Director, Cyber and Technology Risk Reporting - Royal Bank of Canada
Job Summary
Job Description
What is the opportunity?
The Director of Cyber and Technology Risk Reporting is responsible for leading the design, implementation, and continuous improvement of enterprise-wide reporting for cyber and technology risk. This role ensures that executive management and the Board receive timely, accurate, and actionable insights into the organization’s cyber and technology risk posture.The Director plays a critical role in enabling effective risk-informed decision-making across the second line of defense.
What will you do?- Executive and Board Reporting
- Produce senior management and board-level reporting summarizing key cyber and IT risks, incidents, control performance, and emerging threats.
- Translate technical risk data into business-relevant narratives for senior leadership, including CRO and Board Risk Committees.
- Risk Reporting Strategy
- Integrate with the enterprise risk reporting strategy, aligning with risk appetite, regulatory expectations, and industry best practices.
- Define and maintain reporting standards, data definitions, and visualization formats across cyber and tech risk domains.
- KRI/KPI Governance
- Partner with risk owners and domain risk leads to monitor and provide insight into breaches of risk appetite, trends and risk themes.
- Risk Aggregation & Thematic Analysis
- Aggregate cyber and technology risk data across business units, geographies, and systems to identify systemic risks and concentration areas.
- Conduct trend and root cause analysis of incidents, vulnerabilities, audit issues, and control testing results.
- Data & Tool Integration
- Partner with technology teams to integrate reporting with GRC platforms (e.g., Archer, ServiceNow, MetricStream) and data lakes.
- Manage the execution of the critical application identification process across the global organization.
- Technology Risk Management, Operational Risk Management, Cybersecurity, IT Governance
- Audit, Compliance, Regulatory Affairs
- GRC Platform Owners, Data Management Office
What do you need to succeed?
Must-have:
- University degree, or equivalent
- 7+ years in the financial services or other regulated industries
- 7+ years of experience in technology risk and cyber risk
- 5+ years of experience with an accountability for risk reporting, metrics, or analytics
- Strong understanding of risk frameworks: NIST CSF, ISO 27005, COBIT, FAIR, or COSO
- Proficiency in data visualization tools (e.g., Power BI, Tableau), GRC tools, and analytics platforms
- Excellent communication skills with experience presenting to senior management
- Bachelor’s or Master’s in Cybersecurity, Information Systems, Risk Management, or related field
Nice-to-have:
- Proficiency in data analytics and visualization tools (e.g., Power BI, Tableau, Excel, SQL).
- Strong understanding of IT risk management frameworks and compliance standards.
- Knowledge of cybersecurity risks, IT controls, and risk assessment methodologies.
- Ability to translate complex data into clear, actionable insights.
- Excellent communication, reporting, and stakeholder management skills.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation
- Leaders who support your development through coaching and managing opportunities
- Work in a dynamic, collaborative, progressive, and high-performing team
- Opportunities to do challenging work
- Flexible work/life balance options
Job Skills
Data Gathering Analysis
Additional Job Details
Address:
20 KING ST W:TORONTO
City:
TORONTO
Country:
Canada
Work hours/week:
- 5
Employment Type:
Full time
Platform:
GROUP RISK MANAGEMENT
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-02-28
Application Deadline:
2025-05-14
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities.RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.