Specialist, Business Resiliency and Key Management

Job Summary

Manage, maintain and enhance the overall Business Resiliency (BR) for G+D Canada, inclusive of the Technology, Operations, Security and Business teams, such that it allows business operations to rapidly adapt and respond to internal or external dynamic changes – disruptions or threats – and continue operations with limited impact to the business. Provide leadership in identifying and managing operational risk, gap assessment and continuous improvement of processes. Serve additionally as backup cryptographic Key Manager for G+D Canada.

Business Resiliency Responsibilities

Internal Expectations:

• Manage and lead the day-to-day operations and functions of Disaster Recovery and Business Continuity for G+D Canada
• Develop, update and enhance DR plans and documentation
• Continuously assess gaps in DR plans and provide recommendations and options to address
• Lead and coordinate regular DR Steering Committee meetings to share updates, issues, plans and approvals
• Identify Business, Operational and IT risk. Develop and implement recovery procedures for review and approval with DR Steering Committee members
• Partner with other functional departments to ensure business continuity plans are inclusive of an end to end process including Data Sensitivity, Library Management, Back-up and Recovery plans and Procedures.
• Provide consultation on Business and Regulatory Requirements to ensure adherence with DR recovery procedures, contracts and SLAs
• Maintain communication plans to effectively facilitate team meetings to communicate progress, status, risks and create a sense of urgency to resolve any issues
• Administer the G+D Alert System (G+D Canada’s automated emergency communication platform)
• Coordinate Table Top and Emergency Communication Exercises
  
  
  

Client Delivery Expectations:

• Participate in regulatory audits and provide input into Client Questionnaires
• Manage the semi-annual coordination and verification of Client DR testing with external and internal customers
• Align with Sales and Clients the appropriate SLA, RTO and RPO based on established DR plans
• Represent G+D in a professional manner for client engagements on DR projects and works closely with the Account Executives on client management
  
  
  

Key Manager Responsibilities

Internal Expectations:

• In alignment with the Key Manager, support the physical equipment associated with Key Management activity (e.g. physical keys, authentication codes, smart cards, key component safes, Hardware Security Module (HSM) Cards, HSM PCs/Servers, etc.)
• Support the transfer of key-management roles between individuals (Key Management Personnel Succession)
• In collaboration with the HR department, vet all key custodians to ensure their suitability for the role
• Responsible for ensuring that all key custodians have been trained with regard to their responsibilities, and this forms part of their key management system training
• Responsible for ensuring that each custodian signs a statement acknowledging that they understand their responsibilities.
• Review the suitability of personnel on an annual basis
• Perform quarterly audits of key storage safes and providing direction to Dorval staff for the quarterly audits of the Dorval safe)
• Manage Key Management Security Hardware, including the Installation/ Configuration/ Commission/ Removal/ Decommission of HSMs under dual control
• Maintain Audit trails for Key Management activities
• Maintain and Update Key Management Documentation & Supplies – Key Management Manual, Forms, Lists, Tamper Proof Envelopes
• Act as Deputy for Key Manager
• Customization Key Manager will be Deputy for Key Manager
  
  
  

Client Delivery Expectations:

• Gather and submit Key Management evidence for Audits
• Participate in Audits on behalf of Key Management (Payment System, Client, Internal, etc.)
• Post-Audit Remediation Planning & Execution for any Key Management Findings & Recommendations
• Participate in the regional and global quality manager’s meetings when required
  
  
  

Qualifications, Experience And Educational Requirements

Work Experience:

• Minimum 5 years’ experience managing Disaster Recovery, Business Continuity and Key Management with proven results
• High level of computer competency in Microsoft Office Products (MS Word, Excel, PowerPoint, Project, Visio) and good knowledge of SAP Systems.
• Experience with Cryptography, EMV (Europay MasterCard Visa) chip and payment card industry is preferred
  
  
  

Skills and Competencies:

• Analytical, detail-oriented with excellent planning and problem solving skills
• Excellent interpersonal relations and demonstrated ability to effectively work with and lead others in teams
• High level of urgency balanced against measured thinking and attention to detail
• Ability to work independently and take responsibility for actions
• Ability to conceptualize, analyze and implement efficient workflows
• Ability to work successfully with cross-functional teams
• Superior verbal and written communications skills including presentation at every level of the organization
• Effective and persuasive communication skills
• Technical knowledge of statement printing and secured card manufacturing process
• Excellent time management and multi-tasking skills
• Disciplined approach to reporting, metrics and performance management
  
  
  

Education:

• A University or college degree in a relevant discipline. Preference will be given to candidates with a Computer Science, Engineering or Business Administration degree
• Project Management Professional (PMP) certification is an asset
  
  
  

Additional Information

• This job description is not intended to be all-inclusive. The candidate hired will also perform other reasonable related business duties assigned by the supervisor. The company reserves the right to revise or change job duties as needed. This job description does not constitute a written or implied contract of employment. Giesecke+Devrient ePayments Canada, Inc. is an equal opportunity employer and values diversity in its workforce, encouraging applications from all qualified individuals. Upon request by the applicant, accommodation will be provided in all parts of the hiring process. By applying to this position, you are confirming you possess either a Canadian citizenship, permanent resident status or a valid work permit. Please note: Reference Checks and Credit, Criminal Background Checks will be administered on suitably qualified candidates.