Senior Director, Head IT Risk CNB (Global Security)

What is the Opportunity?

The Head of City National Bank (CNB) IT Risk Management is a First Line of Defense critical role accountable for the independent risk management oversight of IT Risk across all CNB's business segments and functions. This role will report to the head of IT Risk at RBC US. This leadership role will drive the entire lifecycle of IT Risk Framework at CNB, providing expertise, advisory and reporting to IT and Business executives, enabling risk reduction within the risk appetite of the Bank.

What will you do?

Lead a team of IT Risk professionals responsible for overseeing the IT risk management practices, report to Senior Management & CNB Board, and engage with US regulators on continuous monitoring, exams, and risk remediation programs. Key areas of focus will include:

Governance

• Contribute to the development of Enterprise policies, standards, and metrics, ensuring alignment with CNB and US IT risk management requirements.

• Collaborate with stakeholders to develop and implement risk management strategies.

• Provide training to employees on IT risk management practices.

• Develop and run local IT Risk committee(s) in alignment with US IT Risk governance.

• Build strong relationships with CIO, CTO, CIO, 2LOD Risk ORM, Audit, Compliance, Enterprise IT risk.

Reporting

• Prepare clear, concise reporting on risk posture, remediation progress, and escalations as needed.

• Produce and present risk reports for senior management forums.

• Produce and present quarterly risk reports to Senior Management and CNB Board.

• Respond to regulatory inquiries and exams for IT Risk related scope.

Risk Identification & Assessment

• Analyze processes to identify IT related risks across IT infrastructure, applications, and third-party services.

• Collaborate with control owners and key stakeholders to identify, document, and assess risks, and control gaps.

• Provide expert advice to management on risk-related matters and assist with decision-making related to risk management.

• Stay current on emerging technologies and assess potential risk implications.

Risk Remediation Management

• Drive accountability and ensure that risk registers are maintained with clear ownership and status.

• Work with stakeholders to drive timely and effective remediation of identified risks.

• Manage the end-to-end lifecycle of risk remediation activities.

• Develop and establish effective monitoring practices to ensure adherence to the IT risk management framework and policy.

What you need to succeed?

Must have:

• Minimum 10-15 years of experience in IT Risk, preferably in large financial services firms.

• Strong leadership skills.

• Proven track record at building strong relationships.

• Board and Senior Management presentation skills.

• Regulatory engagement experience.

• Strategic mindset, with excellent knowledge and understanding of complex IT risk remediation programs.

• Excellent written and verbal communication skills, with ability to summarize for senior audiences.

• Hands-on experience with great attention to detail.

• Solid understanding of US IT regulatory requirements is a plus (e.g., OCC Heightened Standards, FFIEC Handbooks, NIST)

Nice to have:

• A strong understanding of financial services industry and experience with Compliance and Industry framework such as ISO27001, NIST 800-53, NIST CSF, NIST 800-171, COBIT etc.

• Knowledge of regulatory bodies and frameworks i.e. OSFI, FINRA, SEC, MSRB, FRBNY, OCC.

• Strong knowledge of rules, regulations and compliance requirements for the financial services industry concerning hybrid cloud and multiple technology domains specific to the areas of oversight.

What's in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.

• Leaders who support your development through coaching and managing opportunities.

• Ability to make a difference and lasting impact.

• Work in a dynamic, collaborative, progressive, and high-performing team.

• Opportunities to do challenging work.

The expected salary range for this particular position is $200,000-$325,000, depending on your experience, skills, and registration status, market conditions and business needs.

You have the potential to earn more through RBC's discretionary variable compensation program which gives you an opportunity to increase your total compensation, provided the business meets its performance targets and you meet your individual goals.

RBC's compensation philosophy and principles recognize the importance of a highly qualified global workforce and plays a critical role in attracting, engaging and retaining talent that:

• Drives RBC's high-performance culture.

• Enables collective achievement of our strategic goals.

• Generates sustainable shareholder returns and above market shareholder value.

Job Skills

Additional Job Details

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

Inclusion and Equal Opportunity Employment

At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.