Senior Manager, IT Risk – Proactive Management
Ville : TORONTO, Ontario, Canada
Catégorie : Audit | Compliance | Legal | Risk
Industrie : Financial/Banking
Employeur : RBC
Job Summary
Job Description
What is the opportunity?
- Drive down the risk exposure of WII BT.
- Developing and utilizing effective IT risk measures to provide insights into current risk level and identify ways to improve metrics and overall risk profile.
- Proactively working to improve the Risk profile of key areas by analysing data and risk assessments, working with stakeholders to develop dashboards and reports highlighting emerging risks and trends and engaging stakeholders to recommend solutions.
- To support IT/Cyber Risk Management leadership in delivering various oversight processes including: tracking and reporting on status and quality of key Cyber/Technology Risk programs.
What will you do?
- Deliver a program of work to address known and emerging IT risks across WII BT.
- Work closely with application teams, IT Risk areas and other groups to provide proactive insights for T&O Operational and IT risk programs such as Risk and Control Self-Assessments, Operational Risk Event Reviews, IT Risk Assessments, Integrated Risk Profiles to validate the business is operating within Risk Appetite.
- Champion proactive IT risk management rather than risk avoidance, by seeking solutions.
- Leverage data driven insight and provided opinions and challenge on key risk indicators.
- Support the completion of thematic reviews, scenario analysis, external event analysis, new change initiative assessments and development of risk profiles that can be leveraged to report to senior management, board, and regulators.
- Maintain knowledge of emerging technologies, threats/vulnerabilities and risk management practices and its implications to the business platform.
- Develop and maintain key internal and external relationships to provide advice and oversight on standard compliance, support operational risk program adherence and effective incident reporting.
- Provide oversight and challenge on the management of IT Risks
- Support cyber/technology related regulatory examinations / requests / assessments / reporting.
- Recommend changes to Cyber & IT Risk policies/standards to maintain currency in ensuring relevance to emerging technologies and delivery models.
- Develop and maintain key Technology relationships to provide expertise and oversight on new initiatives.
- Keep abreast of emerging technology threats.
Must Have
- Ability to manage through influence at all levels, especially at senior levels.
- Strategic Thinking: Demonstrates exceptional judgment and integrity with the ability to think strategically and give practical advice, considering the regulatory requirements and business objectives.
- Strong problem-solving skills to address complex issues and find effective solutions.
- Strong communication and relationship management skills with the ability to present information effectively, able to inspire trust and quickly build credibility with diverse stakeholders.
- Ability to independently work and comfortable multi-tasking in a fast-paced environment.
- A successful track record in setting priorities; keen analytic, organization, and problem- solving skills which support and enable sound decision making.
- Critical thinking, analytical and research skills with the ability to rapidly gain understanding of new technologies.
- 5+ years’ of risk management experience in cyber and technology security.
- Strong knowledge of cyber security standards, IT risks, threats, prevention measures, and best practices.
- Strong knowledge of security operations, identity and access management , information protection concepts and techniques, cloud security, network security.
- Strong knowledge in IT and operational risk management processes, methods and tools.
- Experience in developing and supporting IT applications and knowledgeable in areas such as disaster recovery, Penetration testing, IT Asset Management, incident and problem management.
- Good Technical knowledge and experience covering the operating systems (e.g. Unix, Windows, zOS,) and database systems (e.g. Oracle, SQL Server, Sybase, DB2) and middleware (e.g. Tomcat, JBOSS, IIS).
Nice to Have
- Experience in Business consulting
- Experience working in business technology projects and/or business analysis, with knowledge and understanding of agile methodologies for solution design and delivery, change management & audit requirements
- 5+ years of people management experience
- Experience building out data analytics for IT and Cyber
- Working knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as NIST, COBIT, SOC2 reporting framework
- Solid understanding of current / emerging technology
- Working knowledge of modern technologies (e.g. Cloud, APIs, DevOps)
- Strong knowledge of technology standards, and best practices.
- Project management
- Knowledge of RBC’s enterprise policies, standards, and regulatory requirements.
What's in it for you?
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
- Leaders who support your development through coaching and managing opportunities.
- Ability to make a difference and lasting impact.
- Work in a dynamic, collaborative, progressive, and high-performing team.
- Flexible work/life balance options.
- Opportunities to do challenging work.
- Opportunities to take on progressively greater accountabilities.
- Opportunities to build close relationships with clients.
#LI-Hybrid #LI-POST #TECHPJ
Job Skills
Application Management, Cyber Security Management, Information Security Auditing, Information Security Operation Center (ISOC), Information Technology (IT) Risk Management, Information Technology Project Management, IT Network Security, Operational Delivery, Operational Risks, Operation Risk Management, Proactive Management, Problem Management, Process Management, Risk Management, Strategic Objectives, Technology Risk, Threat ManagementAdditional Job Details
Address:
City:
Country:
Work hours/week:
Employment Type:
Platform:
Job Type:
Pay Type:
Posted Date:
Application Deadline:
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.