Job Description

What is the opportunity?
We are looking for a seasoned Cyber Risk and Compliance professional to join our team to help Cyber Technology Office to implement exciting control assurance initiatives. This role is responsible for contributing to CTO strategic plans, provide sound risk advisory and compliance services, to help CTO to navigate the ever-evolving regulatory landscape. The role will collaborate, develop, lead, communicate and execute activities to ensure GCS objectives are accomplished.
What will you do?

• Implement control design and operational testing and assurance framework, including but not limited to Cyber security infrastructure domains (Network Security, Cloud Security, Endpoint Security, Vulnerability Scanning, Security DevOps, Security integration)
• Advocate for information risk culture, increasing awareness on identifying potential control/operational gaps, process improvement opportunities, potential risks, and adequately managing them.
• Ensure current Security Controls assurance tools provide complete coverage over all applicable technologies/assets.
• Assist the teams through Risk documentation for remediation and acceptance following Enterprise best practices while maintaining an overall compliance estate as per the defined guidelines.
• Partner with stakeholders to implement control testing/monitoring automation where possible, driving efficiencies for coverage/assurance.
• Help develop and build a centralized control assurance monitoring dashboard for all security controls (i.e. KRI reporting)
• Plan and develop control testing program and appropriate procedures for other control effectiveness in accordance with internal policies, IIA Standards, and relevant laws and regulations
• Act as liaison between various stakeholders and Audit/Regulators to meet the requirements during different engagements.

WHAT DO YOU NEED TO SUCCEED?
Must-have

• 5+ years of information security and information risk experience.
• Strong ability to perform IT risk assessments following a defined Risk Management framework, standards, policies, and industry best practices.
• Creative problem-solving and analytical skills with the proven ability to exercise flexibility and judgment while partnering with stakeholders at different levels of the organization.
• Ability to challenge current IT control landscape, looking to increase efficiencies and drive changes on existing processes.
• Experience working with regulators and internal/external auditors (Statutory Audit, SOX, SOC 1 and 2 engagements) effectively and helping stakeholders with remediation plans

Nice-to-have

• Knowledge of RBC's Policies and Standards and its alignment to IT controls and active participation during Regulatory and Audit engagements
• Strong communication skills and ability to explain highly technical information to drive/influence decisions across stakeholders.
• Strategic thinker with excellent interpersonal skills to work across technical and executive stakeholders
• CISSP, CISA, CRISC, CCSK, CISM are considered assets.

What's in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services
• Flexible work/life balance options
• Opportunities to do challenging work

#LI-POST
#TECHPJ
Job Skills Critical Thinking, Cyber Security Management, Decision Making, Detail-Oriented, Information Security Management, Information Technology Security, Interpersonal Relationship Management, IT Security Architecture, Performance Management (PM)
Additional Job Details
Address: 330 FRONT ST W:TORONTO
City: Toronto
Country: Canada
Work hours/week: 37.5
Employment Type: Full time
Platform: TECHNOLOGY AND OPERATIONS
Job Type: Regular
Pay Type: Salaried
Posted Date: 2025-07-04
Application Deadline: 2025-11-17
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at .

Skills Required