Job Description

What is the Opportunity?

We are seeking an experienced Senior Manager – Audit & Regulatory Governance Specialist to oversee audits coordination, regulatory reporting, and control governance across key technology and operational domains at PB&DT (Personal Banking & Digital Technology). This role serves as a critical link between internal stakeholders, auditors, and regulators, ensuring the organization maintains a strong posture in compliance, transparency, and control effectiveness. The successful candidate will bring strong risk management, audit readiness, and regulatory engagement expertise, along with the ability to challenge, coordinate, and drive accountability across multiple teams.

What will you do?

• 1B Reviewer for Digital’s Findings – Act as first line of challenge for Personal Banking & Digital Ttechnology risk findings by reviewing and validating content, assessing impact and likelihood, evaluating compensating controls, and ensuring appropriate remediation or acceptance decisions with realistic timelines.

• KRI Compliance Monitoring and Governance – Oversee Key Risk Indicators (KRIs) to ensure compliance with enterprise standards, monitor performance against thresholds, and drive results by escalating breaches where necessary to hold stakeholders accountable.

• Internal Audit Coordination and Governance – Act as the risk lead during internal audit engagements, managing direct and indirect audit reviews. Ensure timely responses, accurate evidence submission, and proper remediation of findings. Provide governance oversight to track issues and drive accountability.

• External Audit Management – Support and coordinate external audits by regulators, external audit firms, and partner institutions. Ensure all audit requirements are met, findings are addressed, and compliance is maintained.

• SOCx / SOC1 Coordination and Governance – Oversee the governance of SOCx & SOC1 reporting, including evidence collection, validation of controls, and timely delivery of reports to stakeholders and external parties.

• Crown Jewels Application Annual Controls Testing – Manage the annual controls testing program for critical (“Crown Jewel”) applications, ensuring controls are thoroughly assessed, deficiencies are remediated, and compliance standards are met.

• Regulatory Risk Reporting (US CUSO & Canada OSFI) – Lead the preparation and submission of Risk Management reporting to U.S. CUSO and Canadian OSFI regulators. Ensure accuracy, transparency, and compliance with jurisdictional regulatory requirements.

• LeanIX Data Quality Governance – Oversee application inventory data quality on LeanIX and IT finance management such as Apptio cost for retiring applications. Ensure data integrity to support regulatory, audit, and financial reporting.

• Application & Infrastructure Control Assessment Governance – Coordinate and govern the execution of application-level and infrastructure-level control assessments.

• NPID Password Compliance Reporting – Monitor and govern reporting of password compliance for Non-Personally IDs (NPIDs), ensuring adherence to policy requirements and timely remediation of exceptions.

• Risk and Control Self-Assessment (RCSA) Management – Oversee the identification, assessment, and documentation of key risks and controls to ensure effectiveness and compliance for the RCSA process.

• Interpersonal Relationship Management – Develop and maintain strong relationships with risk and operational partners.

What do you need to succeed?

Must-have

• Undergraduate degree in business, risk management, information technology, or related field, or equivalent work experience.
• A minimum of 5 years of experience in audit coordination, regulatory reporting, technology risk management, audit or control assurance roles, within financial services or technology environments.
• Strong understanding of audit frameworks (internal audit, external audit, SOC reporting, regulatory examinations).
• Experience with regulatory reporting to OSFI, CUSO, and other financial/technology regulators is an asset.
• Strong writing and oral communication, presentation, and storytelling skills, and the ability to determine the information and communication needed to keep stakeholders and team members well informed.

Nice-to-have

• Professional certification(s) related to information risk management and/or information security such as CRISC, CISA, CISSP, CIA, AIGP.
• Knowledge of Personal Banking Technologies/Financial Services Industry.
• Knowledge of Tableau, Confluence, and JIRA.
• Knowledge of GRC Tools such as Archer, ServiceNow.
• Strong experience responding to and/or participating in regulatory requests and exams.
• Experience in large, matrixed organizations.

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• Flexible work/life balance options

Job Skills

Audit Assurance, Audit Assurance, Audit Controls, Audit Management, Audits Compliance, Audit System, Communication, Critical Analysis, Critical Thinking, Cyber Incident Response, Cyber Investigations, Cyber Operations, Cyber Risks, Cyber Security Management, Cyber Threat Analysis, Cyber Threat Modeling, Data Classification, Data Controls, Data Gathering Analysis, Decision Making, Financial Regulation, Forward Thinking, Industry Knowledge, Information Technology (IT) Risk, Interpersonal Relationship Management {+ 11 more}

Additional Job Details

Address:

RBC WATERPARK PLACE, 88 QUEENS QUAY W:TORONTO

City:

Toronto

Country:

Canada

Work hours/week:

37.5

Employment Type:

Full time

Platform:

TECHNOLOGY AND OPERATIONS

Job Type:

Regular

Pay Type:

Salaried

Posted Date:

2025-10-03

Application Deadline:

2025-10-31

Note**:** Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

I****nclusion and Equal Opportunity Employment

At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.