Associate Director Technology Risk
Royal Bank of Canada
- Toronto, ON
- Permanent
- Temps-plein
- Leverage data driven insights and provide opinions to challenge on key risk indicators.
- Support the completion of thematic reviews, scenario analysis, external event analysis, new change initiative assessments and development of risk profiles that can be leveraged to report to senior management, board and regulators
- As second line of defense, work closely with first line to provide effective and technology oversight and challenge for T&O Operational and IT risk programs such as Risk and Control Self-Assessments, Operational Risk Event Reviews, IT Risk Assessments, Integrated Risk Profiles to validate the business is operating within Risk Appetite.
- Maintain knowledge of emerging technologies, threats/vulnerabilities and risk management practices and its implications to the business platform.
- Maintain assigned Domain Risk Profiles to provide a strong fact based opinion on the Technology Risk profile
- Operate a one front door policy by ensuring effective support of business requests and follow through.
- Develop and maintain key internal and external relationships in order to provide advice and oversight on standard compliance, support operational risk program adherence and effective incident reporting
- Provide oversight and challenge on the management of significant technology incidents
- Support technology related regulatory examinations / requests / assessments / reporting
- Recommend changes to Cyber & IT Risk policies/standards to maintain currency in ensuring relevance to emerging technologies and delivery models
- Strong knowledge and working experience in IT and operational risk management processes, methods and tools in a mid-large size regulated organization (Banking, Finance, Insurance, Healthcare).
- Strong knowledge of technology standards, risks, threats, prevention measures, and best practices.
- Experience in developing and supporting infrastructure and technology operations in areas such as DevOps, architecture, disaster recovery, operational resilience, IT Asset Management, incident and problem management
- Good Technical knowledge and experience covering all layers of IT Infrastructure and systems, the operating systems (e.g. Unix, Windows, zOS,) and database systems (e.g. Oracle, SQL Server, Sybase, IBM DB2) and middleware (e.g. Tomcat, JBOSS, IIS)
- Strong knowledge on modern enterprise tech and methodologies, (Cloud, APIs, DevOps)
- Working knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as NIST, COBIT, SOC2 reporting framework
- Solid understanding of emerging technology (GenAI, MLOps)
- Strong knowledge of technology standards, and best practices.
- Working knowledge of GRC tools (e.g., Archer, ServiceNow, etc.)
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
- Leaders who support your development through coaching and managing opportunities
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- A world-class training program in financial services
- Flexible work/life balance options
- Opportunities to do challenging work