Information Security Compliance Manager

Basic Information

Ref number

Req_00019233

Last day to apply

06-May-2019

Primary Location

McKinley West

Additional Locations

Araneta, Cascadas, Market! Market!, McKinley, Merliot, Ortigas Center, Pradera West, TELUS Tower, Torre Pradera, Xela

Description and Requirements

Position Summary
  • Manages (deploy, maintain, improve) the Information Security Compliance & Risk Management Program to TELUS International's various geographies, campaigns/programs/lines of business in support its core business of Business Process Outsourcing (BPO), Contact Center Outsourcing (CCO), and Information Technology Outsourcing (ITO). 
  • Responsible for ensuring security systems are working properly, and security controls are in place. 
  • Responsible for evaluating and recommending security systems and controls. Manages the day-to-day operations and performance of the IT Security group.


Functional Responsibilities:

Manage the Information Security Compliance & Risk Program: 
  • Deploy, maintain, and improve the Information Security Compliance & Risk Processes (education, risk assessment exercise)
  • Partners and/or advice Management and/or the Customer on the assessment and definition of the risk tolerance levels;
  • Partners and/or advice Management and/or the Customer on the acceptance of specific information security risk event based upon impact analysis;
  • Partners with Management and/or the Customer to minimize and control identified information security risks through monitoring of implementation of controls
  • Supports the business ensuring compliance to agreements and standards required by the industry; and, by identifying, assessing and overseeing the mitigation of Information Security Risks;
  • Develop, implement; and improve an Information Security Compliance & Risk Assessment scorecard
  • Reports on matters that warrant the attention of Management. The reports must include, as a minimum, exceeded risk tolerance levels and unacceptable business practices. 
Manage the Information Security Risk Assessment Process:
  • Familiarize and integrate standards and client requirements
  • Develop, implement, review, and assess an inter-company Risk Assessment Process
  • Collect and collate Risk Assessment Results
  • Conduct the Risk Assessment reviews in a structured and periodic cycle
  • Integration / Onboarding of Existing Programs into the Unified Compliance Framework and Adherence.

Required Technical Skills:

  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified in the Governance of Enterprise IT (CGEIT)

Required Language(s)
English

Explore the possibilities at TELUS International. We love to see you grow and develop both personally and professionally. Find jobs that match your skills to build a career that excites you. Join our Talent Community to receive Newsletters and jobs alerts based on your profile and interests. Come learn how!