Associate Director, Oversight & Reporting
Job Summary
Job Description
What is the Opportunity?
We are seeking a highly skilled and experienced Associate Director to join our Corporate Security team and lead the oversight and reporting functions for our Strategy, Oversight & Governance team within the Corporate Security Management program.
This individual will be responsible for providing strategic direction, guidance, and support to ensure the effective implementation and continuous improvement of security measures across the organization. The Associate Director will work closely with the second line of defense to align security efforts with risk management objectives and regulatory requirements.
The Associate Director, Oversight & Reporting will work closely with the first line of defense, internal and external auditors, regulators, and other stakeholders to ensure that the policies, standards, and controls are aligned with the global regulatory frameworks and best practices.
The role will also be involved in reporting, policy updates, and quarterly risk monitoring and reporting to senior management.
The role applies leadership skills and technical expertise to ensure that effective processes are in place to identify, manage, measure, monitor, and control risk. In addition, the role provides continuous improvement leadership with respect to risk management methodologies and practices.
If you are a strategic thinker, results-oriented leader, and thrive in a dynamic environment, we invite you to apply for this exciting opportunity to contribute to the success of our organization.
What will you be doing in this role?
• Strategic Oversight: Provide strategic leadership and oversight for the Corporate Security Management program, ensuring alignment with organizational goals, industry best practices, and regulatory requirements.
• Risk Management Alignment: Collaborate closely with the second line of defense functions, including risk management, compliance, as well as Internal Audit, to align security initiatives with enterprise risk management objectives and priorities.
• Process and Procedure Development: Develop, implement, and maintain security processes, procedures, and guidelines to operationalize security policies established by the second line of defense. Ensure alignment with industry standards and regulatory requirements while promoting efficiency and effectiveness in security management.
• Post-Incident Review and Analysis: Conduct post-incident reviews and analysis to evaluate the effectiveness of security controls, identify root causes of security incidents, and recommend improvements to prevent future occurrences. Utilize analytics tools and techniques to derive insights from security data, guiding decision-making and risk mitigation strategies. Collaborate with relevant stakeholders to ensure lessons learned are documented and incorporated into security processes and procedures.
• Oversight and Monitoring: Establish and maintain oversight mechanisms and monitoring processes to track security performance metrics, identify trends, and proactively address emerging security risks and threats. Utilize data analytics to monitor key security indicators and trends, providing actionable insights to enhance security posture.
• Reporting and Communication: Prepare and deliver regular reports and presentations to senior management, the board of directors, and other stakeholders on the status of the Corporate Security Management program, including key metrics, findings, and recommendations. Leverage data analytics to present complex security information in a clear and understandable manner.
• Stakeholder Engagement: Cultivate strong relationships and collaborate with internal stakeholders, including business units, IT, legal, and external partners, to ensure a coordinated and cohesive approach to security management. Utilize analytics to tailor security insights and recommendations to the needs of different stakeholders.
• Continuous Improvement: Drive continuous improvement efforts by conducting periodic reviews, assessments, and evaluations of security controls, processes, and procedures, and recommending enhancements as needed. Utilize data analytics to identify opportunities for optimization and efficiency gains in security operations.
What do you need to succeed?
Must have:
• Bachelor's degree in Information Security, Computer Science, Business Administration, IT Management or related field.
• Proven experience in a Governance, Risk and Compliance role
• Strong understanding of security frameworks, standards, and best practices (e.g., ISO 27001, NIST Cybersecurity Framework, GDPR).
• Proven experience in developing and implementing security processes, procedures, and guidelines in a corporate environment.
• Excellent communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels of the organization.
• Demonstrated ability to think strategically, analyze complex issues, and develop practical solutions to mitigate security risks.
• Experience with data analytics tools and techniques for security analysis and able to build a reporting program
Nice to have:
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CRISC (Certified in Risk and Information Systems Control) are desirable.
• Experience in financial services, healthcare, or other highly regulated and matrixed industries, ideally in a global organization is a plus.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services
• Flexible work/life balance options
• Opportunities to do challenging work
#LI-Hybrid
#LI-POST
Job Skills
Additional Job Details
Address:
330 FRONT ST W:TORONTO
City:
TORONTO
Country:
Canada
Work hours/week:
37. 5
Employment Type:
Full time
Platform:
Technology and Operations
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2024-04-29
Application Deadline:
2024-05-31
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
Job Description
What is the Opportunity?
We are seeking a highly skilled and experienced Associate Director to join our Corporate Security team and lead the oversight and reporting functions for our Strategy, Oversight & Governance team within the Corporate Security Management program.
This individual will be responsible for providing strategic direction, guidance, and support to ensure the effective implementation and continuous improvement of security measures across the organization. The Associate Director will work closely with the second line of defense to align security efforts with risk management objectives and regulatory requirements.
The Associate Director, Oversight & Reporting will work closely with the first line of defense, internal and external auditors, regulators, and other stakeholders to ensure that the policies, standards, and controls are aligned with the global regulatory frameworks and best practices.
The role will also be involved in reporting, policy updates, and quarterly risk monitoring and reporting to senior management.
The role applies leadership skills and technical expertise to ensure that effective processes are in place to identify, manage, measure, monitor, and control risk. In addition, the role provides continuous improvement leadership with respect to risk management methodologies and practices.
If you are a strategic thinker, results-oriented leader, and thrive in a dynamic environment, we invite you to apply for this exciting opportunity to contribute to the success of our organization.
What will you be doing in this role?
• Strategic Oversight: Provide strategic leadership and oversight for the Corporate Security Management program, ensuring alignment with organizational goals, industry best practices, and regulatory requirements.
• Risk Management Alignment: Collaborate closely with the second line of defense functions, including risk management, compliance, as well as Internal Audit, to align security initiatives with enterprise risk management objectives and priorities.
• Process and Procedure Development: Develop, implement, and maintain security processes, procedures, and guidelines to operationalize security policies established by the second line of defense. Ensure alignment with industry standards and regulatory requirements while promoting efficiency and effectiveness in security management.
• Post-Incident Review and Analysis: Conduct post-incident reviews and analysis to evaluate the effectiveness of security controls, identify root causes of security incidents, and recommend improvements to prevent future occurrences. Utilize analytics tools and techniques to derive insights from security data, guiding decision-making and risk mitigation strategies. Collaborate with relevant stakeholders to ensure lessons learned are documented and incorporated into security processes and procedures.
• Oversight and Monitoring: Establish and maintain oversight mechanisms and monitoring processes to track security performance metrics, identify trends, and proactively address emerging security risks and threats. Utilize data analytics to monitor key security indicators and trends, providing actionable insights to enhance security posture.
• Reporting and Communication: Prepare and deliver regular reports and presentations to senior management, the board of directors, and other stakeholders on the status of the Corporate Security Management program, including key metrics, findings, and recommendations. Leverage data analytics to present complex security information in a clear and understandable manner.
• Stakeholder Engagement: Cultivate strong relationships and collaborate with internal stakeholders, including business units, IT, legal, and external partners, to ensure a coordinated and cohesive approach to security management. Utilize analytics to tailor security insights and recommendations to the needs of different stakeholders.
• Continuous Improvement: Drive continuous improvement efforts by conducting periodic reviews, assessments, and evaluations of security controls, processes, and procedures, and recommending enhancements as needed. Utilize data analytics to identify opportunities for optimization and efficiency gains in security operations.
What do you need to succeed?
Must have:
• Bachelor's degree in Information Security, Computer Science, Business Administration, IT Management or related field.
• Proven experience in a Governance, Risk and Compliance role
• Strong understanding of security frameworks, standards, and best practices (e.g., ISO 27001, NIST Cybersecurity Framework, GDPR).
• Proven experience in developing and implementing security processes, procedures, and guidelines in a corporate environment.
• Excellent communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels of the organization.
• Demonstrated ability to think strategically, analyze complex issues, and develop practical solutions to mitigate security risks.
• Experience with data analytics tools and techniques for security analysis and able to build a reporting program
Nice to have:
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CRISC (Certified in Risk and Information Systems Control) are desirable.
• Experience in financial services, healthcare, or other highly regulated and matrixed industries, ideally in a global organization is a plus.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services
• Flexible work/life balance options
• Opportunities to do challenging work
#LI-Hybrid
#LI-POST
Job Skills
Additional Job Details
Address:
330 FRONT ST W:TORONTO
City:
TORONTO
Country:
Canada
Work hours/week:
37. 5
Employment Type:
Full time
Platform:
Technology and Operations
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2024-04-29
Application Deadline:
2024-05-31
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
Don’t miss out on new job vacancies!
Create a job alert for: IT Management, Toronto
It's free, and you can cancel email updates at any time