Senior CIEM Specialist - Information Security

Application Deadline:

Address:

Job Family Group:

This is a Hybrid role, working 1-2 days a week in the office. CIEM experience is a MUST, as well as IAM acumen and leadership.

Provides leadership within IAM Security Governance and Security best practice in support of businesses/groups and BMO overall. Builds relationships and liaises with stakeholders to understand problems and opportunities and recommends solutions leveraging Cloud Infrastructure Enablement Management (CIEM) tools for optimal management of identities and privileges in cloud environments. Ensures that requirements map to a real business need, are approved by all relevant stakeholders, and meet essential quality standards. Participates or conducts user acceptance testing to ensure that changes made are in alignment with business requirements. Provides great customer service in support of the information security processes, applications and infrastructure.

• Provides strategic input into Security best practices as a trusted advisor and a subject matter expert on relevant regulations and policies
• Assesses BMO cloud environments & applications for compliance with IAM standards. 
• Identifies gaps and recommend remediation strategies based on security best practices
• Configures CIEM tool to monitor and report on IAM standards and controls
• Collaborates with stakeholders for remediation and continuous improvements
• Develops cloud governance processes and recommends IAM controls & design patterns based on Security practices
• Presents and communicates at all levels within IT and across business units.
• Prepares and delivers presentations for senior leaders.
• Gathers requirements and documents these requirements for use in various audits, reports, & projects.
• Identifies opportunities to strengthen the capability of the information security organization at BMO, such as: sharing expertise to promote technical development, mentoring employees, building communities of practice and networks across information security and technology.
• Works with stakeholders for remediation and continuous improvements
• Performs documentation writing and maintenance of new and existing processes, procedures and requirements.
• Recommends remediation strategies on the control gaps/ findings and approaches to streamline and integrate information security processes in the organization to improve overall efficiency.
• Remains alert to new information security technologies and threats that present risk to the enterprise and determines the best approach to mitigate these risks.
• Stays abreast of industry trends/risks related to information security, technology and business trends / risks through participation in professional associations, practice communities & individual learning.
• Ensures consistent, high quality security practices/work and the achievement of business results in alignment with business/group strategies and with productivity goals.
• Operates at a …