IT Audit Portfolio Manager
2180 Yonge
Canadian Tire Corporation
What you'll do:
Reporting to the ‘Vice President, IT Audit’, you will be accountable for the execution of the technology portfolio through audit assurance, project reviews and risk advisory work, ensuring IT activities are consistent with the Company’s risk appetite and strategic goals. This includes executing and reporting on multiple concurrent audit engagements resulting in improvements to the overall risk/control environment of Canadian Tire Corporation (CTC).
Contribute to CTC’s Internal Audit Services annual planning process ensuring suitable coverage of information technology and cyber risk within the audit universe
Lead information technology and cybersecurity process audits by developing and executing comprehensive audit plans that contain objectives, scope, deliverables, approach, resourcing, and schedule
Conclude whether risks associated with information technology and cybersecurity processes are appropriately managed through existence of effective controls. Ensure that audit conclusions and recommendations are properly supported by audit evidence and that the audit report content is clear, concise and supported by the audit work completed
Prepare and discuss audit findings with client and audit senior management; identifying significant issues in a business context, working with audit clients to identify and recommend feasible solutions
Collaborate with various audit teams on audits of significant CTC projects by addressing various system development and implementation and cybersecurity risks including in-depth assessment of project solution and security architecture, security risk assessments ensuring adherence to enterprise standards and best practices
Act as a risk/control subject matter expert (SME) for various IT infrastructure such as operating systems, databases, network devices, and cloud technologies
Promote compliance to CTC policies and procedures, standards, and guidelines
What you bring:
7+ years of IT audit or information technology experience with focus on cybersecurity or risk management
University degree as well as CISA or CISSP or equivalent certifications are required. Other technology specific certifications are a plus
Excellent working knowledge of audit, project management, and system development methodologies
Experience in the assessment of threats and risks over IT and cybersecurity processes and systems
Solid working knowledge and application of IT, cybersecurity, and service organization reporting control frameworks, specifically COBIT, NIST, and SOC (1 and 2)
Knowledge of various industry regulations such as 52-109, PCI, PIPEDA, and GDPR
Strong technical knowledge of various IT infrastructure and network components such as operating system (Windows, Linux), databases (Oracle), and network platforms
Knowledgeable and experience in areas such as network security architecture, identity and access, threat and vulnerability, systems development security, data loss prevention, and endpoint protection
Knowledge and experience of various security tools (IDAM, Vulnerability Assessment, EDR, SIEM etc.)
Strong understanding of public cloud networking and network security controls on platforms such as Azure, GCP, AWS
Excellent relationship management, time management, organization, planning, and process mapping skills
Well-developed influential skills to resolve situations when there can be distinct differences of opinion between the client and the auditor
Superior verbal and written communication skills sufficient to prepare and communicate audit reports dealing with facts and concepts for presentations to client executives and external auditors
Committed to providing a customer focus and valued added service
Hybrid
At Canadian Tire we work flexibility embracing ‘Hybrid’ whereby individuals utilize a combination of working at a CTC campus and or virtually in service of outcomes. Determined by managers, decisions around work location will be made based on business and team needs and grounded in a desire to support individual well-being and personal needs. Our goal is to empower teams and individuals to make the right decisions for them, and we expect that to look different for everyone
#LI-FM1
About Us
Canadian Tire Corporation, Limited (“CTC”) is one of Canada’s most admired and trusted companies. With more than 90 Owned Brands, 1,700 retail locations, financial services, exemplary e-commerce capabilities, and exciting market-leading merchandising strategies. We dream big and work as one to innovate with purpose for our customers at every level of our business, investing in new technologies and products, and doubling down on top talent to drive the company forward. We offer competitive salaries and wages to CTC employees, as well as store discounts, supported learning through our Triangle Learning Academy, Canadian Tire Profit Sharing, and retirement and savings programs for eligible employees. As part of our enhanced flex benefits program, we offer mental health benefits in the amount of $5,000 per year for benefits-eligible employees and their families, including total well-being, and mental health tools and resources for all employees. Join us in helping to make life in Canada better through living and working our Core Values: we are innovators and entrepreneurs at our core, outcomes drive us, inclusion is a must, we are stronger together and we take personal responsibility. It is an especially exciting time to join CTC and its family of companies where career opportunities are wide-ranging! Join us, where there's a place for you here.
Our Commitment to Diversity, Inclusion and Belonging
We are committed to fostering an environment where belonging thrives, and diversity, inclusion and equity are infused into everything we do. We believe in building an organizational culture where people are consistently treated with dignity while respecting individual religion, nationality, gender, race, age, perceived ability, spoken language, sexual orientation, and identification. We are united in our purpose of being here to help make life in Canada better.
Accommodations
We stand firm in our Core Value that inclusion is a must. We welcome and encourage candidates from equity-seeking groups such as people who identify as racialized, Indigenous, 2SLGBTQIA+, women, people with disabilities, and beyond. Should you require any accommodation in applying for this role, or throughout the interview process, please make them known when contacted and we will work with you to help meet your needs.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure CISA CISSP Cloud COBIT Compliance E-commerce EDR GCP GDPR IAM IT infrastructure Linux Network security NIST Oracle PIPEDA Risk assessment Risk management SIEM SOC Windows
Perks/benefits: Career development Health care Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.