Senior Risk Manager, Technology Governance

At ATB, we exist to make it possible for our clients, team members and communities. Our purpose is more than aspirational. It's a real commitment we live every day through our values (what we call the ATB ID ).

Life at ATB is about more than work. In fact, we’re consistently recognized as one of Canada's top employers thanks to our high-care, high-performance culture, upheld by the three commitments we make to our team members :

Impact in action : No matter where you are in the organization, you're empowered to make an impact in the lives of our clients and communities.

Thrive together : We want you—the unique, authentic you—to feel safe and celebrated at work. We're on a continuous journey to build the most flexible and inclusive programs.

Ready for tomorrow : We want to enable your success through interesting and challenging work, performance enablement, and learning and development.

About the role

Hybrid : This position has a hybrid work arrangement. On average, this means 1 days on-site per week . Please note that this is subject to change due to business priorities.

As ATB’s next Senior Risk Manager , you will support the Director of Technology Governance in advancing ATB’s risk and compliance priorities. You will lead control testing and quality assurance initiatives in programs such as Controls Over Banking Regulatory Attestations (COBRA) and the 1st Line of Defense Regulatory Compliance Management (RCM). This role is critical to ensuring ATB’s regulatory obligations (e.g., Interac, Payments Canada) are met with precision, while maintaining the integrity of our enterprise control environment. You will also manage the control library, guide issue remediation, mentor team members, and drive program improvements through automation, innovation, and strong cross-functional collaboration.

Accountabilities

• Lead control testing and quality assurance initiatives within the Controls Over Banking Regulatory Attestations (COBRA) and 1st Line of Defense Regulatory Compliance Management (RCM) programs.
• Design and oversee risk-based test plans, evaluating control design and operating effectiveness in alignment with enterprise risk frameworks.
• Ensure regulatory compliance by identifying applicable obligations, assessing risk exposure, and advising on the implementation of compliance processes.
• Communicate testing and program outcomes and recommendations in a clear and concise manner, both orally and in written reports.
• Manage the control library, maintaining data accuracy, completeness, and alignment with governance standards.
• Monitor and guide the remediation of identified control issues, ensuring timely resolution and appropriate documentation in GRC systems.
• Advise internal stakeholders on control design, compliance obligations, and regulatory readiness.
• Develop and report on key performance indicators and risk metrics to inform program maturity and decision-making.
• Coach and mentor team members to support development in risk management practices and professional growth.
• Train new program stakeholders on risk processes, control testing, and regulatory requirements.
• Identify and recommend opportunities for process optimization, including automation and AI applications in risk and compliance functions.
• Champion a culture of governance excellence and continuous improvement across Technology and Business teams

Skills, experience & requirements

Technical & Professional Experience

• Minimum 5–7 years of experience in risk management, IT audit, regulatory compliance, or technology governance roles.
• Demonstrated expertise in control testing, regulatory compliance frameworks, and governance processes.
• Experience leading or supporting regulatory attestation programs (e.g., Interac, Payments Canada) or working with external / internal auditors.
• Strong knowledge of risk management frameworks (e.g., COSO, COBIT, ISO 31000), and governance tools (e.g., Metricstream, Archer, ServiceNow GRC, or equivalent).
• Proven ability to interpret and apply regulatory requirements and translate them into practical control solutions.
• Exceptional analytical skills with the ability to synthesize complex information and develop clear, actionable insights.
• Strong written and verbal communication skills, with experience presenting findings and recommendations to senior leadership.
• Proficiency in leveraging automation, data analytics, or AI in support of governance or risk program enhancements is considered an asset.

Education

• Bachelor’s degree in Business, Information Systems, Accounting, Risk Management, or a related discipline is required.

Certifications

One or more of the following designations strongly preferred :

Certified Information Systems Auditor (CISA)

• Certified Information Security Manager (CISM)
• Certified Internal Auditor (CIA)
• Certified Risk Management Assurance (CRMA)
• Chartered Professional Accountant (CPA)

Don’t meet all the requirements on the list?

A resume only goes so far in expressing who you are and the unique perspectives you bring. If you believe your skills and experience align with the role—but you might not check all the boxes—we want to hear from you. We encourage candidates from all work backgrounds, equity-seeking communities and experience levels to apply. If you’re seeking a career where your drive, perspective and growth are celebrated, we want to hear from you.

We’re dedicated to building a workforce reflective of those within our communities, and a culture where our team members are equipped with what they need to succeed—their way. Part of creating an inclusive workplace is recognizing our role in advancing Truth and Reconciliation. We are committed to meeting and exceeding the standards set out in the Partnership Accreditation in Indigenous Relations program created by the Canadian Council for Aboriginal Business.

What happens next?

If you are shortlisted, you’ll hear from us after the posting closes. Check out our How We Hire page to learn more about our hiring process. If you need any accommodations throughout this process, please let us know at [emailprotected]

Stay in touch

We’re excited that you’re interested in a career with ATB. Follow us on LinkedIn , Facebook and Instagram to learn more about what our team is up to.

J-18808-Ljbffr