Senior Manager, Insider Threat Monitoring

BMO Financial Group - Toronto, ON (30+ days ago)

Apply Now

4100 Gordon Baker Road

Job Family Group:

The Financial Crimes Unit (FCU) brings together our Cyber security, Fraud and Physical Security capabilities to address the ever-growing and increasingly complex global security environment. It is a highly collaborative effort that greatly enhances BMO’s ability to rapidly prevent, detect, respond to, and recover from all security threats. This position offers a unique experience to learn from experienced leaders in the industry, join a team building the 21st century model for security and helping grow the good by protecting our customers and communities.

The Senior Manager, Insider Threat monitoring role is ideal for someone that is able to provide strong technical leadership to the operations team making risk based decisions in alignment with the organizations mission by effective alignment of resource capabilities with the overall information security risks exposed in Insider Threat. This individual will reduce internal risks and looking for opportunities to increase visibility across the business, effectively partnering with all Enterprise stakeholders.

The Technical Investigations team is responsible for protecting Banks sensitive digital assets from any unauthorized use from insiders (BMO employees or contractors) regardless of intent using organizational capabilities such as Data Loss Prevention, User and Behavioral analysis, Data Analysis, Digital Forensics, and to provide overall program oversight on Tech Investigations as it relates to Insider Threat Management.

Monitors, restores service, changes, supports and handles day-to-day activities 7/24/365 required to run the mission critical Information Security systems for BMO. Provides responsive customer service in support of cyber security.
Provides strategic input into business decisions as a trusted advisor.
Acts as a subject matter expert on relevant regulations and policies.
Helps determine business priorities and best sequence for execution of business/group strategy.
Acts as the prime subject matter expert for internal/external stakeholders.
Prepares and delivers presentations for senior management.
Leads the execution of operational programs; assesses and adapts as needed to ensure quality of execution.
Organizes efforts to ensure processes and procedures are well documented and promotes their implementation.
Leads the preparation of end user reference materials.
Gathers requirements and documents these requirements for use in various audits, reports, & projects.
Acts in a larger project planning capacity, audits the quality of reports submitted by analysts and provides related coaching and support.
Performs governance and oversight in support of the team, by producing and reviewing reports to ensure completeness and compliance to applicable standards.
Regularly evaluates and reports on the efficiency of business processes and procedures according to organizational objectives and applies improvements.
Leads customer support processes and organizes them to enhance customer satisfaction.
Collaborates in the management of financial information and adjustment of operational budgets to promote profitability.
Evaluates overall performance by gathering, analyzing and interpreting data and metrics.
Monitors & maintains security tools and applications.
Creates activity reports for security tools and applications.
Collaborates with internal and external stakeholders in order to deliver on business objectives and to support operational activities for Information Security.
Develops an understanding of organizational interactions and complexity to engage with the appropriate matrix areas.
Actions service requests, transactions, queries etc. within relevant service level agreements.
Coordinates and facilitates incident management activities. Includes deploying changes to the production environment and engaging 2rd party providers contracted to the Bank during an incident.
Recommends approaches or changes to streamline and integrates security processes and systems in the organization, while considering Information Security methodology to improve overall efficiency.
Provides technical Information Security subject matter expertise.
Identifies opportunities to strengthen the capability of the Information Security organization at BMO, such as: sharing expertise to promote technical development and mentoring employees.
Stays abreast of industry technical and business trends through participation in professional associations, practice communities and individual learning.
Ensures consistent, high quality practices/work and the achievement of business results in alignment with business/group strategies and with productivity goals.
Operates at a group/enterprise-wide level and serves as a specialist resource to senior leaders and stakeholders.
Applies expertise and thinks creatively to address unique or ambiguous situations and to find solutions to problems that can be complex and non-routine.
Implements changes in response to shifting trends.
Broader work or responsibilities may be assigned as needed.

Minimum of 4-5 years of DLP monitoring on email, web, print, (using Symantec, McAfee or other platforms) and UEBA (Splunk and others) for behavioral monitoring
Candidates with Security Operations Management experience with skills in DLP monitoring and UEBA (as noted above) will be considered
Proven Insider Threat Monitoring experience preferred
Typically 7+ years of relevant experience and a post-secondary degree in Business or Computer Science, or a related field of study or an equivalent combination of formal training, or industry / technical certifications or work experience.
Multiple information security certifications from a well-recognized institution (e.g. (ISC)2, ISACA, SANS).
Knowledge of information security processes, procedures and controls - In-depth/Expert.
Understanding and problem solving ability of information security issues across the bank and appreciation of the scope of complexity that exists in the operating environment and the ways which security platforms impact that environment - In-depth/Expert.
Understanding of industry standards and frameworks e.g. NIST Cyber Security Framework (CSF), ISO 27001 and 27002 - In-depth/Expert.
Experience in Information Security or with multiple areas of systems and computer operations (e.g. Identity & Access Management, IT operations, Certification & Key Management, Security Platform Administration, Security Incident Response)
Partnering, communication, and negotiation skills to communicate effectively within the team and with technology and business partners - In-depth/Expert.
Understands the scope of complexity that exists in the operating environment and the ways which security platforms impact that environment.
Knowledge of information security support and operations concepts, practices, concepts, and technology obtained through formal training and work experience.
Knowledge of information security processes, procedures and controls - In-depth/Expert.
Knowledge of the technical and business environment and the corporate processes and procedures - In-depth/Expert.
Understanding of information security risk and regulatory requirements - In-depth/Expert.
Seasoned professional with a combination of education, experience and industry knowledge.
Verbal & written communication skills - In-depth / Expert.
Analytical and problem solving skills - In-depth / Expert.
Influence skills - In-depth / Expert.
Collaboration & team skills; with a focus on cross-group collaboration - In-depth / Expert.
Able to manage ambiguity.
Data driven decision making - In-depth / Expert.


We’re here to help

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.

As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.

To find out more visit us at .

BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.