Manager, Technology Risk Division

Important messages

We are committed to providing an inclusive and barrier-free work environment, starting with the hiring process. If you need to be accommodated during any phase of the evaluation process, please use the Contact information below to request specialized accommodation. All information received in relation to accommodation will be kept confidential.

Assessment accommodation

POSITION LOCATION:
This position is located in Toronto; however, the successful candidate may work from one of the OSFI offices across Canada (Toronto, Montreal, Ottawa, or Vancouver).

As a result of the global pandemic, OSFI employees are currently working from home. Should the current telework environment no longer apply, and contingent on the operating model adopted by OSFI, you may be required to report into and work onsite from one of the following offices: Toronto, Montreal, Ottawa, or Vancouver. As our telework arrangements are evolving, we encourage you to apply.

EMPLOYMENT EQUITY:
OSFI is committed to achieving a representative workforce that reflects the diversity of the Canadian population. We are dedicated to building and promoting a diverse, equitable and inclusive workforce, representative of all Canadians regardless of race, ethnicity, colour, religion, sex, age, disability, sexual orientation, gender identity or expression, socio-economic background or lived experience. By embracing diversity and inclusion, our department ensures broader discussions, better decisions, and a more positive workplace.

We invite you to be part of the change by joining an organization where individual differences are recognized, valued and respected. We welcome all candidates to apply and strongly encourage candidates to self-declare if they belong to an Employment Equity designated group Aboriginal* Peoples, Persons with Disabilities, Women or Visible Minorities (Black people and other racialized groups).

*The term “Aboriginal” is used within this job advertisement as it relates to the Employment Equity Act and other legislative frameworks. The term “Indigenous” is used where possible, in alignment with the United Nations Declaration on the Rights of Indigenous Peoples.

Achieving a representative and diverse workforce has been identified as an organizational need for OSFI and may be applied at any time during this appointment process. If this criterion is used, only those who have indicated that they are members of the specified designated group(s) will be considered. As such, first consideration for an appointment may be given to candidates who self-declare as belonging to one or more of the four designated employment equity groups (Persons with a disability, Aboriginal people, Members of a Visible Minority, or Women).

In order to self-declare, please ensure to check off the appropriate box within the online application under the Employment Equity section. We encourage you to consult theses links to learn more about employment equity and self-declaration:
• https://www.canada.ca/en/public-service-commission/jobs/services/gc-jobs/employment-equity.html
• https://www.canada.ca/en/public-service-commission/jobs/services/gc-jobs/applying-government-canada-jobs-how-to-apply.html#EE

Duties

The Manager of the Technology Risk Division will provide specialty technology and cyber risk expertise in identifying FRFI-specific risks, industry-wide risks and/or sector specific trends and developments related to technology and cyber risks that may impact a FRFI’s operational resilience. Expertise includes technology crisis reporting, incident response (technology and cyber), data analysis and reporting, and in-depth understanding and assessments of threats to any process or function that involves systems, data, infrastructure, networks, cyber security and digital technology impacting Deposit Taking Institutions (DTIs), insurers and pension plans. The Manager role also requires managing and developing subordinates.

Work environment

Our Role:
OSFI is an independent federal government agency that regulates and supervises more than 400 federally regulated financial institutions and 1,200 pension plans to determine whether they are in sound financial condition. In fulfilling its mandate, OSFI supports the government's objective of contributing to public confidence in the Canadian financial system.
Learn more about us 👉 https://youtu.be/QO_3vnPKuZI

Our People and Culture:
People are the foundation of our organization. You will become part of a diverse community that acknowledges everyone has varied experience and fosters an environment where communication and teamwork amplify our effectiveness. We have several networks dedicated to ensuring that the department continues to grow as an inclusive, accessible, respectful and diverse workplace. All employees are encouraged and welcome to join the following networks and participate in their activities and events.
• Diversity of Thought
• Family Responsibilities
• Gender
• LGBTQ2IS
• Mental Health and Accessibility
• Multiculturalism (Affinity Groups: Indigenous, Asian, Black)
• Unconscious Bias
Hear about our people 👉 https://youtu.be/diUspmpYWQI

Our Rewards:
💵 Compensation: OSFI offers a competitive salary, and employees may be eligible for in-range increases and economic adjustments. Salaries are based on qualifications, experience and knowledge. The Public Service Pension Plan is a defined benefit pension plan (indexed for inflation), where both the employer and the employee contribute.

💰 Performance Pay: OSFI employees are eligible for an annual bonus based on their performance throughout the year.

✈️ Vacation and Leave: OSFI employees start with 4 weeks of paid vacation, 2 personal days and 5 days of Family Related Leave with Pay among other various types of paid and unpaid leave.

💻 Flexible Work Arrangements: OSFI offers flexible work arrangements by providing support for compressed work week schedules, flexible work hours and teleworking, in order for employees to achieve their work objectives while achieving balance between work and homelife.

📖 Learning and Development: OSFI offers career advancement opportunities and encourages innovative thinking in its work environment. Employees may be reimbursed for relevant professional association membership fees.

Intent of the process

A pool of qualified or partially qualified candidates may be created to staff similar or identical positions with various linguistic profiles and requirements, security requirements and/or various tenures within the Office of the Superintendent of Financial Institutions (OSFI), which may vary according to the position being staffed.

Positions to be filled: Number to be determined

Information you must provide

Your résumé.

In order to be considered, your application must clearly explain how you meet the following (essential qualifications)

ESSENTIAL EDUCATION
• A degree from a post-secondary institution with specialization in information technology, information security, computer science, engineering, commerce, business, finance, economics, mathematics or other relevant field OR an acceptable combination of relevant professional industry experience and education.

Degree equivalency

ESSENTIAL EXPERIENCE
• Recent and significant experience related to technology risk management or cyber risk in one of the following areas: Business or Technology Operations, Cyber Security Operations Centre, system/data analysis, risk management, or a related control function (i.e., information security, business continuity management, operational risk or internal/external audit e.g., application audit, cyber security audit, IT governance, operational risk audit).

The following will be applied / assessed at a later date (essential for the job)

English essential

Information on language requirements

ESSENTIAL KNOWLEDGE
• Knowledge of current cyber and technology threats and risks facing financial institutions.
• Knowledge of technology risk and innovative FinTech products as they relate to the financial services industry.

ESSENTIAL COMPETENCIES
• Leading People
• Inclusion
• Collaboration
• Innovation

ESSENTIAL ABILITIES
• Ability to communicate effectively in writing.
• Ability to communicate effectively verbally.

The following may be applied / assessed at a later date (may be needed for the job)

ASSET EDUCATION
• One or more of the following designations/certifications: GIAC Certified Incident Handler (GCIH), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise IT (CGEIT) or other relevant designations.
• A relevant graduate degree from a post-secondary institution

ASSET EXPERIENCE
• Experience in a central support function (including Supervision Methods, Standards and Controls, formerly Common Supervisory Services) within financial sector regulation and/or supervision of OSFI.
• Experience in liaising with and making presentations to Senior Management.
• Recent and significant experience working in a security and network operations centre/cyber security operations centre.
• Recent and significant experience analyzing data, preparing reports and briefing on cyber threats and technology issues.
• Recent and significant experience in liaising with stakeholders, building relationships and conducting outreach on cyber and technology issues.
• Recent and significant experience in writing MOUs with stakeholders for facilitating information sharing.
• Experience managing projects.
• Experience managing teams.
• Recent and significant experience related to technology risk management or cyber risk in two of the following areas: Business or Technology Operations, Cyber Security Operations Centre, system/data analysis, risk management, or a related control function (i.e., information security, business continuity management, operational risk or internal/external audit e.g., application audit, cyber security audit, IT governance, operational risk audit).
• Recent and significant experience related to technology risk management or cyber risk in the financial services industry* in one of the following areas: Business or Technology Operations, Cyber Security Operations Centre, system/data analysis, risk management, or a related control function (i.e., information security, business continuity management, operational risk or internal/external audit e.g., application audit, cyber security audit, IT governance, operational risk audit).

* Financial services industry experience is defined as experience working in one or more of the following areas: (a) financial institutions including banks, trust and loan companies, and insurance companies (b) firms dealing with audits or consulting engagements to such institutions (including reinsurance brokers) (c) technology and data companies providing services to financial institutions or linked to the delivery of financial services (d) government departments that directly deal with the supervision and regulation of these institutions (e) First Nation Institutions including: Band operations, trustees or administrators of pension plans, lending institutions or other related areas providing financial services (f) other relevant areas.

ASSET KNOWLEDGE
• Knowledge of data science analytic techniques (modeling, machine learning and artificial intelligence applications).
• Knowledge of technology risk, innovative FinTech products and/or cyber risk as they relate to the financial services industry.
• Knowledge of current and emerging business and environmental trends/issues as they relate to the financial services industry.
• Knowledge of the banking and/or insurance sectors including key products and functions, and the information and techniques used in their measurement and management.
• Comprehensive understanding of OSFI’s Supervisory Framework.

ASSET COMPETENCIES
• Results Orientation
• Transparency
• Growth and Development
• Critical Thinking
• Interpersonal Communication

ORGANIZATIONAL NEEDS
OSFI is committed to having a skilled and diverse workforce representative of the Canadian population. In order to meet our employment equity objectives, selection for this position may be made from among qualified candidates who self-declare as belonging to one or more of the following Employment Equity groups: Persons with a disability, Aboriginal people, Members of a Visible Minority, or Women. OSFI is committed to diversity and inclusion, and we strongly encourage candidates to self-declare if they belong to one of these designated employment equity groups.

OPERATIONAL REQUIREMENTS
• Ability and willingness to work overtime.
• Ability and willingness to travel internationally when required.

Conditions of employment

• Security – Reliability Status
• In our current telework environment, the ability to work remotely from home within Canada with access to Internet in one’s residence is a condition of employment.
• Ability and willingness to travel within Canada when required.

Other information

The Public Service of Canada is committed to building a skilled and diverse workforce that reflects the Canadians we serve. We promote employment equity and encourage you to indicate if you belong to one of the designated groups when you apply.

Information on employment equity

For external processes (as indicated by the abbreviation “EA” in the selection process number), only those selected for further consideration will be contacted.

OSFI is a separate agency with its own classification and compensation system. OSFI's staffing is subject to the Public Service Employment Act (PSEA).

The ability to communicate effectively in writing may be assessed using the candidate's application, as well as through the evaluation process.

Assessments (such as written exams, interviews and reference checks) may be conducted virtually through email, telephone and/or videoconference.

Candidates must meet all of the essential qualifications to be appointed; however, one or more asset criteria may be invoked at any stage of the process.

Depending on the number of applicants, volume management strategies such as random selection, top-down approach and/or establishing cut-off scores to determine who will continue in the staffing process, may be used for the purpose of managing applications. Please note that although you may attain the established pass mark on any of the assessments used in this staffing process, management may decide to use a higher cut off score.

Eligible candidates may be considered and offered a deployment or interchange before considering other applicants.

Persons are entitled to participate in the appointment process in the official language of their choice. Applicants are asked to indicate their preferred official language in their application.

Email correspondence will be used as the main method of communication with candidates for this selection process, please ensure it accepts messages from unknown users. Please note that you need to provide valid and updated contact information.

All job applications must be submitted through the Government of Canada public service jobs website. Do not email or mail hard copy documents as these will not be accepted. To submit an application online, please click on the "apply now" button. Persons without Internet access may also review jobs open to the public through INFOTEL at 1-800-645-5605.

If you have a limitation that may impact your performance at any steps of the assessment process (such as submitting the application, written test, or an interview), you may request an accommodation. Assessment accommodations are designed to remove barriers, and to ensure that candidates with limitations can fully demonstrate their abilities. Should you wish to be accommodated, please inform us by sending an e-mail to the following address: ( / ). All information received in relation to accommodation will be kept confidential.

Preference

Preference will be given to veterans first and then to Canadian citizens and permanent residents, with the exception of a job located in Nunavut, where Nunavut Inuit will be appointed first.

Information on the preference to veterans

We thank all those who apply. Only those selected for further consideration will be contacted.