Key skills
CloudServiceNowAIGenerative AIAgentic
About this role
Role Overview
- Provide independent second line challenge of first line risk assessments, controls, and risk decisions.
- Assess adequacy of technology, data, and operational risk practices against standards and regulatory expectations.
- Develop clear, evidence‑based second line risk opinions and escalate material issues with recommendations.
- Perform deep‑dive RCSA reviews and challenge risk ratings, control assertions, and completeness of assessments.
- Identify underassessed risks, weak controls, and cross‑assessment inconsistencies.
- Review major technology initiatives and platform changes for risk impacts and sufficiency of mitigation plans.
- Evaluate risks associated with architecture changes, new solutions, and implementation activities.
- Review incidents, classifications, RCA quality, and recurrence prevention measures.
- Assess and challenge risk acceptances and corrective action plans for feasibility and urgency.
- Validate CAP closure evidence as part of second line review.
- Review business continuity plans, DR test results, and resilience capabilities, challenging gaps and assumptions.
Requirements
- 3 to 5 years of experience in Information Risk, Technology Risk, or Cyber Risk
- In-depth knowledge in information systems architecture, infrastructure and application recovery, and DR testing methodologies.
- Experience in Business Continuity and Disaster Recovery, and operational risk assessment tools such as RCSA, Incidents and Losses, Root Cause Analysis, Scenario Analysis
- Experience performing independent second‑line oversight or audit-style review activities.
- Strong understanding of technology, data, cloud, infrastructure, and operational resilience risks.
- Ability to evaluate complex risk scenarios and form well‑supported second‑line opinions.
- Familiarity with GRC platforms such as Archer, ServiceNow, or Fusion.
- Knowledge of regulatory frameworks and standards (ISO, NIST, COBIT, CSA/CCM, OSFI, etc.).
- Exposure to Generative AI, Agentic AI, automation tools, or continuous monitoring technologies.
Tech Stack
- Cloud
- ServiceNow
Benefits
- We’ll empower you to learn and grow the career you want.
- We’ll recognize and support you in a flexible environment where well-being and inclusion are more than just words.