Associate Director, Cyber and Technology Risk

4 weeks ago

Ottawa, Canada RBC Full time

Job Summary

As part of the Group Risk Management’s Enterprise Resilience Risk team, the Associate Director, Cyber & Technology Risk will be responsible for providing challenge and oversight on Identity and Access Management (IAM) programs, IAM lifecycle, and cyber operations teams. You will be responsible to provide an opinion on RBC’s IAM risk posture, developing/overseeing IAM Key Risk Indicators to measure and monitor risk and contributing to the development of enterprise policies and standards governing IAM.

Job Description

What is the opportunity?

You will support IT/Cyber Risk Management leadership within the Enterprise Resilience Risk team in delivering various oversight and challenge processes including: tracking and reporting on the status and quality of key IAM Risk programs; developing and utilizing effective risk appetite metrics that provide insights into current risk level; identifying issues with policy compliance through analysis and testing of controls; monitoring and assessing cyber/technology incidents related to IAM; and performing thematic reviews to investigate issues and providing value add recommendations.

This includes providing an opinion on RBC’s technology risk posture, developing/overseeing IAM key risk indicators to measure and monitor risk and contributing to the development of enterprise policies and standards governing Identity and Access Management Risk.

What will you do?

  • Leverage data driven insight and provide opinions and challenge on key risk indicators.
  • Support the completion of thematic reviews, scenario analysis, external event analysis, new change initiative assessments and development of risk profiles that can be leveraged to report to senior management, board, and regulators.
  • As second line of defense, work closely with the first line to provide effective cyber/technology oversight and challenge for Global Security’s IAM Operational and IT risk programs such as Risk and Control Self-Assessments, Operational Risk Event Reviews, IT Risk Assessments, and Integrated Risk Profiles to validate that the business is operating within Risk Appetite.
  • Champion managing risk rather than risk avoidance, by seeking solutions.
  • Maintain knowledge of emerging technologies, threats/vulnerabilities and risk management practices and their implications to the business platform.
  • Maintain assigned Domain Risk Profiles to provide a strong fact-based opinion on the Technology Risk profile.
  • Maintain a monthly risk profile across Technology Risk categories.
  • Operate a one front door policy by ensuring effective support of business requests and follow through.
  • Develop and maintain key internal and external relationships to provide advice and oversight on standard compliance, support operational risk program adherence and effective incident reporting.
  • Provide oversight and challenge on the management of significant cyber incidents.
  • Support cyber/technology related regulatory examinations/requests/assessments/reporting.
  • Recommend changes to Cyber & IT Risk policies/standards to maintain currency in ensuring relevance to emerging technologies and delivery models.
  • Develop and maintain key Technology relationships to provide expertise and oversight on new initiatives.
  • Keep abreast of emerging technology threats.
  • Proactively manage complex and sometimes competing relationships with key local, regional, and global stakeholders on a regular basis.
  • Develop strong relationships within GRM and Operational Risk teams in support of common objectives and goals.

Nice-to-have:

  • Experience in a large financial service company.
  • Knowledge of Project Management (PMF) process/disciplines.
  • Strong knowledge of various IT risk frameworks, methodologies, leading industry/assurance standards and regulations, as well as attestation reporting frameworks, such as NIST, COBIT, SOC2 reporting framework.
  • Working knowledge of GRC tools (e.g., Archer, ServiceNow, etc.).

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation.
  • Leaders who support your development through coaching and managing opportunities.
  • Work in a dynamic, collaborative, progressive, and high-performing team.
  • Opportunities to do challenging work.
  • Flexible work/life balance options.

Job Skills

Confidentiality, Cybersecurity, Cyber Security Management, Decision Making, Detail-Oriented, Encryption Software, Group Problem Solving, High Impact Communication, Identity Access Management (IAM), Information Security Management, Information Technology (IT) Risk, Information Technology Security, Key Risk Indicators, Operational Risks, Risk Appetite, Risk Assessments, Risk Control Assessment, Risk Management, RiskMetrics, Risk Profile, Risk Reporting, Strategic Thinking, Technology Risk.

Additional Job Details

Address: 20 KING ST W:TORONTO

City: TORONTO

Country: Canada

Work hours/week: 37.5

Employment Type: Full time

Platform: GROUP RISK MANAGEMENT

Job Type: Regular

Pay Type: Salaried

Posted Date: 2025-01-15

Application Deadline: 2025-02-01

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above.

Inclusion and Equal Opportunity Employment

At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.

We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

#J-18808-Ljbffr

  • Associate Director, Cyber and Technology Risk

    4 weeks ago

    Ottawa, Canada RBC Full time

    Job SummaryAs part of the Group Risk Management’s Enterprise Resilience Risk team, the Associate Director, Cyber & Technology Risk will be responsible for providing challenge and oversight on Identity and Access Management (IAM) programs, IAM lifecycle, and cyber operations teams. You will be responsible to provide an opinion on RBC’s IAM risk posture,...

  • Director, Cyber and Technology Risk Reporting

    4 weeks ago

    Ottawa, Canada RBC Full time

    Job SummaryJob DescriptionJob Title: Director, Cyber and Technology Risk ReportingWhat is the opportunity?The Director, Cyber and Technology Risk Management Compliance and Operations plays a key role in ensuring Cyber and Technology Risk support services are proactively developed, operated, and evolved to help risk manage this Top Risk risk domain. The...

  • Director, Cyber and Technology Risk Reporting

    4 weeks ago

    Ottawa, Canada RBC Full time

    Job SummaryJob DescriptionJob Title: Director, Cyber and Technology Risk ReportingWhat is the opportunity?The Director, Cyber and Technology Risk Management Compliance and Operations plays a key role in ensuring Cyber and Technology Risk support services are proactively developed, operated, and evolved to help risk manage this Top Risk risk domain. The...

  • Enterprise Cyber Risk Manager

    5 days ago

    Ottawa, Ontario, Canada Maplesoft Group Full time

    We are currently seeking a talented Enterprise Cyber Risk Manager to join our team at Maplesoft Group.">In this exciting opportunity, you will provide strategic input into various executive security committees' meetings and maintain the Cyber Security part of the client Strategic Security Risk Register.">The ideal candidate will have experience in developing...

  • Cyber Risk Specialist

    5 days ago

    Ottawa, Ontario, Canada Scotiabank Full time

    At Scotiabank, we are seeking a highly skilled Cyber Risk Specialist to join our team. As a key member of our Cyber & IT Risk Management group, you will play a critical role in ensuring the bank's overall success and compliance with governing regulations.The ideal candidate will have 7+ years of experience in IT Risk Management, with expertise in logical...

  • Cyber Security Strategist

    5 days ago

    Ottawa, Ontario, Canada Maplesoft Group Full time

    Maplesoft Group is a dynamic company that values the contributions of all its employees and contractors.">We listen to suggestions, advice, and innovative ideas to further our strategic vision. In turn, we contribute to the communities where we operate, thinking globally but acting locally.">This exciting opportunity is available for a Cyber Security...

  • Global Cyber Risk Manager

    5 days ago

    Ottawa, Ontario, Canada Scotiabank Full time

    Cybersecurity and IT Risk Management is a critical function within Scotiabank, and we are seeking a highly skilled Global Cyber Risk Manager to join our team. As a subject matter expert, you will provide independent oversight and challenge, and assist in developing methodologies, policies, processes, and tools to support the Cyber and IT Risk Management...

  • Manager, Cyber Security

    6 days ago

    Ottawa, Ontario, Canada Employment and Social Development Canada Full time

    Reference number: SIF24J-085897-000113Selection process number: 24-25-SIF-EA-10969Office of the Superintendent of Financial Institutions Canada - Cyber SecurityVancouver (British Columbia), Ottawa (Ontario), Toronto (Ontario), Montréal Island (Québec)IT-04, IT-05, RE-06 - NOTE: This position is classified at the RE-06 group and level which is roughly...

  • Chief Cyber Risk Strategist

    3 days ago

    Ottawa, Ontario, Canada Scotiabank Full time

    About ScotiabankWe are a leading bank in the Americas, guided by our purpose: 'for every future'. We help our customers, their families, and their communities achieve success through various advice, products, and services.Job SummaryWe are seeking an experienced Cyber and IT Risk Management Specialist to join our team. The ideal candidate will have a strong...

  • Senior Manager, Cyber and IT Risk

    2 weeks ago

    Ottawa, Ontario, Canada Scotiabank Full time

    Title: Senior Manager, Cyber and IT RiskRequisition ID: 213064Join a purpose-driven winning team, committed to results, in an inclusive and high-performing culture.Contributes to the overall success of Cyber & IT Risk Management, Global Risk Management (GRM) globally ensuring specific individual goals, plans, initiatives are executed/delivered in support of...

  • Enterprise Cyber Risk Professional

    5 days ago

    Ottawa, Ontario, Canada Munich Re Full time

    Key ResponsibilitiesSupport adoption of Munich Re's Information Security Management (ISM) policies and guidelinesExecute prioritized initiatives for Cyber Security covering Life and Health North AmericaSupport local data protection initiatives such as data masking, unstructured data security, access management and access reduction, Data Leakage Prevention...

  • Third-Party Cyber Risk Specialist

    4 days ago

    Ottawa, Ontario, Canada Equitable Group Full time

    About Us">As a leader in the Canadian banking industry, Equitable Group is dedicated to delivering innovative solutions that meet the evolving needs of our customers. Our commitment to excellence and customer satisfaction has earned us recognition as one of the top FinTechs in the country.">The Role">We are seeking an experienced Third-Party Cyber Risk...

  • Cyber Security

    5 days ago

    Ottawa, Ontario, Canada Munich Re Full time

    Job DescriptionThe Enterprise Cyber Risk Professional will support the second line of defense for Cyber Security covering Munich Re's Life and Health North America entities. The role involves supporting the identification, prioritization, communication, and monitoring of cyber security risks in the Life and Health North America entities.

  • Cyber Risk Management Specialist Lead

    3 days ago

    Ottawa, Ontario, Canada State Street Full time

    Cyber Audit Team MemberState Street is a leader in financial services, and our Cyber Audit team is at the forefront of protecting our clients' assets. As an Assistant Vice President, you'll collaborate with international colleagues from various audit disciplines to deliver cutting-edge solutions and drive efficiencies. Your contributions will help broaden...

  • Senior Cyber Security Strategy and Risk Management Consultant to provide strategic guidance and[...]

    4 weeks ago

    Ottawa, Canada S I Systems Full time

    Senior Cyber Security Strategy and Risk Management ConsultantOur valued public sector client is hiring a Senior Cyber Security Strategy and Risk Management Consultant to provide strategic guidance and recommendations to support Cyber Security and Risk Management initiatives.Background:The organization needs to respond to GC strategic remits on Cyber Security...

  • Senior Cyber Security Strategy and Risk Management Consultant to provide strategic guidance and[...]

    4 weeks ago

    Ottawa, Canada S I Systems Full time

    Senior Cyber Security Strategy and Risk Management ConsultantOur valued public sector client is hiring a Senior Cyber Security Strategy and Risk Management Consultant to provide strategic guidance and recommendations to support Cyber Security and Risk Management initiatives.Background:The organization needs to respond to GC strategic remits on Cyber Security...

  • Cyber Security Strategist

    6 hours ago

    Ottawa, Ontario, Canada Maplesoft Group Full time

    Job Overview:Maplesoft Group is a dynamic company that values the contributions of all employees and contractors. We listen to suggestions, advice, and innovative ideas to further our strategic vision. Our goal is to build a diverse, representative workforce and create an inclusive environment.Synopsis:We are seeking a Strategic IT Security Planning and...

  • Strategic Risk Technology Director

    5 days ago

    Ottawa, Ontario, Canada Scotiabank Full time

    Job OverviewWe are seeking a highly skilled and experienced Strategic Risk Technology Director to lead our Technology team in modernizing our application portfolio and delivering solutions to support our global business needs.

  • Project Manager Cyber Security

    2 days ago

    Ottawa, Ontario, Canada QA Consultants Full time

    **Company Overview:**QA Consultants is a leading provider of software quality engineering services, committed to helping clients achieve flawless technology outcomes. Our team of experts has successfully delivered over 12,000 projects in various sectors, reducing risk and improving time to market with quality engineering.**Job Title:** Project Manager Cyber...

  • Cyber Security Risk Specialist

    6 days ago

    Ottawa, Ontario, Canada Creative Solutions Services, LLC Full time

    Job OverviewCreative Solutions Services, LLC is seeking a highly skilled Cyber Security Risk Specialist to join our team. This is a unique opportunity to leverage your expertise in security architecture and risk assessment to drive business growth and protection.