Managing Director - Insider Threat Program

Posted Yesterday
Be an Early Applicant
2 Locations
In-Office
225K-300K Annually
Expert/Leader
Financial Services
The Role
Lead and mature the enterprise insider threat program: define strategy, governance, and operating model; integrate detection analytics and intelligence; oversee investigations, response, and remediation; partner across cyber, fraud, investigations, HR, legal, and risk; manage global teams and regulatory readiness while promoting risk-aware culture.
Summary Generated by Built In

Application Deadline:

08/28/2026

Address:

320 S Canal Street

Job Family Group:

Technology

Leads the Bank’s enterprise insider threat program, defining strategy, governance, and operating model to proactively identify, assess, mitigate, and prevent insider-driven risk. Establishes a risk-based approach to insider threat, strengthening the Bank’s ability to anticipate emerging threats, close control gaps, and enhance operational resilience.  Maintains a forward-looking view of emerging insider risks, including employee-enabled fraud, credential misuse, data exfiltration, collusion, third-party insider risk, and cyber-enabled activity. The insider threat program is a centralized program requiring strict governance and confidentiality, with only involving stakeholders on a need-to-know basis in a controlled escalation environment.

Strategy & Operating Model

  • Defines and leads the enterprise insider threat strategy and long-term roadmap.

  • Builds a consistent global framework aligned to regulatory, legal, privacy and labor requirements; regulatory first design.

  • Establishes governance structures, escalation protocols, and decision-making forums.

  • Matures capabilities from reactive investigations to proactive, intelligence-led prevention.

Cross-Functional Leadership & Integration.

  • Partners across Cybersecurity, Fraud, Financial Crimes, Corporate Security, Operations. Legal, Global Investigations, Risk, Privacy, and Human Resources.

  • Integrates insider threat capabilities across systems, platforms, and control environments.

  • Establishes clear routines for collaboration, escalation, and coordinated response.

  • Promotes a culture of proactive risk identification and responsible escalation.

Data, Analytics & Intelligence

  • Develops and optimizes insider threat analytics (i.e., user and entity behavior analytics), tools, and capabilities to support scalable, intelligence-driven risk detection.

  • Builds a consolidated insider threat intelligence capability integrating cyber, fraud, financial crime, HR, and investigative signals (data fusion).

  • Delivers executive-level reporting and insights on insider threat posture, emerging risks, significant cases, control effectiveness, and remediation progress.

  • Leverages data, analytics, and risk indicators to inform strategy, prioritization, and investment decisions.

Detection, Investigation & Response

  • Owns the end-to-end insider threat control framework, including prevention rules, risk-based detection models, behavioral analytics, investigative protocols, case management standards, and escalation processes.

  • Embeds privacy-by-design and ethical monitoring practices, ensuring transparency, proportionality, and protection of employee dignity.

  • Develops and enhances intelligence-led detection capabilities and response frameworks to enable proactive risk identification and mitigation.

  • Partners with Global Investigations to ensure that consistent triage, investigation, escalation, and resolution related to Insider threat occurs across the enterprise.

  • Defines standards for response actions ensuring timeliness, proportionality, governance, and defensibility.

  • Participates in complex, high-risk investigations involving employees, contractors, third parties, cyber events, fraud activity, and control breaches, as required partnering with the Global Investigations team.

Governance, Risk & Regulatory Oversight

  • Identifies systemic control gaps and drives remediation across identity and access management, privileged access, data protection, fraud controls, vendor access, and critical operations.

  • Oversees adherence to the Bank’s Risk Appetite Framework, ensuring insider threat risks are managed within defined tolerances.

  • Defines and manages key risk indicators (KRIs), key performance indicators (KPIs), and insider treat risk appetite.

  • Supports regulatory exams, audits, and governance reviews, ensuring readiness and effective response across cyber risk, fraud, conduct risk, and operational resilience

Leadership & Culture

  • Within the mandate of this role, promotes and supports the Bank’s risk culture including ensuring employees understand their accountabilities for risk-taking activities, promoting an environment of open communication and effective challenge, and establishing the “tone from the top” through leading by example.

  • Complies with the Bank’s Risk Appetite framework and ensures risk-taking activities remain within agreed limits and comply with all regulatory requirements.

  • Role models driving simplicity and productivity enhancements for optimization across groups, driving continuous improvement on key measures.

  • Activates our winning culture, aligned with Purpose. Ignites engagement by aligning our culture to our strategy and fueling exceptional execution.

  • Fosters an inclusive environment for all employees by eliminating barriers to inclusion.

  • Develops leaders, plans for succession, and fosters a high-performance culture.

  • Drives top talent acquisition and retention, developing organizational capabilities to drive competitive advantage.

  • Leads and mentors a team with diverse risk and business experience, skills, and orientation.

  • Leads, promotes, and reinforces the Bank’s Ambition; personally, role models One Bank leadership; drives sustainable improvements in customer loyalty and business growth; adheres and supports enterprise customer experience and brand standards.

Qualifications:

  • 10+ years in a global systemically important bank (GSIB), large financial institution, intelligence agency, law enforcement, military, or critical infrastructure environment.

  • Experience in leading enterprise-side or global risk or security programs.

  • Proven track record building or transforming insider threat, cyber, fraud, or security capabilities.

  • Deep experience managing complex investigations involving employees, contractors, third parties, cyber incidents, fraud activity, or data misuse.

  • Strong knowledge in one or more areas: insider threat, cybersecurity, fraud, financial crime, investigations, operational risk, or enterprise security.

  • Understanding of banking operations, conduct risk, and financial crime typologies.

  • Knowledge of regulatory expectations related to cyber, fraud, and operational resilience.

  • Working knowledge of analytics, detection models, and insider threat tools.

  • Ability to lead global distributed teams and build multidisciplinary capabilities.

  • Strong leadership presence with the ability to influence senior stakeholders.

  • High judgment and discretion in handling sensitive matters.

  • Ability to translate complete risk signals into clear, actionable insights.

  • Preferred professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Fraud Examiner (CFE), Certified Anti-Money Laundering Specialist (CAMS), Certified Protection Professional (CPP), Global Information Assurance Certification (GIAC), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or relevant investigations/intelligence credentials.

  • Background in law enforcement, intelligence, or national security organizations (e.g., federal agencies or equivalent). Established external network across industry, law enforcement, and intelligence communities.

Please note: The position is targeted at a base range between $225K USD and $300K USD

Salary:

Pay Type:

Salaried

The above represents BMO Financial Group’s pay range and type.

Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.

BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards

About Us

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.

As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact.  We strive to help you make an impact from day one – for yourself and our customers.  We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.

To find out more visit us at http://jobs.bmo.com/us/en

BMO is proud to be an equal employment opportunity employer. We evaluate applicants without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or any other legally protected characteristics. We also consider applicants with criminal histories, consistent with applicable federal, state and local law.

BMO is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to [email protected] and let us know the nature of your request and your contact information.

Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.

Skills Required

  • 10+ years in a GSIB, large financial institution, intelligence agency, law enforcement, military, or critical infrastructure environment
  • Experience leading enterprise-side or global risk or security programs
  • Proven track record building or transforming insider threat, cyber, fraud, or security capabilities
  • Deep experience managing complex investigations involving employees, contractors, third parties, cyber incidents, fraud activity, or data misuse
  • Strong knowledge in one or more areas: insider threat, cybersecurity, fraud, financial crime, investigations, operational risk, or enterprise security
  • Understanding of banking operations, conduct risk, and financial crime typologies
  • Knowledge of regulatory expectations related to cyber, fraud, and operational resilience
  • Working knowledge of analytics, detection models, and insider threat tools
  • Ability to lead global distributed teams and build multidisciplinary capabilities
  • Strong leadership presence with ability to influence senior stakeholders
  • High judgment and discretion in handling sensitive matters
  • Preferred certifications such as CISSP, CISM, CFE, CAMS, CPP, GIAC, CISA, CRISC, or relevant investigations/intelligence credentials
  • Background in law enforcement, intelligence, or national security organizations and established external network across industry, law enforcement, and intelligence communities

BMO Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about BMO and has not been reviewed or approved by BMO.

  • Parental & Family Support Paid parental leave up to 16 weeks at full pay for all new parents, plus up to $20,000 for adoption, surrogacy, and fertility, and 10 days of paid backup childcare indicate robust family support. These elements stand out within BMO’s U.S. package.
  • Retirement Support A 401(k) design combining a core employer contribution with dollar-for-dollar matching up to a set portion of pay, plus immediate vesting on match and employee contributions, signals strong retirement funding. The core contribution’s three-year vesting is clearly defined.
  • Leave & Time Off Breadth Vacation accrual scales with grade and service, alongside 9–10 paid holidays and additional paid time off buckets (bereavement, school activities, civic duties, blood donation, volunteering). This breadth offers multiple avenues for time away beyond standard vacation.

BMO Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Toronto, Ontario
51,885 Employees

What We Do

At BMO, banking is our personal commitment to helping people at every stage of their financial lives. The truth is, people’s needs change: so we change too. But we never change who we are. Which means we’ll never waiver from providing our customers the best possible banking experience in the industry. Our incredible team of over 46,000 people is just the tip of the iceberg. You should get to know us. We’re here to help.

Similar Jobs

AllCampus Logo AllCampus

Marketing Manager

Agency • Edtech • Marketing Tech
In-Office or Remote
Chicago, IL, USA
145 Employees
70K-85K Annually

Circle Logo Circle

Lead Product Designer

Blockchain • Fintech • Payments • Financial Services • Cryptocurrency • Web3
In-Office or Remote
25 Locations
1050 Employees
173K-225K Annually

Wipfli Logo Wipfli

Tax Manager

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Remote or Hybrid
Chicago, IL, USA
3000 Employees
113K-170K Annually

Wipfli Logo Wipfli

Tax Manager

Cloud • Fintech • Software • Business Intelligence • Consulting • Financial Services
Remote or Hybrid
United States
3000 Employees
106K-160K Annually

Similar Companies Hiring

Granted Thumbnail
Mobile • Insurance • Healthtech • Financial Services • Artificial Intelligence
New York, New York
23 Employees
Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account