×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Senior Group Risk Specialist; ATH

Job in Toronto, Ontario, M5A, Canada
Listing for: The Toronto-Dominion Bank (Canada)
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Job Description & How to Apply Below
Position: Senior Group Risk Specialist (ATH 4338)

Description

The Segment Risk Specialist will collaborate with the 2A Segments team, 2A TDRM enterprise, and the first line of defense to oversee and challenge the execution of risk management activities and leading practices across data, technology, and cyber domains. This includes:

  • Providing advisory services to executives and business segment leaders.
  • Integrating knowledge of enterprise and segment strategy into program design, policy formulation, and operating standards.
  • Anticipating emerging business, regulatory, and risk trends to recommend improvements.
  • Serving as a source of expert advice to senior management and potentially leading teams of specialists.
  • Advising on execution strategy and leading development/deployment of functional programs or initiatives.
  • Solving unique and ambiguous problems with broad impact.
  • Executing 2nd line challenge activities to support the ORM Framework, including:

    Supporting Review and Challenge of PRCSA/RCSA.Providing regular commentary and industry analysis.

    Leading issues management as issue coordinator or issuer.

    Ensuring programs/policies/practices are well managed, compliant, and aligned with business priorities.

    Reviewing and escalating Segment RAS measure limits & excesses, reporting to Segment CRO and Senior Management.

    Conducting technology and cyber scenario analysis.

    Challenging design and operating effectiveness testing performed by the first line.

    Reviewing/challenging technology and data related Risk Acceptances.

    Overseeing Key Risk Indicators (KRI), Segment Deep Dives, and Target Reviews.

    Partnering with segment ORM lead in reviewing Change Risk Assessments or New Business Product Approvals for new business activity involving technology and data risks.

    Supporting other areas as appropriate for data, technology, and cyber risk management.
  • Effectively communicating risk management practices and assessment results to executive and senior management.
  • Influencing risk-based remediation.
  • Maintaining high levels of integrity, motivation, and morale as a positive team player.
  • Quality writing and maintaining enforceable technology policies with “must” statements.

    • Job Requirements

  • Bachelor’s degree from a recognized university or equivalent experience.
  • At least 10+ years of relevant experience within the Financial Services industry (1st/2nd line in data risk, data management/governance, technology & control function, or internal audit).
  • At least 3 years in Operational Risk Management (2nd line ORM) for data; at least 5 years or technology/cyber.
  • Experience engaging with SMEs across data governance, retention, quality, data impact assessments (DIA), incident management, change/problem management, and technical control standards.
  • Understanding of regulatory and controls requirements: B-13, E-21, PCI, FFIEC, SOX, HIPAA, BCBS
    239, OCC 1042, OSFI B-10/B-13/E-21, GLBA 501(b), COBIT, ISO 27001/22301, NIST.
  • Ability to work in ambiguity and adapt to a fast-paced, evolving environment.
  • Superior influencing, collaboration, and communication skills.
  • Experience assessing risk, challenging the status quo, and breaking silos.
  • Strong analytical skills, including risk, data, and comparative analysis.
  • Experience and/or interest in capital markets/trading is an asset.
  • Understanding of:

    Risk management frameworks and methodologies.

    Data management frameworks, operations, processes, controls, and tools.

    Data governance controls and processes.

    Cybersecurity frameworks, operations, processes, controls, and tools.

    Technology operations and processes.

    Infrastructure and application security domains.

    Change & Configuration Management.

    Technology Resilience (HA, DR, RTO/RPO, backup immutability).IT Asset Management & Lifecycle Governance.

    Logging, Monitoring, and Observability Tools.

    Trend & Root Cause Analysis.

    Continuous Control Monitoring (CCM) Logic.

    Cloud service provider management.

    Audit & Regulatory Engagement, preparing management responses and evidencing control coverage.

    • Education & Accreditation

  • Successful completion of all three levels of TD Operational Risk Management certification within 12 months of start date (courses available internally).
  • Undergraduate degree in Computer Science, Computer Engineering, or…
    • Position Requirements
    10+ Years work experience
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search