×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security IT Business Analyst

Senior Cyber Security and IT Risk Management Analyst

Job in Toronto, Ontario, M5A, Canada
Listing for: 0000050007 Royal Bank of Canada
Full Time position
Listed on 2025-12-31
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, IT Business Analyst
Job Description & How to Apply Below

Job Description

What is the opportunity?The Senior Cyber Security and IT Risk Management Analyst role is essential in supporting the identification and mitigation of operational, IT, and regulatory risks. In this role, you will greatly contribute towards the implementation of WMT initiatives aimed at improving technology operations risk management practices. This is an advanced senior position, offering opportunities to work across the organization and make a significant impact.
What will you do?

  • Risk Campaigns: End-to-end planning and execution of risk campaigns as required. Identify, develop, and manage automation solutions to streamline evidence collection for WMT risk campaigns, including audit related initiatives. Leverage advanced technologies including GenAI to design, develop, and optimize high-quality prompts that automate evidence collection processes, ensuring accuracy, compliance, and efficiency in audit, regulatory, or investigative workflows.

  • Process Improvement for Control Gaps: Plan, implement, and manage initiatives to address control gaps in existing/new products and projects. Collaborate with cross-functional teams to design robust processes that mitigate risks and ensure alignment with risk standards.

  • Audit and Regulatory :
    Manage audit and regulatory initiatives, ensuring timely and effective responses to inquiries as well as resolution of audit/regulatory findings. Provide recommendations in compliance to standards to support organizational adherence to internal and external requirements. Prepare high quality documentation and presentation materials as needed.

  • Collaboration
    :
    Establish and maintain strong working relationships across various business units. Collaborate with various groups to define and achieve deliverables, acting as a trusted advisor for our application teams. Collaborate and liaise with 2

    LOD and 3

    LOD (Internal Audit) when required

  • Stakeholder Management: Serve as a trusted advisor, advising stakeholders on control documentation and testing, ensuring compliance with organizational policies, regulatory requirements, and industry standards.

  • Maintain a thorough understanding of external technology and cybersecurity trends, emerging technologies, and internal technology and cyber risk management approaches.

  • Maintain thorough understanding of governing policies and standards, IT control testing methodologies, and regulatory and compliance standards.

    • What do you need to succeed? Must Have:

  • Bachelor’s degree in a relevant discipline such as Computer Science, Business, or a related field with transferable skills

  • 4+ years’ experience in Information/Cyber Security, IT Risk Management, IT Operations, or Technology. Ideally, within the financial services industry, a public accounting firm, or a financial institutions regulator

  • Proven experience with Compliance and Industry frameworks—such as ISO 27001, NIST 800-53, NIST CSF, NIST 800-171, or COBIT

  • Knowledge of OSFI, FINRA, SEC, MSRB, FRBNY and OCC rules and regulations

  • Strong organizational, project management, and time management capabilities are essential. You must be deadline-driven and results-oriented, able to meet high-quality standards while managing multiple tasks and deadlines

  • Strong written and oral communication skills are essential. Must communicate effectively and timely with stakeholders, understand their needs, and present information clearly and persuasively

    • Nice To Have:

  • Industry-recognized certifications in Information Security or Risk Management (e.g., CISA, CRISC, CISSP)

  • Experience in crafting precise, context-aware prompts to guide GenAI models for evidence extraction, categorization, and summarization

  • Prior experience in financial services, technology, or regulatory environments

    • What’s in it for you?We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation,…

    • Position Requirements
    10+ Years work experience
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search