Senior Associate, Information Compliance Risk Management

About The Position

Requirements

• Bachelor’s degree (or equivalent combination of education, training, and experience).
• Typically, 2–5 years of relevant experience in compliance, governance/risk management, audit, technology risk, privacy, or financial services operations.
• Working knowledge of compliance concepts and the role of second-line oversight (risk assessment, monitoring, testing, issue management).
• Familiarity with privacy principles and records retention concepts, project management, exposure to data governance, information protection, or control environments is beneficial.
• General understanding of how regulatory obligations translate into policies, procedures, controls, and evidence.
• Strong analytical thinking and critical reasoning; ability to identify patterns, assess control effectiveness, and articulate risks clearly.
• Demonstrated ability to produce high-quality documentation and structured workpapers.
• Strong written and verbal communication skills; capable of preparing concise summaries and presenting findings to stakeholders.
• Ability to manage multiple priorities, meet deadlines, and work independently while collaborating effectively across teams.
• High attention to detail with the ability to maintain a “big picture” perspective.
• Sound judgment, discretion, and ability to maintain confidentiality.
• Proficiency with MS Office (Word, Excel, PowerPoint, Outlook); comfort producing reports, trackers, and presentations.
• Risk-based mindset focuses oversight on what matters most and can explain “why it matters.”
• Execution excellence: reliable follow through, structured documentation, and organized evidence management.
• Stakeholder partnership: works effectively across Compliance, Operations, Technology, and business lines.
• Clear communication: translates complex requirements into practical language and actionable outcomes.
• Continuous improvement: identifies process enhancements and contributes to program maturity.

Nice To Haves

• Experience in securities and/or banking environments is an asset.
• Experience with metrics reporting, and dashboards is an asset.

Responsibilities

• Assist in executing risk assessments, monitoring activities, and second-line oversight routines to evaluate the design and effectiveness of controls across Privacy, Books & Records, and regulatory obligations.
• Support the development and execution of testing/quality assurance protocols for key risks and controls (e.g., sampling, evidence collection, control walkthroughs, and documenting results).
• Help maintain and improve quality assurance processes that detect and address potential compliance gaps.
• Monitor regulatory developments and support applicability assessments for changes impacting Privacy, data governance, and records retention.
• Maintain a centralized inventory of regulatory obligations, program dependencies, and related internal controls. Assist with mapping policies/controls to regulatory obligations and control frameworks.
• Support the review of compliance policies, standards, procedures, and control documentation to ensure alignment with enterprise governance.
• Assist in coordinating updates and communications when program changes are required due to regulatory developments or business initiatives.
• Contribute to risk-based recommendations that balance regulatory expectations with operational realities.
• Compile and analyze compliance metrics (e.g., testing results, issue status, remediation progress, training completion) and contribute to dashboards/scorecards for committees and leadership visibility.
• Prepare clear written summaries, presentations, and briefing materials for management, including trend analysis and key risk indicators.
• Maintain accurate records and evidence repositories to support program governance and audit readiness.
• Coordinate with business lines, Technology, Data Governance, and Risk partners to facilitate oversight activities and obtain required artifacts on schedule.
• Support preparation for and response to regulatory exams, audits, and inquiries, including evidence collection, tracking requests, and documenting outcomes.
• Participate in meetings and working sessions to ensure actions, risks, and decisions are captured and progressed.
• Assist with developing and maintaining compliance training content and records (e.g., program specific guidance, process reminders, targeted refreshers).
• Promote a culture of compliance by reinforcing expectations, facilitating follow-ups, and helping operational teams understand compliance impacts.
• Perform other duties and responsibilities as assigned.

Benefits

• flexible workstyles
• competitive compensation and benefits package
• Health Benefits
• RRSP Matching Program
• Employee Stock Purchase Plan
• Paid Time Off
• Volunteer Days
• Discretionary Bonuses
• Tuition Reimbursement