Senior Manager, Cloud Risk Management and Governance (FE041)

Senior Manager, Cloud Risk Management and Governance (FE041)

17 Dec

17 Dec



Senior Manager, Cloud Risk Management and Governance

What is the opportunity?

RBC is on a mission to reimagine the banking experience as a digitally enabled relationship bank through adoption and implementation of transformative initiatives including Public and Private Cloud platforms. If you are passionate about technology and looking for a chance to make a difference and willing to embrace change, then our team is looking for you.

The Cloud governance & compliance program for both Public & Private Cloud is aimed to establish and maintain a framework to ensure that Cloud strategies are aligned with and support the business objectives, Cloud risks are managed,

and Cloud implementation and operations are consistent with applicable laws and regulations through adherence to policies and internal controls.

Working within Technology Infrastructure Risk team, you will provide operational risk support services to the Cloud program to ensure that Cloud risks are identified, reported, managed and monitored on an on-going basis.

This role requires project management, facilitation and coordination with external/internal auditors and key stakeholders across the enterprise.

What will you do?

- Support the development of Cloud governance strategies and ensure alignment with RBC standards, public & private Cloud business objectives, consistent with regulatory requirements.

- Identify, assess, validate, monitor, remediate, and report on Cloud risk across the enterprise. This include conduct of periodic Quantitative Risk Assessments (QRAs) for the Cloud platforms and the associated components.

- Identify risks, track and produce weekly risk report to senior management on Cloud performance and risk metrics (KPI and KRI). Work with the Cloud teams to address areas that are not achieving the established appetite.

- Support the Cloud teams in the implementation of Cloud policy, standards, guidelines, tools, and documentation based on industry best practices and compliance requirements, for consistent execution and risk management; maintain the Cloud Control Objectives (CCOs) for public and private Cloud and ensure that corresponding control activities are documented and assessed periodically as part of Quantitative Risk Assessment Framework.

- Interact with application teams and business leaders to ensure required awareness and accountability for Cloud risk treatment.

- Act as a key contact for the Cloud program in coordinating responses to regulatory examinations and Internal or external audit reviews. Coordinate the planning and remediation activities for any gaps identified through the regulatory or audit reviews by collaboration with key stakeholders.

- Validate that each existing application hosted on the Cloud platforms have gone through the Cloud Governance Process. For material applications hosted on the Cloud, ensure that they are re-validated through the governance process at a specified interval.

- Support Tech Infrastructure Risk Operations at the Cloud Council to review Patterns & Applications that are being migrated to the cloud and provide feedback based on the application adherence to the Cloud governance requirements.

What do you need to succeed?

Must Have:

- Bachelor’s degree in Engineering or Computer Science or equivalent. along with 5+ years of technology domain experience in information technology, risk management or risk assurance in the financial services industry; 2+ years of experience in an operational or governance role with AWS, Azure or Google

- Strong knowledge of main Information Security standards and framework (NIST series, ISO 27000 series, Cloud Security Alliance, etc.); experience on regulatory compliance programs (like OSFI, GDPR, FedRAMP/ FISMA, HIPAA, SOC 2, PCI, etc.) and audit procedures

- Maturity level and skill/judgment to be able to deal effectively with senior management and operational risk groups throughout the organization.

- Good communication (verbal and written) skills, including strong appreciation of relationship management; sound problem solving, analytical (including qualitative analysis), research, and quantitative skills.

- Demonstrated expertise in a broad range of Information Security and Risk Management principles and practices.

- Industry recognized qualifications and certifications in Cloud Security such as CCSK, CCSP or similar Cloud certification

Nice To Have:

- Deep knowledge of Operational practices across RBC specific to T&O;

- Strong knowledge of RBC’s organization and compliance requirements

- Strong organizational awareness

- Facilitation skills and practices

- Self-discipline and organized with proven time management skills

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

- A progressive career path in technology risk management and cyber security risk management.

- A comprehensive Total Rewards Program including bonuses and flexible benefits, and competitive compensation.

- Leaders who support your development through coaching and managing opportunities

- Ability to make a difference and lasting impact

- Work in a dynamic, collaborative, progressive, and high performing team

- A world-class training program in financial services

Learn more about RBC Tech Jobs

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at


City: Toronto

Address: 330 Front Street West

Work Hours/Week: 37.5

Work Environment: Office

Employment Type: Permanent

Career Level: Experienced Hire/Professional

Pay Type: Salary + Variable Bonus

Required Travel(%): 0-25

Exempt/Non-Exempt: N/A

People Manager: No

Application Deadline: 07/24/2021

Platform: Technology and Operations

Req ID: 376399

Ad Code(s):

The original job offer can be found in Kit Job:

Reply to this offer

Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.

Subscribe to this job alert:
Enter Your E-mail address to receive the latest job offers for: senior manager, cloud risk management and governance (fe041)
Publish a new Free Offer
Need to publish an offer? With more than 1 million unique users per month, you will find the ideal candidate for your company instantly, what are you waiting for!
Publish Now

Subscribe to this job alert