Business Analyst IT III

Our client is a top financial institution with significant North American holdings. They have operations across most major verticals, including institutional & corporate, wealth management, private client, commercial banking, treasury, and retail banking.

Robertson is seeking a skilled Business Analyst - IT III to join our client in support of an existing vacancy.

4 months with potential to extend or convert

Starting from $64 per hour

Toronto, ON

Hybrid

Monday-Friday; Core Business Hours

• Develop an enterprise Software Risk & Governance Framework integrating Standards 031 requirements (as defined internally by the organization) SW asset definitions, taxonomy, and attributes
• Define governance structures, including executive accountability, risk ownership, reporting lines, and escalation paths
• Establish monitoring mechanisms to ensure ongoing compliance
• Track compliance with Standards 031 through periodic reviews, self assessments, and evidence collection
• Coordinate internal and external audits related to cybersecurity, technology governance, and software risk management
• Partner with cybersecurity teams to integrate vulnerability management, incident reporting, and resilience testing aligned with federal guidance
• Produce governance and risk dashboards tracking control maturity, software risks, and compliance with OSFI B 13
• Report on key risk indicators, remediation activities, and governance outcomes to senior leadership
• Continuously refine the Software Governance Framework to reflect updates to OSFI guidance, including intersections with other guidelines such as B 10 and E 21

• Bachelors degree in Information Technology, Cybersecurity, Risk Management, or related field
• 3-7 years experience in technology risk, software governance, cybersecurity, or IT compliance
• Strong understanding of OSFI regulatory guidance, supporting frameworks
• Experience developing governance frameworks, policies, controls, and maturity models
• Experience with GRC tools (e.g., ServiceNow, Archer, OneTrust)
• Knowledge of third party risk frameworks and regulatory requirements
• Service Now Module
• Experience with CMDB
• Governance/Audit -- Standards 031
• SAM pro module experience
• Project Co-ordination
• Team Player/Communication skill
• Self-starter/creative thinker

Background screening is required as part of the onboarding process. The type of screening required (criminal, credit or other verifications) will vary based on the position and client requirements.

We use AI technology as part of our application review process to assist with screening and assessment. All applications are also reviewed by our recruitment team.

If you are a motivated professional looking to contribute to a leading team, please submit your resume outlining your qualifications and experience relevant to this role. Robertson & the clients we represent value diversity and are committed to creating an inclusive workplace. We invite all qualified individuals to apply.

Robertson & the clients we represent are equal opportunity employers, committed to diversity and inclusion. Robertson is a certified diverse supplier and actively seeks to foster a representative and inclusive workforce. We welcome applications from all qualified individuals, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, Aboriginal status, or any other legally protected factors. We champion building a diverse and inclusive environment.