Manager, Technology Risk

Job Description

Grade: P7

Referral Level: Level 1

Division: IGM-Tech

IGM Financial Inc. is one of Canada's leading diversified wealth and asset management companies with approximately $271 billion in total assets under management. The company provides a broad range of financial planning and investment management services to help more than two million Canadians meet their financial goals. Its activities are carried out principally through IG Wealth Management and Mackenzie Investments. 

Under IGM Financial’s unique business model based on leading brands and multi-channel distribution strategy is Mackenzie Investments, founded in 1967.  Mackenzie Investments is a holistic asset-management partner for thousands of Canadian financial advisors and the investors they support.   

At Mackenzie Investments You Can Build Your Career with Confidence. 

We have a vision and a strategy that will challenge the way business in this industry is done and help Canadians be successful in the ways that mean the most to them. As part of our team, you will do some of your best work, develop some of your most valuable skills and give back in ways that make a difference in the lives of Canadians.  We are proud to be recognized as one of Canada’s Top Employers by Mediacorp Canada Inc. for empowering our employees with the tools to thrive, while also providing resources to ensure physical and mental wellness were put front and centre. 

Join an unstoppable team that is embedded in continuous learning, understanding, and knowledge sharing. You will thrive in our supportive environment where you can indulge your curiosity to learn, while receiving the feedback you need to refine your skills and abilities. We are dedicated to offering a hybrid work environment when applicable. 

Mackenzie Investments is a diverse workplace committed to doing business inclusively - this starts with having a representative workforce! We encourage applications from all qualified candidates that represent the diversity present across Canada – including racialized persons, women, Indigenous persons, persons with disabilities, 2SLGBTQIA+ community, gender diverse and neurodiverse individuals, as well as all who may contribute to the further diversification of ideas.  

Role & Responsibility:

The IT Risk Manager - Risk and Controls Assurance is part of the First Line of Defense and is responsible for overseeing risk assessment, controls development, review, testing, and overall assurance. This role ensures the organization has clear visibility into the IT risk landscape, enabling informed decision-making and proactive risk mitigation. The IT Risk Manager will report to AVP, IT Risk and will collaborate closely with internal stakeholders to enhance the organization's IT risk management framework.

Key Responsibilities:

Risk Assessment & Controls Development:

• Conduct comprehensive IT risk assessments to identify potential risks and vulnerabilities.
• Develop and implement effective controls to mitigate identified risks.
• Review and update existing controls to ensure they remain effective and aligned with industry standards and regulatory requirements.
• Test controls to verify their effectiveness and identify areas for improvement.

Risk Reporting & Analysis:

• Develop and deliver periodic IT risk reports to Senior Management and relevant Committees.
• Highlight the current IT risk landscape, including identified risks, trends, and potential impacts.
• Provide clear, data-driven insights into the effectiveness of risk mitigation strategies and control measures.
• Establish and maintain Key Risk Indicators (KRIs) to track and communicate emerging risks.
• Support the preparation of risk dashboards and executive-level presentations.

Risk Governance & Assurance:

• Collaborate with risk and security teams to ensure IT risks align with enterprise risk management standards, policies, and frameworks.
• Monitor compliance with internal policies, regulatory requirements, and industry best practices.
• Ensure risk issues are identified, escalated, and reported in accordance with enterprise policies.
• Provide insights into and recommendations on improving risk governance and assurance frameworks.

Stakeholder Engagement & Communication:

• Work closely with IT Security, Data Governance, IT Operations, and other business units to enhance risk transparency.
• Establish strong working relationships with stakeholders across business units and teams to build trust and act as a trusted advisor. Provide subject matter expertise to advise stakeholders on control documentation and testing in compliance with policies and standards.
• Act as a key liaison between first-line IT risk functions and executive leadership.
• Facilitate discussions on IT risk trends and issues with risk committees and board-level stakeholders.
• Assist in responding to internal and external audits, regulatory reviews, and third-party assessments.

Qualifications:

• Bachelor’s degree in engineering, computer science, business, or related fields.
• 5+ years of experience in IT risk management, IT security, compliance, risk assurance, or related fields in the financial services industry.
• Strong expertise in risk assessment, controls development, testing, and overall assurance.
• Knowledge of IT Risk frameworks, methodologies, and industry standards related to IT and Cyber Risk management, including emerging trends and issues (e.g., NIST, ISO 27001, COBIT, CIS Controls).
• Strong understanding of IT governance, regulatory requirements, and industry standards.
• Risk and Control management knowledge and industry experience across Information Technology (IT) domains.
• Experience with Key Risk Indicators (KRIs), risk dashboards, and metrics-driven reporting.
• Excellent written and verbal communication skills, with the ability to translate technical risks into business-relevant insights.
• Deadline-driven and results-oriented; able to meet consistently high-quality standards while handling a variety of tasks and deadlines simultaneously.
• Relevant certifications such as CRISC, CISSP, CISM, or CISA are preferred.

Soft Skills:

• Analytical & Detail-Oriented: Ability to interpret complex risk data and communicate findings clearly.
• Stakeholder Management: Strong ability to work across teams and engage with senior leadership.
• Problem-Solving Mindset: Proactive approach to identifying risks and recommending solutions.
• Strategic Thinking: Ability to align IT risk management with business objectives and enterprise risk management.

Please visit our career page by clicking on the following link: https://www.mackenzieinvestments.com/en/careers 

We thank all applicants for their interest in Mackenzie Investments; however, only those candidates selected for an interview will be contacted.  

Mackenzie Investments is an accessible employer committed to providing a barrier free recruitment experience. If you require an accommodation or this information in an alternate format at any stage of the recruitment process, please reach out to the Talent Acquisition team who will work with you to meet your needs.  

Please apply by Mai 14, 2025.

#LI-JS2 

#LI-Hybrid