Tech Control Effectiveness Tester (Hybrid)

Technical Controls Effectiveness Tester

Location: Hybrid 2 days per week on-site – Mt Laurel, NJ/Charlotte, NC/New York, NY (Midtown)/Ft Lauderdale, FL

Job Description/Key Accountabilities

• Develop, communicate and implement a holistic governance and control strategy for own
  
  
  

specific business function in support of and integrated with the overall business strategy

• Manage and plan activities that require alignment across multiple areas
• Lead the implementation of regulatory change management and provide guidance to the team in the development and/or integrated implementation of policies / procedures / changes across multiple business / functional areas
• Lead partnership with management and respective teams for area of specialization with
  
  
  

industry, enterprise, and business awareness; recognizing and anticipating emerging

trends and; identifying issues and opportunities and recommending actions to senior

management

• Ensure all administration, control and compliance activities are complete and accurate to
  
  
  

meet targets for own area

• Ensure an integrated and aggregated view of all related business risk and control activities
  
  
  

across the overall function providing escalations, recommendations, and decision support

to leadership

• Forecast programs / initiatives and demand, and coordinate prioritization of the portfolio/
  
  
  

initiatives with key stakeholders

• Provide functional / business level communications to ensure messages to stakeholders
  
  
  

and/or employees are consistent, appropriate and aligned to business risk strategies and

executive management direction

• Provide direction to complex, wide ranging enterprise or cross-function / business projects
  
  
  

as a SME and participate in designing, testing, and implementation of solutions

• Work closely with senior management to develop business plan, ensuring the optimal use
  
  
  

of resources and leverage TD’s operating model to maximize efficiency, effectiveness and

scale

• Lead interface and relationships with corporate and/or control functions to ensure
  
  
  

alignment with enterprise and/or regulatory requirements

• Assess / identify key issues and escalate to appropriate levels and relevant stakeholders
  
  
  

and business management where required

• Identify, mitigate and report on risk issues per enterprise policy / guidance and ensure
  
  
  

appropriate escalation processes are followed

• Ensure business operations are in compliance with applicable requirements (e.g. financial controls, segregation of duties, transaction approvals and physical control of assets)
• Lead or contribute to cross-functional / enterprise initiatives as a SME helping to identify
  
  
  

risk / provide guidance for complex situations

• Manage oversight process, risk-based identification and monitoring of related risks and
  
  
  

regulatory compliance across the supported functions, while ensuring key controls and

processes are effectively managed

• Oversee or lead the facilitation and/or implementation of action / remediation plans to
  
  
  

address performance / risk / governance issues

• Protect the interests of the organization – identify and manage risks, and escalate nonstandard, high risk transactions / activities as necessary
• Maintain a culture of risk management and control, supported by effective processes in
  
  
  

alignment with risk appetite

Experience & Education

• 3-5 years of Experience in following areas (one or more) – Admin/Operation: Network
  
  
  

Security , Firewalls , Routers, Windows , Mainframe, Cloud (Azure/AWS,Google)

• 3-5 years of Control Testing Experience preferred (Produce RFI, Review Evidence , Writing
  
  
  

and Executing Control effectiveness test script, perform testing and peer review)

• 3-5 years of Experience in Lead, managing and executing fieldwork, issue writing and
  
  
  

reporting

• 3-5 years of documenting testing reports, Executive reports
• 3-5 years of knowledge of security frameworks, standards, and best practices.
• Ability to work effectively on virtual teams, including across different geographies and time
  
  
  

zones preferred

• Familiar with JIRA, ServiceNow, Agile methodology
• Hybrid Working Environment – Toronto Based – In Office 2 days a week (at this point)
  
  
  

Additional Experience Preferred

• 3-5 years of IT Audit Experience
• 3-5 years off Previous experience working for GSIB or any Big 5 Canadian or US Big 5
• banks preferred.
• Industry certifications: CISSP (or equivalent) and CISA
  
  
  

Heitmeyer Consulting is an equal opportunity employer and we encourage all qualified candidates to apply. Qualified applicants will be considered without regard to minority status, gender, disability, veteran status or any other characteristic protected by law.