Description
MGR IT AND RES RISK
WHAT IS THE OPPORTUNITY?
This role is responsible for the development and maturing of the 2nd line of defense (2LOD) Cyber, Technology, Business Continuity, and Operational Resilience Risk teams. This leader is the owner for all Cyber, Technology, Business Continuity, and Operational Resilience policies and standards across the bank and is responsible for providing independent oversight and challenge of all risk management activities in these domains ensuring that risks are sufficiently mitigated. The leader will continue to mature the banks 2nd line IT & Resilience risk management program in line with industry best practice, regulatory requirements and other RBC entities in the US. Manages a team of professionals who oversee all aspects of IT & Resilience Risk. Risk management emphasis includes: IT, Cyber, Business Continuity, and Operational Resilience enterprise governance, strategy, risk and compliance management, and regular reporting to the bank's governance committees. Participates in the planning and implementation of IT, Cyber, Business Continuity, and Operational Resilience controls for all material Projects. Provides oversight of the evaluation and selection of applications and systems and the design of underlying IT and Resilience risk governance processes. Makes recommendations and assists in the implementation of changes to work methods and procedures to make them more effective, or to strengthen controls, or reduce risk. Provides executive management and risk transparency to the Board and RBC through the bank's enterprise risk profile which aggregates IT and Resilience risks.
WHAT WILL YOU DO?
- Oversee IT & Resilience risk management practices covering all facets of the IT and Resilience Risk Frameworks; provide interpretation and counsel on policies.
- Responsible for leading the IT & Resilience risk management program. Provides technical and best practice guidance on IT & Resilience risk management, taking into account specific business platform and process complexities and issues.
- Manage the functions and team of professionals who oversee all aspects of IT & Resilience Risk.
- Provides input into the setting of risk appetite based on platform specific differences and specific business considerations.
- Develops and reports the quarterly enterprise IT & Resilience risk profiles.
- Reviews IT & Resilience control processes along with associated documentation, and reporting.
- Reviews key audit, regulatory and client due diligence to develop and communicate risk themes, and solutions to the business.
- Establish effective monitoring practices to ensure adherence to the IT & Resilience risk management frameworks and policies, and assist business in the identification of issues.
- Review and maintain all program policies and standards for alignment to US regulatory expectations such as the FFIEC Guidelines.
- Advise and collaborate with IT and the business on appropriate ways to strengthen controls in non-compliant areas.
- Advise and assist first line of defense in IT & Resilience Risk mitigation planning activities.
- Provide credible challenge to 1LOD colleagues, ensuring safeguard and risk mitigation measures are upheld in decision making and adherence to 2LOD policies and standards.
- Provide ongoing IT & Resilience Risk Management governance and direction for the technology production and operations business process environments.
- Manage, develop, and play a leadership role for staff. Develop a high-performing team. Manage the personnel processes for employees, including selection, training, performance management, development, and retention. Fosters an environment where colleagues are empowered and have the opportunity to develop and grow.
- Engage with domain leads for Information Technology, Information Security, Disaster Recovery, Business Continuity, Crisis Management, Operational Resilience, Infrastructure, Data Quality, Performance & Scalability, Change Management, and Application Development to provide technical domain advice, as appropriate.
- Work effectively with the bank's senior executives, RBC's IHC and GRM executives.
- Develop and maintain key business relationships in order to provide advice and oversight on new initiatives.
- Provides regular reporting of IT & Resilience risk as required by CNB's Board, RBC's IHC, and the CUSO governance committees.
- Responsible for the overall direction and success of the 2LOD IT & Resilience Risk Management program.
WHAT DO YOU NEED TO SUCCEED
Required Qualifications*
- Bachelor's Degree or equivalent
- Minimum 10 years in IT & Resilience Risk roles in Banking or Financial Services.
- Minimum 8 years in a Managerial/Supervisory role.
- Graduate degree in business or related discipline and / or MBA, CIA, or other professional related qualification.
- Extensive knowledge of and experience in IT & Resilience Risk Governance and Compliance.
- Solid understanding of City National Bank and RBC's USA region, including a breadth of business content experience across the platform and region.
- Strong leadership skills.
- Strategic mindset, with excellent knowledge and understanding of the financial industry.
- Highly developed ability for conceptual thinking.
- Excellent communication and presentation skills.
- Well-developed impact and influence skills.
- Proven track record of building strong relationships across business functions.
- Extensive knowledge and experience in regulatory guidance, most importantly for the OCC and FFIEC guidelines.
- Strong presentation skills involving large and of varying IT & Resilience background audiences; ability to adjust message and filter details based on audience.
- Demonstrated ability to interact effectively, internally and externally, with the most senior representatives of organizations, regulators and vendors.
- Strong Microsoft Excel, PowerPoint, and report writing skills, including the ability to evaluate the usefulness of data and use it in meaningful communication.
WHAT'S IN IT FOR YOU?
Compensation
Benefits and Perks
At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including:
- Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date
- Generous 401(k) company matching contribution
- Career Development through Tuition Reimbursement and other internal upskilling and training resources
- Valued Time Away benefits including vacation, sick and volunteer time
- Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs
- Career Mobility support from a dedicated recruitment team
- Colleague Resource Groups to support networking and community engagement
ABOUT US
Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us.
INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT
City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
*Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. careers.cnb.com accepts applications on an ongoing basis, until filled.
Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
Apply on company website
Find Connections via Linkedin
