Senior IT Risk Analyst (Global Security)

Join to apply for the Senior IT Risk Analyst (Global Security) role at RBC

3 days ago Be among the first 25 applicants

The Senior IT Risk Analyst will perform risk-based testing activities that independently evaluate the design and effectiveness of IT controls and assist with the enhancement and execution of IT Control Testing and Monitoring. This role primarily supports the identification and mitigation of IT and regulatory risks and operational issues, and helps maintain operational and IT control procedures. It is an advanced senior position requiring wide-ranging experience, serving as an expert in the discipline, with opportunities to work across the organization.

• Internal Control Testing: Participate in all phases of the internal control monitoring process, including planning, testing, evaluating risk, identifying controls, developing conclusions, writing reports, and maintaining work papers.
• Execute Control Testing: Perform risk-based assessments of IT and Operational Controls, document work adhering to standards, and potentially act as lead tester.
• Conduct Concurrent Control Testing Engagements: Collaborate across multiple testing engagements, ensuring timely completion and escalating issues as needed.
• Subject Matter Expertise: Advise stakeholders on control documentation and testing, ensuring compliance with policies and regulations.
• Control Deficiency Management: Log, manage, and track deficiencies, assess remediation plans, and verify corrective actions.
• Stakeholder Collaboration: Build relationships across business units, acting as a trusted advisor, and liaising with Internal Audit when required.

• Degree in Computer Science, Engineering, or related field; certifications like CRISC, CISA, or CISSP preferred.
• Minimum 5 years in Info/Cyber Security, IT Risk Management, or related fields, with at least 3 years in controls testing or audit.
• Strong organizational and project management skills, results-oriented, deadline-driven.
• Excellent written and oral communication skills.
• Strong analytical skills and understanding of stakeholder expectations.
• Knowledge of the financial services industry or technology sector, including regulatory environments.

• Knowledge of industry frameworks like ISO27001, NIST standards, COBIT.
• Familiarity with OSFI, FINRA, SEC, MSRB, FRBNY, OCC regulations.
• Experience with cybersecurity and IT risk management.
• Big Four consulting or audit experience in IT risk.

We offer a comprehensive Total Rewards Program, leadership support, meaningful work, a collaborative environment, world-class training, flexible work options, and challenging opportunities.

Business Continuity, Cyber Security Management, Firewall Management, IT Risk, IT Network Security, IT Standards, Problem Management, Process Management, Risk Assessments, Technical Writing, Threat Management

Address: 335 8 AVE SW, CALGARY

City: CALGARY

Country: Canada

Work hours/week: 37.5

Employment Type: Full time

Platform: TECHNOLOGY AND OPERATIONS

Job Type: Regular

Pay Type: Salaried

Posted Date: 2025-01-24

Application Deadline: 2025-05-30

Applications accepted until 11:59 PM the day prior to the deadline.

At RBC, we value diversity and inclusion, fostering a respectful workplace where employees can thrive, innovate, and grow professionally. We are committed to policies that support respect, belonging, and opportunity for all.

Join our Talent Community to stay informed about career opportunities, tips, and events. Learn more at jobs.rbc.com.