Security Compliance & Audit Manager Job at OLG
Security Compliance & Audit Manager
GAME ON – OLG needs you
We’ve said GAME ON, and we mean it – OLG is rapidly transforming its organization to better serve Ontarians by delivering great gaming experiences through our digital, retail lottery, and land-based casino channels. In our fiscal 2019-20 year alone, OLG delivered over $2.3 billion in net profit to the Province of Ontario. OLG is now expanding our horizons even further, with a new strategic direction, to become a world class gaming entertainment leader with a globally admired digital platform.
We are ready to take this game to the next level and need a passionate Security Compliance & Audit Manager to lead in the development and coordination of Technology and Information Security audit and policy making activities ensuring that the audit of OLG technology and associated processes by internal and external audit firms runs smoothly and in accordance with a managed life cycle which includes the management and dissemination of results and feedback from all stakeholders.
YOUR ROLE IN THE GAME
Reporting to the VP Cyber & Information Security Officer, you will be empowered to:
- Oversee the development of security compliance and audit management framework to manage, track and report on Technology and security related audit activities and remedial action plans for all business lines to ensure that OLG is meeting compliance requirements
- Manage the entire security audit life cycle from defining compliance metrics, security framework, policies, regulations, developing engagement letters to remediation completion to ensure that security compliance framework is being consistently followed and risks are proactively identified and addressed for all internal and external stakeholders (e.g. security audit firms, technology senior management, business units, subject matter experts, third party vendors) to ensure a consistent framework and mechanisms to proactively monitor to safeguard OLG assets.
- Coordinate and monitor all Technology and security audit-related requirements, audit materials and frameworks along with associated tasks such as ensuring the readiness across the Technology organization for audit testing and reviewing all audit findings and facilitating the timely resolution of any audit findings with the required parties for corrective action
- Monitor adherence to Technology and security audit requirements by reviewing all audit findings and engaging required parties for corrective action.
- Liaise with various Technology Departments, business representatives and internal and external audit firms and manage commitment to internal and external auditors and provide Technology senior management with materials needed for senior management audit meetings.
- Manage and monitor the compliance regulations and policies for both internal and external stakeholders to ensure a consistent framework is in place
- Provide regular reports on the levels of security compliance risk and control effectiveness to key stakeholders to determine any possible compliance related security breaches
- Interface with various stakeholders across OLG to share OLG’s security vision and solicits their involvement in achieving higher levels of enterprise security through information sharing and cooperation; facilitates awareness of potential security threats and risks, as well as security solutions and related policies.
- Liaise with Technology senior management and all lines of business by participating and representing OLG Information security services and solutions in projects and initiatives to meet business and continuously build relations to achieve information security compliance.
- Promote continuous improvement of the program through regular self-assessment activities, develop and enhancement of tools and processes and gather feedback from OLG management, cross-functional teams and third parties to ensure security programs and initiatives remain current and pertinent to OLG.
- Translates complex security use cases, concepts and governance standards into scenarios and language that all OLG can relate to and understand
- Lead the design and development of policies and practices to ensure that all Technology Security practices are in compliance with federal, provincial and internal regulatory requirements to ensure that security requirements and accepted practices are published, understood and adhered to by OLG employees.
- Proactively research and gather insights on new trends and emerging technologies that the Security team can potentially leverage for continuous improvement.
- Develop program compliance metrics and a prioritization framework and guidelines to ensure OLG is following and aligned to standardized monitoring and reporting practices.
- Promote continuous improvement of the program through regular self-assessment activities, development and enhancement of tools and processes and feedback gathered from OLG management, cross-functional teams and third parties to ensure security programs and initiatives remain current and pertinent to OLG.
- Other duties as required to maintain a robust and responsive security program as directed.
WHAT YOU NEED TO PLAY
Work Experience: Minimum of seven (7) years’ experience in management of information risk, compliance or governance function, including analyzing and applying information risk management, and privacy practices | Minimum of five (5) years’ experience with Security compliance and strategies within a large to medium sized Technology environment | Proficient in four (4) of the primary knowledge competency areas as listed below
Education: Post-secondary degree, preferably in information systems, business administration and/or project management discipline, or an equivalent combination of education, training and experience | Advanced Certification in Information Systems Auditing (CISA) preferred | Advanced Certification in Risk Management (CRISC) or Business Continuity (CBCP) would be an asset
Critical Skills: Primary knowledge around: Information Security Technologies | Technology Audit and Control | Information Security Audits | Technology and Information Security Risk Management | Disaster Recovery and Business Continuity | Enterprise Communications | Information Security Management | Technological Networks | Secondary knowledge around: Information Assurance | Data Privacy
Negotiation and Influence: ability to negotiate and influence effectively while being open to perspectives and maintaining strong relationships
Strategic Thinker: strong strategic and critical thinker with ability to delve into unique challenges and find creative solutions
Collaboration & Fun: inclusive and collaborative work style while creating fun and excitement in our work
Integrity and Trust: do what's right and operate with transparency and openness
PERKS OF JOINING OUR TEAM
- Part of a Bigger Picture: socially responsible company that gives back all its profits to the province and people of Ontario
- Flexible Work Environment: to help balance both work and life
- You Matter: family friendly work practices and hybrid work
- Freedom to Innovate: supports new and better ways to be successful
- Be your Authentic Self: environment that values diversity as a source of strength
- Learning Galore: 24-7 access to robust online learning programs
- Public Service Pension Plan: participate in a major defined benefit pension plan sponsored by the Government of Ontario
- Variable Pay Program: performance-based incentives to share in our success (Permanent OLG Employees Only)
Learn about OLG – GAME ON!
OLG’s purpose is to contribute to a better Ontario by delivering great entertainment experiences for our customers. We are a multi-billion-dollar organization with a wide array of business lines including, lottery, land-based casinos, digital lottery and casino, horseracing, and charitable gaming. OLG is amidst a massive transformation focusing on being customer obsessed and bringing our digital business to a whole new level.
The key to our success is our people. Our culture will be grounded in true, positive partnerships that embrace trust, clarity, and openness in all that we do. We are supporting and empowering employees and teams across the organization through greater accountability, leadership development and growth opportunities. OLG is embracing more flexible work options and family friendly work practices including hybrid work.
Equity, diversity, and inclusion are essential elements of our culture and cornerstones of the Five Truths that OLGers Live by. At OLG, our employees have the space to be themselves and use their perspectives and skills to benefit the people and the Province of Ontario. OLG is an equal opportunity employer. We are committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act.
While we are re-shaping and growing our business, we are unwavering when it comes to living our purpose, and ensuring our business delivers meaningful benefits for the people of Ontario. OLG’s net profits are reinvested back into the province, contributing to the quality of life for Ontarians.
To learn more about OLG go to our website at
www.olg.ca
We look forward to hearing from you, interested applicants please apply online by April 26, 2023.
OLG is an equal opportunity employer. We are committed to providing employment accommodation in accordance with the Ontario Human Rights Code and the Accessibility for Ontarians with Disabilities Act.
Please contact Human Resources at
careers@olg.ca
if you require accommodation at any time throughout the hire process
.
We thank you for your interest in this opportunity; however only those individuals selected for an interview will be contacted.
#LI-Hybrid
Personal information is collected by the Ontario Lottery & Gaming Corporation (OLG) and/or its third party service provider(s) under the authority of the Ontario Lottery and Gaming Corporation Act, 1999, SO 1999, c 12, Sch L and the Employment Standards Act, 2000, S.O. 2000, c. 41 (as amended) and will be used for the purpose of determining qualifications for employment with OLG
and for recruitment modernization initiatives.
The information will be managed in accordance with all
applicable laws, OLG’s Protection of Privacy Policy (the Policy) and related policies and procedures.
For any questions about this collection, please contact
careers@olg.ca
, 800-70 Foster Drive, Sault Ste. Marie, ON, P6A 6V2.
Please Note :
optimuspartners.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, optimuspartners.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.