Senior Manager, IT Risk (GCS)

VANCOUVER MAIN BRANCH (B), 1055 GEORGIA ST W:VANCOUVER

Apply now Apply later

Job Summary

Job Description

WHAT IS THE OPPORTUNITY?

RBC Global IT Risk (GITR) team enables the protection of RBC's brand, systems, and operations by equipping business and technology partners with meaningful insights, advice, and information on RBC IT & cyber risks. The Senior Manager Cyber Security and IT Risk Management is a key strategic and integral role for the overall success of IT Control Management within IT Risk Management function. This dynamic position provides opportunities for working across the organization to deliver complex enterprise-wide initiatives as part of RBC’s ongoing plan to improve IT Risk Management and governance. In this role you will be responsible for strategically planning and managing successful implementation of the above-mentioned. The role will coordinate, develop, lead, communicate, and execute activities to ensure objectives are accomplished on time.

WHAT WILL YOU DO?

Leading teams to perform control testing that evaluate the design and operating effectiveness of IT key controls. This is a hands-on role where you are required to lead, guide, and coach your team on various aspects of control testing, IT risk management, and risk reporting.

  • Take ownership and be accountable for your team’s deliverables to meet the milestones and timelines. Identify and escalate potential issues and risks as applicable. Plan and assign work to your team members. Prepare and present your team’s progress and status reports. Plan resource capacity and prepare work pipeline.

  • Managing multiple priorities in a fast-paced environment. Identify, de-escalate, and manage actual or perceived conflict, if any, among your team or with the stakeholders. Assess complex scenarios and use your subject matter expertise and professional judgement to make decisions with proper rationale and documentation. Support your team member during complex or tough discussions with stakeholders to achieve the desired outcome.

  • Executing control testing to evaluate the design and operating effectiveness of IT controls. Documenting test work adhering to the quality standards, procedure, and industry best practices. Analyzing, aggregating, and articulating the results/issues/recommendations related to control testing activities.

  • Participate in all phases of the internal control monitoring process including planning, testing, evaluating risk, identifying mitigating controls, developing conclusions, compiling reports, and maintaining work papers.

  • Coordinate with stakeholders to log and manage control deficiencies. Assess whether remediation plans and corrective actions are reasonably designed to reduce risk. Verify that control deficiencies are remediated according to the remediation plans.

  • Establish strong working relationships with the stakeholders across business units and teams to build trust and act as a trusted advisor. Perform as subject matter expert to advise the stakeholders on control documentation and testing in compliance with policies and standards.

  • Maintaining thorough understanding of organization's governing policies and standards, IT control testing methodologies, and related regulatory and compliance standards

  • Keeping abreast of external cyber security trends, technologies and cyber risk management approaches, control hygiene of the environment, and often collaborate with other teams on IT risk-related initiatives to provide subject-matter recommendations and guidance to achieve a risk posture within the organization’s overall risk appetite.

WHAT DO YOU NEED TO SUCCEED?

Must have:

  • Bachelors' degree in computer science, engineering, or related field. Preferred Certifications: CRISC - Certified in Risk and Information Systems Control, CISA – Certified Information Security Auditor, CISSP - Certified Information Systems Security Professional.

  • Over seven-year experience of testing IT controls, with at least two years in a team lead capacity preferably within financial services industry. Experience or understanding of IT risk management practices in financial services industry.

  • Proficient at written and oral communication skills to effectively and timely communicate with stakeholders. Analytical and rationale thinking, supported by strong writing skills, are essential to document and communicate the test work. Ability to understand the stakeholders’ expectations for information and communication.

  • A strong understanding of technology and/or financial services industry. Knowledge of FINRA, SEC, MSRB, FRBNY and OCC rules and regulations.

  • Deadline-driven and results-oriented; able to meet consistently high-quality standards while handling a variety of tasks and deadlines simultaneously.

Nice-to-have: 

  • Risk and Control management knowledge and industry experience across Information Technology (IT) domains

  • Working experience in cybersecurity and/or IT risk management spaces

  • Big 4 IT risk consulting and/or audit experience

RBC is committed to supporting flexible work arrangements when and where available. Details to be discussed with Hiring Manager.

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable

  • Leaders who support your development through coaching and managing opportunities

  • Ability to make a difference and lasting impact

  • Work in a dynamic, collaborative, progressive, and high-performing team

  • A world-class training program in financial services

  • Flexible work/life balance options

  • Opportunities to do challenging work

#LI-Hybrid

#LI-POST

#TECHPJ

Job Skills

Business Continuity and Disaster Recovery (BCDR), Cost-Benefit Analysis (CBA), Cyber Security Management, Firewall Management, Information Security Management, IT Network Security, Operational Delivery, Problem Management, Process Management, Threat Management

Additional Job Details

Address:

VANCOUVER MAIN BRANCH (B), 1055 GEORGIA ST W:VANCOUVER

City:

VANCOUVER

Country:

Canada

Work hours/week:

37.5

Employment Type:

Full time

Platform:

TECHNOLOGY AND OPERATIONS

Job Type:

Regular

Pay Type:

Salaried

Posted Date:

2024-10-09

Application Deadline:

2024-11-15

Inclusion and Equal Opportunity Employment

At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
​​​​​​​
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  10  0  0

Tags: CISA CISSP Compliance Computer Science CRISC Firewalls Governance Monitoring Network security Risk management

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Team events

Region: North America
Country: Canada

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.