Director, Assurance and Advisory, Technology & Data

Company Description

Make an impact at a global and dynamic investment organization

When you join CPP Investments, you are joining one of the world’s most admired and respected institutional investors. As a professional investment management organization, CPP Investments invests the funds of the Canada Pension Plan (CPP) to help ensure its financial sustainability for generations of working and retired Canadians.

CPP Investments invests across regions and asset classes to build a globally diversified portfolio. It holds assets in public equity, private equity, real estate, infrastructure, and fixed income, and the CPP Fund is projected to reach $3.6 trillion in assets by 2050. The organization is headquartered in Toronto with offices in Hong Kong, London, Mumbai, New York City, San Francisco, São Paulo, and Sydney.

CPP Investments successfully attracts, selects, and retains talented individuals from top-tier institutions worldwide. Join our team for access to:

• Stimulating work in a fast-paced and intellectually challenging environment
• Accelerated exposure and responsibility
• Global career development opportunities
• Diverse and inspiring colleagues and approachable leaders
• A hybrid-flexible work environment with an emphasis on in-person collaboration
• A culture rooted in principles of integrity, partnership, and high performance
• An organization with an important social purpose that positively impacts lives

If you have a passion for performance, value a collegial and collaborative culture, and approach work with the highest integrity, invest your career here. 

Job Description

Assurance and Advisory (A&A) provides independent and objective assurance over the design and operating effectiveness of CPP Investments’ governance processes and internal controls. Reporting to a Managing Director, Assurance & Advisory, the Director will be focused on maximizing the value delivered by A&A on audits, advisory engagements, and strategic and transformational projects. This role requires a minimum of 10 years of experience in IT auditing, technology risk management, or cybersecurity, with expertise in IT governance, data analytics, automation, and emerging technology risks, including Generative AI (GenAI). You will be instrumental in contributing to the multi-year strategic direction of A&A and implementing the strategy to achieve these objectives. You will be a key partner to the business, leveraging your expertise in IT governance, risk management, technology and internal controls, as well as strong business acumen and advanced problem-solving.

Role-Specific Accountabilities:

Execution Leadership

• Lead the effective planning, execution and reporting of technology audits including:
  • developing the objectives and scope of audits in accordance with the Annual Plan;
  • optimizing resourcing to deliver our work efficiently, while maintaining a high quality of work;
  • leading the development of work programs which focus on the key risks to CPP Investments;
  • ensuring adherence to our Audit Manual and the Institute of Internal Auditors Standards in all the work we do;
  • identifying insightful findings and proactively discussing these with management;
  • producing informative and concise reports for management and the Audit Committee; and
  • monitoring and following up on corrective actions.
• In addition to supporting the delivery of the Audit Plan, provide advisory services which meet management expectations, while maintaining objectivity and independence.

• Identify and implement ways to streamline audit processes to support shorter, more targeted audits.
• Demonstrate agility to anticipate, adapt and pilot approaches that create value and develop continuous monitoring activities.
• Review Generative AI (GenAI) applications to assess their governance, risk management, and compliance with internal controls, ensuring ethical use, data integrity, and alignment with internal policies.

Innovation, Analytics & Generative AI (GenAI) Integration

• Drive innovation in audit methodologies by leveraging data analytics and automation.
• Support the integration of Generative AI (GenAI) into audit processes, ensuring responsible and ethical AI adoption.
• Stay updated on emerging technologies, cybersecurity threats, and regulatory changes to ensure audit methodologies remain relevant.
• Analyze complex IT systems to identify areas for improvement and recommend effective solutions.
• Communicate complex technical risks in a business-friendly manner to senior leadership.
• Lead training and mentorship programs to develop IT audit capabilities within the A&A team.

People Leadership

• Foster an inclusive team environment based on trust, with a safe to speak up culture.
• Proactively provide guidance, coaching and opportunities to A&A team members to develop their knowledge, skills, and career.
• Promote continuous professional development and foster innovation within the A&A team.
• Collaborate with HR and senior leadership to attract and retain top talent in A&A.

Culture Carrier

• Demonstrate the highest ethical standards and role-model CPP Investments’ Guiding Principles of integrity, high performance, and partnership.
• Build and maintain strong and effective working relationships with management across the first and second lines of defence to ensure they receive optimal value from A&A’s work.
• Role-model our “no surprises” approach and transparency with management.
• Provide ongoing thought leadership to the business, not just during audits.
• Embed enterprise-wide priorities into A&A and play a connector role across the organization based on your exposure to different areas.

Qualifications

Education & Professional Certifications

• Undergraduate degree required, preferably in Computer Science, Information Systems, Business, Accounting, or a related discipline; post graduate degree is an asset.
• At least two of the following professional designations are required (CISA, CISM, CIA and/or CISSP); other relevant professional designations or industry certifications are considered an asset.

Professional Experience

• Minimum 10 years of progressive experience in internal audit, consulting, technology risk management or cybersecurity assessments at large and complex financial institutions, public company, and/or investment company.
• Broad and deep knowledge and experience in technology, cloud computing environments, cybersecurity, IT & data governance, interface & application controls, and IT general controls (ITGCs).
• Experience with automation, AI-driven risk management, and Generative AI (GenAI) applications.
• Excellent knowledge of audit methodologies, project management and risk management practices preferably in the investment management or related financial services areas.
• Proven ability to write succinct audit reports that provide meaningful insights to senior leadership.
• Experience in leading and mentoring teams, with a track record of developing high-performing professionals.

Personal Competencies   

• Self-motivated and able to work independently and as part of a team having a “hands on” approach as well as appreciate diversity of thought and opinions.
• Superior communication skills (written and oral) with the ability to take concepts or events and present them simply, concisely and effectively.
• Strong judgment and creativity; strong problem-solving and analytical skills; ability to effectively process a large volume of information and draw meaningful/persuasive conclusions.
• Proven ability to build and foster professional relationships and influence others effectively at the management and staff level.
• Ability to adapt to rapidly changing business needs and priorities with strong attention to detail with proven consistency.
• Strong organizational/project management skills, the ability to manage and achieve multiple deadlines, both internal and external.
• Exemplify CPP Investments’ Guiding Principles of integrity, high performance and partnership.

Additional Information

Visit our LinkedIn Career Page or Follow us on LinkedIn. #LI-PM1 #LI-Onsite

At CPP Investments, we are committed to diversity and equitable access to employment opportunities based on ability.

We thank all applicants for their interest but will only contact candidates selected to advance in the hiring process. 

Our Commitment to Inclusion and Diversity:

In addition to being dedicated to building a workforce that reflects diverse talent, we are committed to fostering an inclusive and accessible experience. If you require an accommodation for any part of the recruitment process (including alternate formats of materials, accessible meeting rooms, etc.), please let us know and we will work with you to meet your needs.

Disclaimer:

CPP Investments does not accept resumes from employment placement agencies, head-hunters or recruitment suppliers that are not in a formal contractual arrangement with us. Our recruitment supplier arrangements are restricted to specific hiring needs and do not include this or other web-site job postings. Any resume or other information received from a supplier not approved by CPP Investments to provide resumes to this posting or web-site will be considered unsolicited and will not be considered.  CPP Investments will not pay any referral, placement or other fee for the supply of such unsolicited resumes or information.