Director, Control Testing and Assurance (GCS)

WHAT IS THE OPPORTUNITY?

Global IT Risk (GITR) is part of RBCs Technology and Operations division. It enables the protection of RBC's brand, systems, and operations by equipping technology partners with meaningful actions, insights, actionable advice, and information on RBC IT & Cyber risks. Join our dynamic team as a Director - Cyber Security, Risk and Control Assurance, where you will play a pivotal role in advancing our organization's technology, risk, security, and operations landscape. You will lead and execute risk-based control testing activities, independently evaluating the design, implementation, and operating effectiveness of these controls within the first line of defense (1LOD). Your expertise will be critical in driving change and overall improvement across the organizations approach to IT and Cyber risk. This is an advanced senior position, offering opportunities to work across the organization, and functions, and make a significant impact.

WHAT WILL YOU DO?

• Lead, set direction and execute RBCs IT Key Controls testing and assurance program.
• Identify new opportunities for uplift and/or to better promote our current initiatives.
• Develop roadmaps and challenge the status quo.
• Provide oversight for internal control testing function and related activities.
• Present roadmaps and reports to senior leadership and external stakeholders as required.
• Establish and maintain strong working relationships across all business units and 3 lines of defense.
• Serve as a trusted advisor, advising stakeholders on risk, control testing, and compliance with organizational policies, regulatory requirements, and industry standards.
• Maintain a thorough understanding of external technology and cybersecurity trends, emerging technologies, and internal technology and cyber risk management practices.

What You Need to Succeed?

Must have:

• Experience: 7-10 years experience in Risk, Controls, and related topics.
• Experience in IT Risk Management and technology, with a focus on risk and controls testing,
• University graduate or equivalent experience
• Strong stakeholder and relationship management
• Strong communication (verbal and written) skills.
• Ability to think analytically, navigate ambiguity and recommend solid solutions.
• Ability to multi-task and flexibility to adapt to priority changes.
• Advanced presentation skills.

Nice-to-have:

• A strong understanding of the financial services industry and experience with Compliance and Industry frameworks such as ISO27001, NIST 800-53, NIST CSF, NIST 800-171, COBiT etc.
• Knowledge of regulatory bodies and frameworks i.e. OSFI, FINRA, SEC, MSRB, FRBNY, OCC.
• Strong knowledge of rules, regulations and compliance requirements for the financial services industry concerning hybrid cloud and multiple technology domains specific to the areas of oversight.
• Working experience in cybersecurity and/or IT risk management spaces.

WHAT'S IN IT FOR YOU?

We thrive on the challenge to be our best, progressive thinking to keep growing and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference in our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact.
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services
• Flexible work/life balance options.

#LI-Hybrid

#LI-POST

#TECHCPJ

Job Skills

Additional Job Details