Sr. Manager – Risk Assessment & Analysis
| Company | Royal Bank of Canada |
|---|---|
| Location | Toronto, ON, Canada |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior, Expert or higher |
Requirements
- Minimum of 7 years in risk management with a strong focus on mitigation and remediation.
- Strong understanding of US & Canadian regulatory environment including reporting requirements. Prior or current financial services experience required. Regulatory experience with UK, EU or APAC regulators is a plus.
- Strong ability to perform IT risk assessments following a defined Risk Management framework, standards, policies, and industry best practices and with an investigative mind.
- Creative problem-solving and analytical skills with the proven ability to exercise flexibility and judgment while partnering with stakeholders at different levels of the organization.
- Ability to challenge current IT control landscape, looking to increase efficiencies and drive changes on existing processes.
- Experience working with regulators and internal/external auditors (Statutory Audit, SOX, SOC 1 and 2 engagements) effectively and helping stakeholders with remediation plans.
- Excellent communication and analytical skills and experience managing and prioritizing multiple risk remediation projects simultaneously.
- Deep desire to support training and education of others and self.
Responsibilities
- Develop and oversee the enhancement of the current IT risk assessment processes managed by the group, ensuring appropriate coverage of IT Risk Management framework and US and CAD regulatory requirements.
- Monitor emerging threats and trends within the technology landscape, including but not limited to, cyber, operational and third-party risks.
- Provide ongoing assessment of IT risk strategies, frameworks and processes to ensure continued alignment with emerging trends and regulatory expectations.
- Define, implement and monitor risk assessment methodologies and monitoring tools to identify technology related risks.
- Conduct regular risk assessments and gap analysis to identify potential weaknesses in IT controls and recommend appropriate remediation strategies.
- Collaborate with Controls Analysis & TI Risk COEs to ensure assessment processes are efficient while supporting the advancement of TI by driving smart, risk-based decisions by IT partners.
- Establish key metrics and reporting capabilities to effectively evaluate IT-related risks dependent on RBCs overall environment.
- Partner and build strong relationships with IT business partners to assist, educate and proactively identify risks associated with IT activities.
Preferred Qualifications
- CRISC, CISA, CISM, CAMS, CISSP, CPA, CA etc.