Sr. Manager, Risk & Control Assurance (GCS)
City : TORONTO, Ontario, Canada
Category : Technology | Analytics | Research
Industry : Financial/Banking
Employer : RBC
Come Work with Us!
At RBC, our culture is deeply supportive and rich in opportunity and reward. You will help our clients thrive and our communities prosper, empowered by a spirit of shared purpose.
Whether you’re helping clients find new opportunities, developing new technology, or providing expert advice to internal partners, you will be doing work that matters in the world, in an environment built on teamwork, service, responsibility, diversity, and integrity.
WHAT IS THE OPPORTUNITY?
The Risk team is growing and looking for a seasoned Cyber Risk and Compliance professional to join Cyber Technology Office (CTO) to implement exciting control assurance initiatives.
This role is responsible for contributing to strategic plans and leading automation-driven control assurance. The role will collaborate, develop, lead, communicate and execute activities to ensure GCS objectives are accomplished.
WHAT WILL YOU DO?
Implement control design and operational testing and assurance framework, including but not limited to Cyber security infrastructure domains (Network Security, Cloud Security, Endpoint Security, Vulnerability Scanning, Security DevOps, Security integration)
Advocate for information risk culture, increasing awareness on identifying potential control/operational gaps, process improvement opportunities, potential risks, and adequately managing them.
Ensure current Security Controls assurance tools provide complete coverage over all applicable technologies/assets.
Assist the teams through Risk documentation for remediation and acceptance following Enterprise best practices while maintaining an overall compliance estate as per the defined guidelines.
Partner with stakeholders to implement control testing/monitoring automation where possible, driving efficiencies for coverage/assurance.
Help develop and build a centralized control assurance monitoring dashboard for all security controls (i.e. KRI reporting)
Plan and develop control testing program and appropriate procedures for other control effectiveness in accordance with internal policies, IIA Standards, and relevant laws and regulations
Act as liaison between various stakeholders and Audit/Regulators to meet the requirements during different engagements.
WHAT DO YOU NEED TO SUCCEED?
5+ years of information security and information risk experience.
Strong ability to perform IT risk assessments following a defined Risk Management framework, standards, policies, and industry best practices.
Creative problem-solving and analytical skills with the proven ability to exercise flexibility and judgment while partnering with stakeholders at different levels of the organization.
Ability to challenge current IT control landscape, looking to increase efficiencies and drive changes on existing processes.
Experience working with regulators and internal/external auditors (Statutory Audit, SOX, SOC 1 and 2 engagements) effectively and helping stakeholders with remediation plans
Knowledge of RBC’s Policies and Standards and its alignment to IT controls and active participation during Regulatory and Audit engagements
Strong communication skills and ability to explain highly technical information to drive/influence decisions across stakeholders.
Strategic thinker with excellent interpersonal skills to work across technical and executive stakeholders
CISSP, CISA, CRISC, CCSK, CISM are considered assets.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
Leaders who support your development through coaching and managing opportunities
Ability to make a difference and lasting impact
Work in a dynamic, collaborative, progressive, and high-performing team
A world-class training program in financial services
Flexible work/life balance options
Opportunities to do challenging work
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at rbc.com/careers.