Intelligence

Quality Assurance over Risk Assessments

• Assist in responding to internal Global Quality Management assessments related to Technology Risk Management

Support Technology Risk Initiatives

• Provide support on ad-hoc initiatives to enhance the efficiency and effectiveness of the Technology Risk Assessment process

What You Bring To The Role

• Post secondary degree in a relevant field such as Business, Information Technology, Cybersecurity, Computer Engineering, Risk Management, Audit, or Compliance
• Certifications such as CISA, CRISC, CISM, and CISSP, ISO 27001 Lead Implementer/Lead Auditor are highly valued
• MBA or CPA designation is an asset
• A strong foundation in business processes, risk assessment, and IT systems.
• 5+ years of relevant experience in identifying and assessing information technology or business process risks and controls, preferably within a professional services firm or a large organization
• Demonstrated business acumen and comprehensive understanding of computing environments, enterprise architecture and IT risks and controls
• Familiarity with legal and privacy aspects of technology risk is an asset
• Possess a client-centric and service delivery approach, capable of establishing effective communication and building a strong rapport with diverse teams
• Experience in handling complex inquiries, researching, analyzing data, identifying issues, applying conceptual framework to new and unique situations, and documenting findings
• Ability to work both independently and within a team environment
• Excellent business writing and communication skills, with great attention to detail and ability to generate high quality deliverables
• Experience and proven ability to manage end-to-end projects successfully

This position requires written and oral fluency in English. The successful candidate will be required to support or collaborate with English-speaking colleagues or stakeholders nationally in our English speaking provinces while at KPMG.

KPMG BC Region Pay Range Information

The expected base salary range for this position is $73,000 to $109,500 and may be eligible for bonus awards. The determination of an applicant’s base salary within this range is based on the individual’s location, skills & competencies, and unique qualifications. In addition, KPMG offers a comprehensive and competitive Total Rewards program.

Providing you with the support you need to be at your best

Our Values, The KPMG Way

• Integrity, we do what is right
• Excellence, we never stop learning and improving
• Courage, we think and act boldly
• Together, we respect each other and draw strength from our differences
• For Better, we do what matters

KPMG in Canada is a proud equal opportunities employer and we are committed to creating a respectful, inclusive and barrier-free workplace that allows all of our people to reach their full potential. A diverse workforce is key to our success and we believe in bringing your whole self to work. We welcome all qualified candidates to apply and hope you will choose KPMG in Canada as your employer of choice.

Adjustments and accommodations throughout the recruitment process

At KPMG, we are committed to fostering an inclusive recruitment process where all candidates can be themselves and excel. We aim to provide a positive experience and are prepared to offer adjustments or accommodations to help you perform at your best. Adjustments (informal requests), such as extra preparation time or the option for micro breaks during interviews, and accommodations (formal requests), such as accessible communication supports or technology aids, are tailored to individual needs and role requirements. You will have an opportunity to request an adjustment or accommodation at any point throughout the recruitment process. If you require support, please contact KPMG’s Employee Relations Service team by calling 1-888-466-4778.

AI Usage

We embrace the use of artificial intelligence (AI) to enhance the candidate experience and streamline our recruitment processes. AI tools may help with organizing applications or surfacing relevant qualifications. However, no hiring decisions are made using AI. Every hiring decision is made by our hiring managers and recruitment professionals, who are equipped with training that empowers them to use these tools responsibly. AI technologies used in our recruitment process undergo detailed risk assessments, including security and privacy requirements, that align with KPMG’s Trusted AI framework.

We believe technology should empower human judgment, not replace it. It’s one of the many ways we’re delivering on our vision of being a technology-first, people-driven firm.

Key skills/competency

• Technology Risk Management
• IT Systems & Controls
• Cybersecurity
• Information Security
• Risk Assessment
• Compliance
• Project Management
• Stakeholder Collaboration
• ServiceNow
• Artificial Intelligence (AI)