Sr. Manager, Infrastructure & Risk Center of Excellence (COE)
Top Benefits
About the role
Job Description
What is the Opportunity?
The Sr. Manager, Infrastructure & Risk Center of Excellence (COE) will play a critical role in supporting a newly formed technology risk management (1A) team within the Bank’s Technology Infrastructure (TI) organization. This role will collaborate with IT departments (e.g. cloud, mainframe, database, middleware, operations, DR), enterprise risk and security teams and 2LOD to transform the existing 1st line risk practices and bring forward the TI organization’s risk profile. The position ensures compliance with regulatory, internal risk, and audit expectations while fostering a culture of proactive risk management across the IT organization and supporting the achievement of TI’s strategy.
What will you do?
- Develop and oversee the enhancement of the current IT risk assessment processes managed by the group, ensuring appropriate coverage of IT Risk Management framework and US and CAD regulatory requirements.
- Monitor emerging threats and trends within the technology landscape, including but not limited to, cyber, operational and third-party risks.
- Provide ongoing assessment of IT risk strategies, frameworks and processes to ensure continued alignment with emerging trends and regulatory expectations.
- Define, implement and monitor risk assessment methodologies and monitoring tools to identify technology related risks.
- Conduct regular risk assessments and gap analysis to identify potential weaknesses in IT controls and recommend appropriate remediation strategies.
- Collaborate with Controls Analysis & TI Risk COEs to ensure assessment processes are efficient while supporting the advancement of TI by driving smart, risk-based decisions by IT partners.
- Establish key metrics and reporting capabilities to effectively evaluate IT-related risks dependent on RBCs overall environment.
- Partner and build strong relationships with IT business partners to assist, educate and proactively identify risks associated with IT activities.
What do you need to succeed?
Must have:
- Minimum of 7 years in an IT Risk Management capacity, across any of the 3 lines of defense, with a strong focus on mitigation and remediation.
- Strong understanding of risk management frameworks and standards across the US or Canada (e.g., regulatory compliance, enterprise risk, internal controls, SOX, ITGC); expertise with UK and APAC regulators, considered beneficial.
- Understanding of various infrastructure and middleware platforms such as cloud, mainframe, middleware, database, operations.
- Demonstrated ability to design and implement processes to manage risk management and risk remediation work with delivery of actionable risk reporting.
- Exceptional relationship-building skills, with the ability to collaborate across diverse functions and levels of the organization.
- Strong analytical and problem-solving skills, with the ability to create scalable, repeatable processes that simplify risk management in IT operations.
- Passionate about improving the risk management experience while delivering on commitments and expectations from risk stakeholders.
- Experience managing and prioritizing multiple risk remediation projects simultaneously.
- Deep desire to support training and education of others and self.
- Industry framework knowledge, i.e., NIST, COBIT, FedRAMP, FFIEC.
Nice to have:
- Industry related certifications, i.e., CISA, CPA, CA, CRISC, CISM, CISSP etc.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
- Leaders who support your development through coaching and managing opportunities.
- Ability to make a difference and lasting impact.
- Work in a dynamic, collaborative, progressive, and high-performing team.
- A world-class training program in financial services.
#LI-POST
Job Skills
Business Continuity and Disaster Recovery (BCDR), Cost-Benefit Analysis (CBA), Cyber Security Management, Firewall Management, Information Security Management, IT Network Security, Operational Delivery, Problem Management, Process Management, Threat Management
Additional Job Details
Address:
RBC CENTRE, 155 WELLINGTON ST W:TORONTO
City:
Toronto
Country:
Canada
Work hours/week:
37.5
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-09-19
Application Deadline:
2025-10-31
Note**:** Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
I****nclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.
Sr. Manager, Infrastructure & Risk Center of Excellence (COE)
Top Benefits
About the role
Job Description
What is the Opportunity?
The Sr. Manager, Infrastructure & Risk Center of Excellence (COE) will play a critical role in supporting a newly formed technology risk management (1A) team within the Bank’s Technology Infrastructure (TI) organization. This role will collaborate with IT departments (e.g. cloud, mainframe, database, middleware, operations, DR), enterprise risk and security teams and 2LOD to transform the existing 1st line risk practices and bring forward the TI organization’s risk profile. The position ensures compliance with regulatory, internal risk, and audit expectations while fostering a culture of proactive risk management across the IT organization and supporting the achievement of TI’s strategy.
What will you do?
- Develop and oversee the enhancement of the current IT risk assessment processes managed by the group, ensuring appropriate coverage of IT Risk Management framework and US and CAD regulatory requirements.
- Monitor emerging threats and trends within the technology landscape, including but not limited to, cyber, operational and third-party risks.
- Provide ongoing assessment of IT risk strategies, frameworks and processes to ensure continued alignment with emerging trends and regulatory expectations.
- Define, implement and monitor risk assessment methodologies and monitoring tools to identify technology related risks.
- Conduct regular risk assessments and gap analysis to identify potential weaknesses in IT controls and recommend appropriate remediation strategies.
- Collaborate with Controls Analysis & TI Risk COEs to ensure assessment processes are efficient while supporting the advancement of TI by driving smart, risk-based decisions by IT partners.
- Establish key metrics and reporting capabilities to effectively evaluate IT-related risks dependent on RBCs overall environment.
- Partner and build strong relationships with IT business partners to assist, educate and proactively identify risks associated with IT activities.
What do you need to succeed?
Must have:
- Minimum of 7 years in an IT Risk Management capacity, across any of the 3 lines of defense, with a strong focus on mitigation and remediation.
- Strong understanding of risk management frameworks and standards across the US or Canada (e.g., regulatory compliance, enterprise risk, internal controls, SOX, ITGC); expertise with UK and APAC regulators, considered beneficial.
- Understanding of various infrastructure and middleware platforms such as cloud, mainframe, middleware, database, operations.
- Demonstrated ability to design and implement processes to manage risk management and risk remediation work with delivery of actionable risk reporting.
- Exceptional relationship-building skills, with the ability to collaborate across diverse functions and levels of the organization.
- Strong analytical and problem-solving skills, with the ability to create scalable, repeatable processes that simplify risk management in IT operations.
- Passionate about improving the risk management experience while delivering on commitments and expectations from risk stakeholders.
- Experience managing and prioritizing multiple risk remediation projects simultaneously.
- Deep desire to support training and education of others and self.
- Industry framework knowledge, i.e., NIST, COBIT, FedRAMP, FFIEC.
Nice to have:
- Industry related certifications, i.e., CISA, CPA, CA, CRISC, CISM, CISSP etc.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
- Leaders who support your development through coaching and managing opportunities.
- Ability to make a difference and lasting impact.
- Work in a dynamic, collaborative, progressive, and high-performing team.
- A world-class training program in financial services.
#LI-POST
Job Skills
Business Continuity and Disaster Recovery (BCDR), Cost-Benefit Analysis (CBA), Cyber Security Management, Firewall Management, Information Security Management, IT Network Security, Operational Delivery, Problem Management, Process Management, Threat Management
Additional Job Details
Address:
RBC CENTRE, 155 WELLINGTON ST W:TORONTO
City:
Toronto
Country:
Canada
Work hours/week:
37.5
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-09-19
Application Deadline:
2025-10-31
Note**:** Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
I****nclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.