Sr. Audit Manager-Cyber IT Risk

Royal Bank of Canada-posted 9 months ago
$111,408 - $189,738/Yr
Full-time • Senior
Credit Intermediation and Related Activities
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Senior Audit Manager (SAM) of Cybersecurity and IT Risk Management will support the Director IA, CNB Cybersecurity and IT Risk Management, and the Senior Director, IA, US Technology in providing independent, objective assurance over the design and operation of CNB's IT risk management practices, governance processes and the system of internal controls. The position will facilitate audit execution relating to Cybersecurity and IT Risk Management. This includes leading and executing audit activities with an IT audit scope where there is an impact to CNB and its subsidiaries / management affiliates. Examples of audit subject matter includes cybersecurity operations, data protection and data privacy, identity and access management, IT risk management, security architecture and engineering, cloud computing, IT risk management, network securities, vulnerability management, API security, etc. This position will also provide support in responding to external auditors and US regulators (FRBNY, OCC) and to meet the evolving demands of the US regulatory environment and heightened expectations of internal audit. This includes the coordination of IT related regulatory continuous monitoring, coordination of IA responses to US regulatory examinations, and the verification of CNB IT regulatory issues. Additionally, the position is responsible for maintaining and executing continuous monitoring program in accordance with audit methodology and taking into consideration industry development, emerging risks, and regulatory changes and expectations.

  • Plans, leads and executes on the annual Audit Plan for CNB IT Cybersecurity and IT Risk Management audit universe, ensuring that audits conform to local and global regulatory and internal audit requirements.
  • Supervise and implement the execution of the audit plan and ensure effective audit practices for traditional and continuous audits.
  • Collaborate with broader Global RBC and CUSO IT teams and departments to achieve the plan (where needed).
  • Make recommendations to clients on control deficiencies and follows up to ensure significant deficiencies are corrected.
  • Assist business management to develop appropriate action plans to address identified deficiencies, and ensure corrective actions are implemented in a timely manner.
  • Plan and execute complex and confidential/special audit projects enterprise wide as requested by senior management of the Bank.
  • Communicate trends in risk and control issues to senior management on the results of ongoing reviews of the businesses that are key relationships.
  • Provide support for CNB IT and US-wide regulatory requests, responses and meetings.
  • Provide leadership, coaching, performance management and personal development support.
  • Raise the technical knowledge of the group through various courses, seminars and in-house training.
  • Build, direct, counsel, and instruct staff assigned to an engagement and review audit plan, findings and reports for sufficient scope and for accuracy.
  • Develop capability of team use of analytic tools to widen scope of assurance.
  • Bachelor's Degree or equivalent.
  • Minimum 7 years banking/audit experience within Information Technology, with Cybersecurity and Infrastructure audit experience.
  • Minimum 5 years of business experience in a financial institution or technology company, dealing with multiple business platforms, business processes, geographies, and legal entities.
  • Minimum 5 years of Audit experience (strategic planning through reporting) in a senior leadership role.
  • In-depth knowledge of financial services banking technology and related risks (e.g. cloud technologies, IT operations, data center services, storage & databases, server virtualization, cybersecurity operations, data privacy, data protection, cryptography, data loss prevention).
  • In-depth knowledge of US regulatory requirements, and industry best practices, including NIST Cybersecurity Framework.
  • Advanced ability to translate technical control issues into non-technical explanation.
  • Familiar with US Regulatory environment.
  • Ability to work in a dynamically changing environment and leading people through modernization from traditional auditing to focus on data analytics.
  • Experience with identifying the risks associated with new services and/or routines, products and to formulate practical audit procedures.
  • Experience developing predictive hypotheses for data analytics, and directing data scientists.
  • Experience interpreting data extracted from Advanced Analytics.
  • Experience in incorporating data analytics into the traditional audit programs and continuous auditing.
  • Experience leading integrated business audits with technology auditors.
  • Current working knowledge of Internal Audit practices, policies, procedures and systems.
  • Demonstrated experience in leading in a matrixed organization with proven ability to multitask and prioritize activities, across borders and cultures.
  • Experience as a project manager.
  • CISA - Certified Information Systems Auditor.
  • CISM - Certified Information Security Manager.
  • CIA - Certified Internal Auditor.
  • CISSP - Certified Information Systems Security Professional.
  • Starting base salary: $111,408 - $189,738 per year.
  • Exact compensation may vary based on skills, experience, and location.
  • This job is eligible for bonus and/or commissions.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service