PURPOSE:  

The IT Risk & Control team is embedded in RBC I&TS T&O and is an integral component of effective risk management and specifically the 1st Line of Defense (1B) for I&TS IT risks.

This role is responsible for:

Ensuring I&TS IT Risk processes and procedures are up-to-date and readily available to relevant stakeholders

Reviewing Issue Management to support the IT Risk team

Processing assigned IT Risk Issues in the Archer system as shared between the IT Risk team

Supporting the implementation and operationalization of the IT Risk Policies and Standards

Assisting T&O Segments with gap analysis, implementation and control design for new IT Risk Policies and Standards

Providing technical risk-related advice and support to I&TS and I&TS IT stakeholders

Acting as liaison for IT Risk Policies and Standards

Partnering closely with application custodians, risk champions and T&O partners (Infrastructure and Cyber etc.)

Providing ad-hoc support for Operational Risk Management in execution of core operational risk programs and projects

PRIMARY RESPONSIBILITIES:  

IT Risk Issue Management

Work with IT teams to identify and document risk on the Enterprise Archer system (Risk register)

Review the risk finding description and risk analysis ensuring validation and quality are correct based in the Data Quality guideline from IT Risk team

Review and control life cycle of risk remediation and risk acceptance

Continuously mature Issue Management processes and procedures to support the I&TS IT strategy

IT Risk Policies and Standards Support / Regulatory

Support Applications owners and custodians in understanding, executing and maintaining the policies, standards, processes and tools to support requests from the broad T&O Operational risk community.

Conduct and review gap analysis as directed

Execute self-assessment and gaps identification against new regulations

Project and new initiatives risk assessment

Acting as 1st level of review for the assessment of risks stemming from new initiatives and projects

Review and approval of Integrated Risk Profile (IRP) & IT Risk Triage

Assist with execution of Operational Risk programs as required.

Audit

Assist in Internal and External audit activities 

Reporting & Analytics

Consolidate and Evolve Reporting to illustrate how Risk is adequately managed and measured

Continuously mature Reporting & Analytics processes and procedures to support the I&TS IT strategy

Monitor on an ongoing basis various reports and data to identify increasing risk trends.

Compliance

Assisting and reporting around regulatory and self-identify compliance issues

Access Management

Mature Access Management processes and procedures to support the I&TS IT strategy

POSITION SPECIFICATIONS:

Required:

Proactive attitude and organised

University graduate and/or Information Security Certification

6+ years in the IT or financial services industry

Strong knowledge of the Application Lifecycle and roles & responsibilities within

Maturity level and skill/judgment to be able to deal effectively and influence senior managers within RBC and operational risk groups throughout the organization

Good communication (verbal and written) skills, including strong appreciation of relationship management

Excellent PC skills

Preferred:

Familiarity with the Archer tool desirable

Facilitation skills and practices

Strong knowledge of RBC’s organization, T&O processes and compliance

Self-organized with proven time management skills

Good problem solving, analytical (including qualitative analysis), research, and quantitative skills

Knowledge of organizational change management

Learn more about RBC Tech Jobs

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at rbc.com/careers.