Associate Director, Cyber and Technology Risk
1 month ago
Job Summary
As part of the Group Risk Managementâs Enterprise Resilience Risk team, the Associate Director, Cyber & Technology Risk will be responsible for providing challenge and oversight on cybersecurity programs, cyber technology, and cyber operations teams. You will be responsible to provide an opinion on RBCâs cybersecurity risk posture, developing / overseeing cybersecurity Key Risk Indicators to measure and monitor risk and contributing to the development of enterprise policies and standards governing global cyber security.Job Description
What is the opportunity?
As part of the Group Risk Management team, the Associate Director, Cyber and Technology Risk will support IT/Cyber Risk Management leadership within Enterprise Resilience Risk team  in delivering various oversight and challenge processes including: tracking and reporting on status and quality of key Cyber/Technology Risk programs; developing and utilizing effective risk appetite metrics that provide insights into current risk level; identifying issues with policy compliance through analysis and testing of controls; monitoring and assessing cyber/technology incidents; and performing thematic reviews to investigate issues and providing value add recommendations.
What will you do?
- Leverage data driven insight and provided opinions and challenge on key risk indicators.
- Support the completion of thematic reviews, scenario analysis, external event analysis, new change initiative assessments and development of risk profiles that can be leveraged to report to senior management, board, and regulators.
- As second line of defense, work closely with first line to provide effective and cyber/technology oversight and challenge for T&O Operational and IT risk programs such as Risk and Control Self-Assessments, Operational Risk Event Reviews, IT Risk Assessments, Integrated Risk Profiles to validate the business is operating within Risk Appetite.
- Champion managing risk rather than risk avoidance, by seeking solutions.
- Maintain knowledge of emerging technologies, threats/vulnerabilities and risk management practices and its implications to the business platform.
- Maintain assigned Domain Risk Profiles to provide a strong fact-based opinion on the Technology Risk profile.
- Maintain a monthly risk profile across Technology Risk categories.
- Operate a one front door policy by ensuring effective support of business requests and follow through.
- Develop and maintain key internal and external relationships to provide advice and oversight on standard compliance, support operational risk program adherence and effective incident reporting.
- Provide oversight and challenge on the management of significant cyber incidents.
- Support cyber/technology related regulatory examinations / requests / assessments / reporting.
- Recommend changes to Cyber & IT Risk policies/standards to maintain currency in ensuring relevance to emerging technologies and delivery models.
- Develop and maintain key Technology relationships to provide expertise and oversight on new initiatives.
- Keep abreast of emerging technology threats. Â
- Proactively manage complex and sometimes competing relationships with key local, regional, and global stakeholders on a regular basis
- Develop strong relationships within GRM and Operational Risk teams in support of common objectives and goals
What do you need to succeed?
Must Have:
- 5+ yearsâ of risk management experience in cyber and technology security.
- 5+ yearsâ work experience in a mid-large size organization.
- Strong knowledge of cyber security standards, risks, threats, prevention measures, and best practices.
- Strong knowledge of security operations, identity and access management , information protection concepts and techniques, cloud security, network security
- Strong knowledge in IT and operational risk management processes, methods and tools
-  3+  yearsâ experience in developing and supporting  infrastructure and technology operations in areas such as DevOps, architecture, disaster recovery, operational resilience, IT Asset Management, incident and problem management
- Good Technical knowledge and experience covering the operating systems (e.g. Unix, Windows, zOS,) and database systems (e.g. Oracle, SQL Server, Sybase, DB2) and middleware (e.g. Tomcat, JBOSS, IIS)
Nice-to-Have:
- Working knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as NIST, COBIT, SOC2 reporting framework
- Solid understanding of current / emerging technology
- Working knowledge of modern technologies  (e.g. Cloud, APIs, DevOps)  Â
- Strong knowledge of technology standards, and best practices.
- Working knowledge of GRC tools (e.g., Archer, ServiceNow, etc.)
- Project management
What is in it for you?
We thrive on the challenge to be our best, progressive thinking, to keep growing, and working together to build and deliver trusted reporting to help our stakeholders succeed and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- Opportunities to take on progressively greater accountabilities
Job Skills
Cyber Operations, Cyber Risks, Cybersecurity, Cyber Security Management, Cybersecurity Risk Management, Decision Making, Detail-Oriented, Emerging Technologies, Encryption Software, Group Problem Solving, High Impact Communication, Information Security Management, Information Technology (IT) Risk, Information Technology Security, Key Risk Indicators, Leadership, Operational Risks, Risk Appetite, Risk Assessments, Risk Control, Risk Management, Risk Profile, Strategic ThinkingAdditional Job Details
Address:
20 KING ST W:TORONTOCity:
TORONTOCountry:
CanadaWork hours/week:
37.5Employment Type:
Full timePlatform:
GROUP RISK MANAGEMENTJob Type:
RegularPay Type:
SalariedPosted Date:
2024-10-08Application Deadline:
2024-10-31Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
âââââââ
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
-
Associate Director, Cyber and Technology Risk
2 months ago
Toronto, Canada Royal Bank of Canada> Full timeJob SummaryAs part of the Group Risk Management’s Enterprise Resilience Risk team, the Associate Director, Cyber & Technology Risk will be responsible for providing challenge and oversight on cybersecurity programs, cyber technology, and cyber operations teams. You will be responsible to provide an opinion on RBC’s cybersecurity risk posture, developing...
-
Cyber and Technology Risk Manager
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeJob DescriptionCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. In this role, you will be responsible for mitigating cyber, technology, and data risks by assisting in the implementation of a risk management and internal control framework with particular focus on the Technology & Data (T&D) and Information...
-
Information Technology Risk Specialist
2 weeks ago
Old Toronto, Canada Cyber Crime Full timeAbout This RoleWe are seeking a highly skilled and experienced Technical IT Risk Manager to join our Cyber Crime team. As a key member of our team, you will play a critical role in identifying and assessing IT and operational risks across a large and diverse portfolio of applications.Key ResponsibilitiesIdentify and assess IT and operational risks, including...
-
Cyber and Technology Risk Manager
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeAbout the RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. As a key member of our Cyber and Technology Risk Management team, you will be responsible for mitigating cyber, technology, and data risks by assisting in the implementation of a risk management and internal control framework with particular focus on...
-
Cyber and Technology Risk Manager
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeCyber and Technology Risk Management RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. As a key member of our risk management team, you will be responsible for identifying, assessing, and mitigating cyber and technology risks that could impact our organization.Key Responsibilities:Develop and implement cyber...
-
Cyber and Technology Risk Manager
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeCyber and Technology Risk Management RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. As a key member of our risk management function, you will be responsible for identifying, assessing, and mitigating cyber and technology risks that could impact our organization.Key ResponsibilitiesDevelop and implement...
-
Cyber and Technology Risk Manager
3 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeCyber and Technology Risk Management RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. As a key member of our Cyber and Technology Risk Management team, you will play a critical role in mitigating cyber, technology, and data risks by assisting in the implementation of a risk management and internal control...
-
Cyber and Technology Risk Management Leader
3 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeJob SummaryCPP Investments is seeking a Cyber and Technology Risk Management Leader to join our team. In this role, you will be responsible for identifying, assessing, and mitigating cyber, technology, and data risks to the fund's information systems, data, and infrastructure.ResponsibilitiesDevelop and implement cyber and technology risk management...
-
Manager, Cyber
3 days ago
Toronto, Canada Canadian Tire Corporation Full time**What you’ll do** Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across IT, Risk and Regulatory Affairs and other key Business Units, the Manager, Cyber & Technology Risk, provides a layer of independent challenge of cyber risk through targeted independent assessments of current cyber security practices,...
-
Manager, Cyber
4 days ago
Toronto, Canada Canadian Tire Corporation Full timeWhat you’ll do Reporting to the AVP, Cyber & Technology Risk, and working closely with key stakeholders across IT, Risk and Regulatory Affairs and other key Business Units, the Manager, Cyber & Technology Risk, provides a layer of independent challenge of cyber risk through targeted independent assessments of current cyber security practices, roadmaps,...
-
Toronto, Ontario, Canada Royal Bank of Canada> Full timeJob SummaryJob DescriptionAs the Director, Cyber and IT Risk Framework Policy and Standards, you will be responsible for providing leadership and direction over the bank's suite of cyber and technology policies and standards. This includes maintaining the framework, managing a comprehensive cyber & technology governance roadmap, and providing subject matter...
-
Toronto, Ontario, Canada CPP Investments Full timeAbout the RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. This exciting opportunity will allow you to leverage your expertise in risk management to help us mitigate cyber, technology, and data risks.ResponsibilitiesDevelop and implement cyber and technology risk management processes and capabilities to...
-
Cyber and Technology Risk Management Specialist
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeAbout the RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Management Specialist to join our team. As a key member of our risk management function, you will be responsible for identifying, assessing, and mitigating cyber and technology risks that could impact our organization.Key ResponsibilitiesDevelop and implement cyber and...
-
Cyber and Technology Risk Management Specialist
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeAbout the RoleCPP Investments is seeking a highly skilled Cyber and Technology Risk Manager to join our team. As a key member of our risk management function, you will be responsible for identifying, assessing, and mitigating cyber and technology risks that could impact our organization.Key ResponsibilitiesDevelop and implement cyber and technology risk...
-
Associate, Cyber
1 month ago
Toronto, Canada CPP Investments Full timeJob DescriptionThe work of our Technology and Operation (T&O) Risk team is essential to the organization. We are looking for an Associate to support the delivery of information security risk assessments and control reviews for our existing in-house and third party SAAS applications and systems, including pre-onboarding assessment and third-party security...
-
Manager, Cyber and Technology Risk Management
6 months ago
Toronto, Canada CPP Investments Full timeCompany Description Make an impact at a global and dynamic investment organization When you invest your career in CPP Investments, you join one of the most respected and fastest growing institutional investors in the world. With current assets under management valued in excess of $500 billion, CPP Investments is a professional investment management...
-
toronto, Canada RBC Full timeJob SummaryJob DescriptionWhat is the opportunity?The Director, Cyber and Technology Risk Framework and Standards will be responsible for providing leadership and direction over the bank's suite of cyber and technology policies and standards by providing challenge and oversight on their design and i
-
Cyber and Technology Risk Management Specialist
4 weeks ago
Toronto, Ontario, Canada CPP Investments Full timeJob DescriptionAt CPP Investments, we are seeking a highly skilled Cyber and Technology Risk Management Specialist to join our team. As a key member of our Cyber and Technology Risk Management team, you will play a critical role in mitigating cyber, technology, and data risks by assisting in the implementation of a risk management and internal control...
-
Information Technology Risk Manager
2 weeks ago
Old Toronto, Canada Cyber Crime Full timeAre you a talented, creative and results-driven professional who thrives on delivering high-performing applications? Come join us!Global Functions Technology (GFT) is part of RBC’s Technology and Operations division. GFT’s impact is far-reaching as we collaborate with partners from across the company to deliver innovative and transformative IT solutions....
-
Cyber Security Associate
5 days ago
Old Toronto, Canada Cyber Crime Full timeAs a Cyber Security Associate at PwC, you'll be part of a dynamic team that helps businesses navigate the complexities of digital risk. With expertise in Oracle Cloud security and application security, you'll assist clients in implementing robust controls to mitigate vulnerabilities.About the RoleThis is an exciting opportunity for a highly skilled...
