Contracts Manager III​/Contract Specialist – Manager-- AMADC

Contracts Manager III / Contract Specialist – Manager in Toronto, ON How will performance be measured:

• Primarily through contract reviews, the complexity of contracts handled, and the ability to manage and overcome objections.

• Opportunity to work in a highly regulated environment with continuous new learning experiences.

• Opportunity to work with a large and diverse supplier portfolio.
• Exposure to complex IT contracts and enterprise level risk management.
• Ability to influence contract standards and strengthen vendor governance practices.
• Work closely with cross functional teams, including Legal, Compliance, Procurement, and Risk.

The Contract Specialist will be responsible for reviewing Vendor contracts to ensure it has the necessary IT security controls to keep data and/other information safe. The individual will be responsible for reviewing and recommending the necessary clauses to business Stakeholders. A successful candidate should have experience with interpreting contract language, and recommend appropriate contract controls based on products and services the vendor provides.

The candidate must possess superior relationship management skills and an ability to thrive in a fast-paced environment and exercise sound, independent judgment.

Contract Specialist will assist the VISM Team in completing the following activities:

• Reviewing IT contract clauses/language to determine compliance to ML contract requirements.
• Support internal stakeholders and Legal in supplying exceptional client service and outlining risk associated with the supplier.
• Initiate reviews of existing vendor' contracts with our various internal business units as needed.
• Responding to contract inquiries.
• Support Procurement with contract clauses and/or exceptions.
• Provide guidance to Vendor information Risk Management team (VISM) and Vendor Governance Management (VGM).
• Taking the initiative to keep up to date on new laws and regulatory guidance/requirements as these can impact contractual language.
• Ability to breakdown complex concepts into easily understood language and effectively articulate those concepts to vendors and internal stakeholders.
• Work independently and diligently to meet tight negotiating timelines.
• Collaborate with Legal, Compliance, Risk Areas, business stakeholders and other groups as necessary to meet objectives.

• IT contract related experience and/or lawyer.
• Minimum 5+ years' experience reviewing third party contracts or other Third-Party Risk Management experience – specifically in IT/cyber security requirements.
• Basic cybersecurity knowledge: exposure to information security field and understands the flow of data.
• Excellent computer skills, including MS Office – Word, Excel, power BI and other risk tools – Archer, Process Unity and Ivalua
• 5+ years demonstrated success in a progressive number of Risk Roles or Procurement

• Knowledge of third-party risk management concepts or solid understanding of IT (Information Technology) general control and information security principles
• Understanding of industry-recognized compliance/risk frameworks such as NIST (National Institute of Standards & Technology) 800-53, NIST Cybersecurity Framework (CSF) and ISO 27001
• Understanding of the regulatory requirements for third party contracts within OSFI B-10/13 and OCC.
• Familiarity with vendor information security questionnaires assessments.

• Must have critical thinking, be able to solve problems and accelerate.
• Excellent communication and negotiation skills (oral and written)
• Excellent organization skills and be able to prioritize based on level of urgency/impact to ML.
• Ability to work both independently and as a team member.
• Ability to effectively manage multiple tasks simultaneously.
• Agile, has ability to keep up in a fast-paced environment with conflicting and changing priorities and deadlines.
• Excellent presentation and facilitation skills. Be able to effectively communicate with all levels including senior management.
• Get-it-done attitude with an ability to effectively follow-through and anticipate next steps with all ongoing initiatives.
• Ability to foster and build relationships, engage and influence others, work with diverse subject matter experts.
• Flexible and adaptable when dealing with change, with a strong awareness and understanding of cultural diversity.
• Proficient in MS Office Suite of products including MS Word and Power Point
• Proven ability to multi-task and manage concurrent projects.
• Understanding of complex / matrix organization.
• Expertise in working within a global organization.

• Bachelor’s degree - business, Economics, or Finance
• Law Degree is a nice to have
• Experience in IT Risk, Third Party Risk Management and/or Procurement
• Industry recognized IT, Third Party Risk or Procurement Certification(s) a plus