BMO Financial Group Manager, Operational Resilience in Toronto, Ontario
250 Yonge Street
Job Family Group:
Audit, Risk & Compliance
As key member of Operational Risk Management Governance, Enterprise Business Continuity Management is seeking an Operational Resilience and Business Continuity Management specialist with prior Information Technology, Information Security and Business Continuity experience. This role is a distinctive analytical role, responsible for supporting and representing the best interests of BMO and the evolving Operational Resilience in matters concerning governance, audit and assessment, regulatory reviews, and program administration, with an emphasis on promoting resilience and embedding resilience as a discipline across Information Technology, Information Security, Outsourcing/Vendor Management and Business Continuity.
The Manager (Operational Resilience) will report to the Senior Manager EBCM (Corporate Support and Oversight) as a member of the EBCM team, providing pro-active, professional advice to coordinate the bank’s approach to Operational Resilience (encompassing Business Continuity, Cybersecurity and Technology (specifically Disaster Recovery) capabilities). The ideal candidate will develop effective relationships to ensure BMO’s approach to Operational Resilience is integrated with other key areas entrusted with Operational Resilience responsibilities. Accountable to support the Senior Manager in all aspects of Operational Resilience risk assessment and exposure minimization analyses and the enhancement of the Business Continuity Management (BCM) Framework to ensure Operational Resilience is embedded into BCM practices. The Manager will effectively and proactively contribute to Operational Resilience initiatives through the collection, monitoring, analysis and reporting of Operational Resilience risk related data.
Operational Resilience and Business Continuity Management includes planning, integrating, testing and governance activities to ensure BMO can:
Identify business and system disruption risks before they occur and ensure the bank has considered appropriate mitigation activities in advance;
Manage, recover and restore mission-critical business services and operations following an incident within the agreed risk appetite and impact tolerances;
Prepare for and respond to disruptive events in a manner that demonstrates command and control of incident response and crises, coordination and service continuity. Scenarios could include but not limited to Cyber Security Incidents, Technology/Systems Outage, People or Process Failures.
Enterprise Business Continuity Management (EBCM) ensures that an Operational Resilience and Business Continuity Management (BCM) governance framework, consistent with regulatory requirements across all jurisdictions in which the Bank operates, is developed, maintained and adhered to across the Enterprise, in the process implementing measures to enhance the Operational Resilience and Business Continuity posture of the bank. As a global bank, it is important that BMO is resilient through its preparedness and response to major incidents, outages and disruptions.
Manage and evolve BMO Operational Resilience Program
Contribute to shaping the Operational Resilience Framework and supporting performance measurements to monitor Operational Resilience health from a governance and compliance perspective across the bank.
Obtain a complete view of resilience, risk data sources and key risk indicators, covering a broad range of disciplines. Identify and report resilience KRIs in a manner which enables stakeholders to see resilience risk performance and trends clearly.
Identify different mechanisms and methods for predictively identifying resiliency risk in concert with Enterprise Information & Technology Risk Management (EITRM) specialists.
Assist in the coordination of BMO’s approach to Operational Resilience, with expertise and knowledge across the four pillars of operational resilience, (people, technology, third parties, facilities).
Understand the end-to-end business services that underpin the customer or client. This is a key element of the business analysis required to relate resilience risk and investment decisions to both economic functions and customer impact.
Assist in the development and maintenance of reporting as relates to committee reports; organizational metrics, limits, and trend analysis; and management action plans and progress updates to commitments.
Coordinate the annual and real time maintenance of organization program strategy, execution plan, and procedures, supporting the Operational Resilience leadership team.
Identify Operational Resilience opportunities and gaps, accompanied with remediation recommendations.
Work in partnership with various departments, such as Technology Services, Information Security, Outsourcing & Supplier Management and Operating Groups to identify Operational Resilience opportunities and gaps, accompanied with remediation recommendations.
Participate as a member of the team of BCM-risk management professionals, who work with senior management in all lines of business to coordinate Operational Resilience & Business Continuity governance activities.
Contribute to the development and maintenance of the Operational Resilience & BCM Program and Framework including the development of tools and templates, Standards, and Guidelines.
Contribute to establishing and maintaining Operational Resilience as an effective discipline which supports BMO’s BCM Program and is consistent with Operational Resilience industry standards and best practices and regulatory requirements as they evolve.
Business Continuity Management Program Governance
Support and/or lead processes that align Operational Resilience & BCM to the enterprise Operational Risk Management Framework (ORMF) (as assigned).
Participate as an independent business continuity professional in support of various other Operational Resilience initiatives to achieve the risk management objectives of ERPM and the Bank of Montreal Group of Companies such as Supplier Reviews, RCSA and IAAP processes.
Participate, representing EBCM, in projects across the enterprise.
Participate in external Operational Resilience and Business Continuity Management organizations and keep abreast of industry best practices and trends, in the process provide clarity over customer and regulatory expectations with respect to Operational Resilience.
Demonstrate leadership behaviours that are consistent with Being BMO’s Values and Actions.
Provide access to training and career development opportunities.
Make recommendations regarding hiring, transfers, terminations and compensation.
Effectively deploy physical, financial and human resources.
Establish and maintain managerial practices that build a high-performance work environment within and across teams and inspire Being BMO.
Demonstrate a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate.
Align individual performance goals to team and organizational goals.
Knowledge & Skills
Candidates should have an in-depth understanding of information Technology Services Continuity, Information Security, Business Continuity Management, Crisis Management and governance frameworks, strong knowledge of business continuity best practices and protocols, operational risk management, and in-depth knowledge and expertise of banking operations, including cybersecurity and Information Technology (specifically IT Service Continuity) practices. Specific experience should include:
5 to 7 years breadth of exposure to operations production and technology environment and/or various LOB environments within the financial services industry and/or Business Continuity Management industry.
A working knowledge of the developing and evolving Operational Resilience regulatory environment;
Ability to contribute to establishing and leading a best in class sustainable operational resilience function;
Exposure to the three lines of defense model with an emphasis in the 2nd line of defense Risk Management BCM function;
Working knowledge of Regulatory Guidance (e.g. FFIEC, OSFI, FCA, PRA) for Global Financial Institutions to achieve Operational Resiliency capabilities;
Working knowledge of Outsourcing and Supplier Management industry best practices;
Demonstrate data analytics capabilities and ability to determine highly complex interdependencies in and across critical services from an end-to-end perspective.
Business Continuity Management practices and protocols, including in-depth knowledge of international BCM standards promoted by BCI and DRI.
An understanding of operational risk and resilience, business process improvement methodology and risk related control frameworks and practices (i.e., COCO, COSO, ISO, ITIL, CMM, COBIT, etc.).
All aspects of the Bank’s organizational structure and critical products and services, including the delivery mechanisms and IT associated with each, and the technical and operations infrastructure.
Significant experience and knowledge of IT Service Continuity Management, and Information Security methodology.
Strong organization, decision-making and analytical skills.
Solid understanding of the Operational Risk Management methodology and CSA related requirements.
The incumbent should possess the following skills and experience:
Experience in at least one domain of Information technology: Information Security, Disaster Recovery or Technology Risk Management, Outsourcing & Supplier Risk Management with experience across multiple of these domains preferred.
Exceptional abilities to interface and coordinate work efficiently and effectively with business partners.
Exceptional ability to remain calm under stress.
Excellent team skills, both as a leader and as a team player.
Excellent communication skills, and influencing skills, including ability to articulate complex issues and incorporate feedback.
Highly developed relationship management, influencing and leadership skills.
Expected educational background for this position would include:
Minimum: Post-Secondary Degree.
Expected: Industry certification in one or more of the following: PMI, CCSA, CISM, CRISC, CISSP, ISC, ITIL, MBCI etc. or equivalent experience
We’re here to helpAt BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.To find out more visit us at https://bmocareers.com.BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.
BMO Financial GroupServing customers for 200 years and counting, BMO is a highly diversified financial services provider – the 8th largest bank, by assets, in North America. With total assets of $728 billion as of October 31, 2018, and a team of diverse and highly engaged employees, BMO provides a broad range of personal and commercial banking, wealth management and investment banking products and services to more than 12 million customers and conducts business through three operating groups: Personal and Commercial Banking, BMO Wealth Management and BMO Capital Markets.We serve Canadian clients through BMO Bank of Montreal®, our personal and commercial banking business, BMO Nesbitt Burns®*, one of Canada's leading wealth management firms, and BMO Capital Markets™, our North American investment and corporate banking division.In the United States, clients are served through BMO Harris Bank, a major U.S. Midwest personal and commercial bank, and BMO Private Bank, with wealth management offices across the United States, as well as BMO Capital Markets™, our North American investment and corporate banking division.We help our customers make money make sense by delivering the broadest range of financial services through a single point of contact. Our financial service professionals provide access to any services our customers require across the entire enterprise.