×
Register Here to Apply for Jobs or Post Jobs. X

Senior Specialist, Operational Risk, Cyber & Technology

Job in Montréal, Province de Québec, H2B, Canada
Listing for: Canada Mortgage and Housing Corporation (CMHC) Société canadienne d'hypothèques et de logement(SCHL)
Full Time position
Listed on 2026-07-07
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Project Manager
Salary/Wage Range or Industry Benchmark: 104180 CAD Yearly CAD 104180.00 YEAR
Job Description & How to Apply Below
Job Information

Job

Requisition

Position Status:
Permanent Full Time

Position Type:
Hybrid

Office

Location:

Ottawa (ON);
Montreal (QC);
Toronto (ON)

Travel Requirement:
Limited

Language Designation:
English Essential

Language Skill Levels (Read/Write/Speak): ZZZ

Security Requirement:
Secret

Salary:
Our salaries generally range from $  to $  and are based on qualifications and experience.

About CMHC
The work you do and the work we do together matters. We come to work every day with a common purpose: to contribute to a well‑functioning housing system. At CMHC, we hold ourselves accountable for our results and support our colleagues in their achievements. We thrive on collaboration, connecting across CMHC and involving the right people to get our work done.

Our leadership style is guided by trust, where our leaders favour an adaptive approach based on the needs of their teams. Join us and be part of a team that's committed to making a real difference and be part of something meaningful.

Benefits

Annual Paid vacation.

Annual individual performance incentive.

Defined benefit pension plan.

Comprehensive group insurance plan to support your well‑being from day one.

Support toward your personal and professional growth with training, mentorship and more.

An inclusive workplace culture and environment.

About

The Role
Join the chief risk officer’s team in the Senior Specialist, Compliance and Quality Assurance position. In this role, you will provide strategic insight and independent challenges on technology, artificial intelligence, and cyber risks. You will work closely with first‑line teams to enhance risk practices, improve control effectiveness, and ensure proactive management of technology‑related exposures.

What you’ll do

Provide second line oversight of technology, artificial intelligence, and cyber security risks, including IT General Controls (ITGCs), change management, and system resilience.

Offer independent challenge and expert advice on major technology initiatives, programs and incidents.

Partner with first line (Information Technology, Information Security and 1B business teams) to support implementation of risk management practices across technology programs, including cloud transformation, system changes, and cyber resilience initiatives.

Support oversight of incident management, threat and vulnerability management, and technology capacity risks, ensuring timely identification and escalation of key exposures.

Review and assess Risk Acceptance Memos and security standards, providing insight and recommendations to management.

Contribute to the development and enhancement of technology cyber risk metrics and dashboards to improve visibility and reporting to senior management and the Board.

Collaborate across risk disciplines to integrate technology and cyber risk perspectives into broader operational risk oversight.

Support enterprise risk training and awareness initiatives related to technology and cyber security.

What you should have

An undergraduate degree in computer science, information systems, business administration, commerce, economics, or related fields.

A professional certification or designation in risk management, technology risk, or information security (e.g., CISA, CRISC, CISSP, CRA, CIA).

A minimum of seven (7) years of experience in operational risk oversight, internal audit, or a related function, with a focus on technology and/or cyber security risk management.

Strong working knowledge of artificial intelligence concepts, including machine learning fundamentals, model lifecycle, key risks such as bias, explainability, and data quality, and regulatory expectations.

Strong understanding of IT frameworks and standards (NIST, ISO 27001, COBIT, etc.).

Exceptional interpersonal and communication skills, with the ability to translate technical risk insights into clear business language for senior audiences.

Proven project management and stakeholder engagement capabilities, with experience handling multiple initiatives with high complexity and strategic importance.

It would be great if you also had

Experience developing or overseeing risk metrics and visualization dashboards, such as Power BI.

Demonstrated…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary