Senior Manager, Compliance & Risk Management Full-time Job

What is the Opportunity?

As part of the Cloud & Transformation Team, your role is to support the Cloud Program in the compliance and risk management areas. You will partner and collaborate with all Cloud Stakeholders including but not limited to Cloud and business partners. You will be responsible for creating and maintaining risk dashboards, own the issue management and the KPI/KRI inventory processes for the Cloud Program. This role requires project management, building relationships, facilitation and coordination with business partners, vendors, cloud service providers, external/internal auditors and key stakeholders across the enterprise. The incumbent should have strong sense of accountability and ownership of work.

 

What Will You Do?

Risk Management:

• Risk management: Open, Close, extend, accept, risk assess and socialize risk findings. On-going risk tracking of Cloud items.

• Facilitating Risk meetings with public and private cloud teams. Key role in the coordination/facilitation of controls workshops with internal/external stakeholders in managing the in-scope applications.  This includes weekly/monthly onboarding meetings to discuss in/out of scope applications with internal auditors, application custodians and business owners.

• Reviewing Risk log for existing findings, review findings and follow up with approvers for acceptance. Meeting Platform leads to understand; reasons for exemption and what controls they are failing

• Review Platform Scorecards and update Archer if and when needed. Maintain Central Risk Repository for Cloud Technology. Accountability for maintaining Cloud Platform risk profile for different patterns offered in the Cloud program.

 

Vendor Management:

• Support your colleagues in executing and following up on third party controls required for the CSPs.

• Participate, lead discussions, negotiate Business Continuity Management, Business Impact Assessment and Exit Strategy

 

Audit engagements (internal/external):

• Consult in T&O compliance/audit standards for assessing impact to T&O. Stay up to date on changing regulatory standards for external reporting that impact T&O.

• Manage the successful completion of SOX audit & identify & implement proceses to support reduction in time spent during an audit.

• Maintain a backlog of Questions & Answers and produce and report on insights based on the audits conducted to drive key actions to support the overall healthiness of the Cloud Risk Profile.

• Manage the remediation efforts for gaps raised by third parties and ensure that remediation is completed timely and effectively. Provide consultation services on remediation paths and accountable for closure package preparation.

 

Risk Transformation:

• Work with key partners in the cloud program to identify and implement ideas that will support more efficient and timely risk management practices, including transforming the issue management process.

• Create and deliver a risk training program curriculum for the Cloud Program.

 

Documentation

 

What Do You Need To Succeed?

 Must have:

• 7+ years in the IT, assurance, or financial services industry; external audit experience is a plus.

• Strong knowledge of IT risk & compliance management practices & vendor management

• Maturity level and skill/judgment to be able to deal effectively with sr. management within RBC and operational risk groups throughout the organization

• Excellent communication (verbal & written) skills, including strong appreciation of relationship management & attention to detail.

• Able to work independently and deliver on responsibilities with minimal supervision.

• Sound problem solving, analytical (including qualitative analysis), research, and quantitative skills

• Strategic thinker with excellent interpersonal skills to work across functions and businesses

• Ability to facilitate between and influence key decision make

• Preferred: CISSP, CCSP / CCSK / AWS, Azure or GCP technical certifications

 

Nice-to-have:

• Experience in a matrix environment, such as a large Financial Institutions

 

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable

• Leaders who support your development through coaching and managing opportunities

• Ability to make a difference and lasting impact

• Work in a dynamic, collaborative, progressive, and high-performing team

• A world-class training program in financial services

• Flexible work/life balance options

• Opportunities to do challenging work

 

#LI-Hybrid

#LI-POST

#TEHCPJ

 

 

Job Skills

Business Continuity Management (BCM), Business Continuity Planning (BCP), Business Impact Assessments, Cloud Computing, Compliance Risk Management, Identifying Risks, Impact Analysis, Impact Evaluation

 

 

 

Additional Job Details

330 FRONT ST W:TORONTO

TORONTO

Canada

37.5

Full time

Technology and Operations

Regular

Salaried

2024-02-16

2024-03-01

Royal Bank of Canada is a Canadian multinational financial services company and the largest bank in Canada by market capitalization. The bank serves over 20 million clients and has more than 100,000 employees worldwide.