Manager, IT Controls Testing

About The Position

Requirements

• Typically between 5 - 7 years of relevant experience and post-secondary degree in related field of study or an equivalent combination of education and experience.
• General understanding of the business unit’s risk and regulatory requirements.
• Good understanding of control frameworks and audit methodologies.
• Advanced knowledge of process and/or project management.
• Deep knowledge and technical proficiency gained through extensive education and business experience.
• Verbal & written communication skills - In-depth.
• Collaboration & team skills - In-depth.
• Analytical and problem solving skills - In-depth.
• Influence skills - In-depth.
• Data driven decision making - In-depth.

Responsibilities

• Serve as a senior subject matter contributor in the review and testing of internal controls aligned to BMO’s Technology PRC framework, including test planning, execution, documentation, and issue assessment, with a focus on API Governance & Security, Container Management, Cloud Environments, Container/ Asset/ Patch/ Software Asset Management.
• Apply deep expertise in the PRC framework to support consistent interpretation of control expectations and testing practices across engagements and support testing teams and stakeholders on PRC aligned best practices, evidence standards, and control design/operating effectiveness considerations.
• Perform and support detailed risk and issue analysis, including assessment of root causes, triggers, impact, and downstream implications.
• Identify emerging risks, control themes, and trends observed through testing activities to inform engagement outcomes and support risk-based decision making.
• Provide specialized analytical and technical input to support issue resolution, risk interpretation, and stakeholder discussions, operating independently and handling non routine situations as required.
• Support capability and skill development within the function by sharing expertise, contributing to knowledge assets, and informally mentoring peers where appropriate.
• Monitor engagement progress and track testing execution and deliverables, proactively identifying risks to timelines, quality, or scope and raising concerns as needed.
• Take accountability for assigned responsibilities and remain flexible to support broader or ad hoc accountabilities aligned to BRAC Tech objectives.
• Execute and drive IT controls testing engagements using standardized methodologies, ensuring accurate, high‑quality, and well‑documented results.
• Prepare and maintain complete testing documentation, including test plans, work papers, evidence, and issue write‑ups.
• Analyze root causes of control issues and communicate findings, impacts, and recommendations clearly to stakeholders.
• Manage time, priorities, and competing deliverables to meet deadlines with minimal supervision.
• Executes testing to provide insights and recommendations on test results, findings, identified issues, re-performance testing, and continuous improvement insights.
• Executes testing, monitoring and operational activities of various complexity based on assigned portfolio ensuring adherences to established service levels and standards.
• Influences and negotiates to achieve business objectives.
• Assists in the development of strategic plans.
• Identifies emerging issues and trends to inform decision-making.
• Provides advice and guidance on control effectiveness, program compliance and issue descriptions.
• Supports the execution of strategic initiatives in collaboration with internal and external stakeholders.
• Builds effective relationships with internal/external stakeholders.
• Ensures alignment between stakeholders.
• Analyzes data and information to provide insights and recommendations.
• Leads or participates in defining the communication plan designed to positively influence or change behaviour; develops tailored messaging; and identifies appropriate distribution channels.
• Supports change management of varying scope and type; tasks typically focused on execution and sustainment activities.
• Manages the end-to-end test execution of designated programs/engagements.
• Provides input into the planning and implementation of operational programs.
• Executes and/or leads testing and fieldwork that is complex in nature and requires subject matter expertise.
• Reviews control and issue closure testing activities performed by team members to ensure accuracy.
• Executes identified test programs for a variety of specializations to support effective testing & monitoring of controls within business groups and across the Bank.
• Understands the business/group strategy and develops and maintains knowledge of end to end processes.
• Develops knowledge related to program and/or area of specialty.
• Develops and maintains effective relationships with internal & external business partners/stakeholders to execute work and fulfill service delivery expectations.
• Participates in planning and implementation of operational testing programs and executes within required service level agreements and standards.
• Executes work to ensure timely, accurate, and efficient service delivery.
• Ensures consistent, high quality practices/work and the achievement of business results in alignment with business/group strategies and with productivity goals.
• Analyzes root causes of any errors discovered to provide for effective communication of issues to appropriate parties.
• Creates and maintains adequate testing support documentation such as workpapers, testing reports, etc. to support the results of reviews including the write-up of findings/issues for reporting.
• Provides ongoing support to the continuous improvement process of the business unit.
• Focus is primarily on business/group within BMO; may have broader, enterprise-wide focus.
• Provides specialized consulting, analytical and technical support.
• Exercises judgment to identify, diagnose, and solve problems within given rules.
• Works independently and regularly handles non-routine situations.
• Broader work or accountabilities may be assigned as needed.
• Take measured risks while protecting the bank by applying our Risk Management Framework in the execution of your role, in line with our Risk Culture and within our approved Risk Appetite, making sound and risk informed decisions that align to business strategy, protect assets, and adhere to applicable policy documents (Frameworks, Policies, Standards, Procedures and Supporting documents), laws and regulations.

Benefits

• health insurance
• tuition reimbursement
• accident and life insurance
• retirement savings plans