Talent.com
Nöord Technologies Corporation
IT Operational Risk RepresentativeNöord Technologies Corporation • Downtown Montreal East, QC, ca
No longer accepting applications
IT Operational Risk Representative

IT Operational Risk Representative

Nöord Technologies Corporation • Downtown Montreal East, QC, ca
30+ days ago
Job type
  • Permanent
Job description
Job Description

Company Description: At Nöord Technologies, we empower top-tier financial institutions with exceptional talent in banking and capital markets. We are currently seeking, on behalf of one of our clients, a high-caliber IT Operational Risk Representative (ORR).

Position Overview: The IT Operational Risk Representative (ORR) encompasses the management of IT permanent control and IT risk reporting.

As an IT Permanent Control Senior Officer, the ORR operates as a first-line control champion embedded within IT Operations, serving as the operational bridge between technical teams and control frameworks. This role focuses on the practical implementation, coordination, and operationalization of IT controls directly within day-to-day technology operations—ensuring controls are not imposed externally but built collaboratively with IT teams as integral components of operational excellence. This position partners with IT operational teams to design pragmatic controls, facilitate their adoption, coordinate evidence collection, and maintain ongoing control health through continuous dialogue and operational support.

As an IT Risk Representative, the ORR serves as the operational liaison between IT teams, the IT Risk Officer (ITRO), and second-line functions, translating operational realities into risk indicators.

Key Responsibilities:

  1. IT Permanent Control

  • Operational Control Coordination & Implementation: Collaborate directly with IT infrastructure, application, security, and platform teams to translate control requirements into practical, executable operational procedures.

  • Co-design control activities with technical teams, ensuring controls align with existing workflows and operational realities rather than creating parallel bureaucratic processes.

  • Facilitate control implementation workshops with system administrators, engineers, and technical leads to build shared understanding and ownership of control objectives.

  • Control Explanation & Enablement: Translate complex regulatory and compliance requirements (SOX, ISO 27001, NIST) into clear, actionable guidance that IT operational teams can understand and implement.

  • Conduct regular enablement sessions with technical staff to explain the "why" behind controls, building control awareness and fostering a culture of operational accountability.

  • Develop practical control guidance documents, playbooks, and job aids tailored to specific IT operational contexts (infrastructure, cloud, applications, databases).

  • Evidence Coordination & Control Health Monitoring: Coordinate evidence collection processes with IT operational teams, ensuring documentation requirements are clear, reasonable, and integrated into existing operational workflows.

  • Maintain operational control repositories and documentation, working with technical teams to ensure evidence is complete, accurate, and readily accessible within the internal repository (COSMOS).

  • Monitor control execution status in real-time, proactively identifying operational blockers and working with teams to resolve issues before they become control gaps.

  • Perform Test of Design (ToD) and Test of Effectiveness (ToE) campaigns.

  • Report the status of the Control Plan to the Monthly IPC Governance and IT Steering Committee.

  • Continuous Improvement & Operational Optimization: Identify opportunities to streamline control processes based on direct operational feedback, proposing automation, simplification, or consolidation where appropriate.

  • Champion control efficiency initiatives that reduce operational burden while maintaining control effectiveness.

  • Facilitate lessons-learned sessions with IT teams following control cycles, capturing operational insights to improve future control design and execution.

  • Identify gaps in the GIT RCSA (Risk Control Risk Assessment) and update the RCSA whenever required.

  1. Operational Risk Representative

  • Administrate and coordinate risk reporting with the IT Risk Officer (ITRO) and the 2nd line of defense (KRIs, Losses / Incidents, Changes in market or regulatory rules, Recommendations from IGE or regulators).

  • Liaise with Head Office and communicate updates to any relevant party.

Common Values:

  • Ensure the respect of policies and procedures of the Bank, as well as regulatory requirements.

  • Ensure accuracy and expediency of any activity related to audits.

  • Ensure adherence to LEAN Management processes implemented in NY & Montreal.

  • Promote GIT’s values and visions of "1 Team" across all functions and geographical locations.



Requirements

Qualifications & Technical Skills:

  • Education: Minimum Bachelor's degree in a related field.

  • IT Environment: Strong understanding of IT operational environments: infrastructure, databases, application architectures, and DevOps practices.

  • Frameworks & Controls: Working knowledge of IT control frameworks: ITGC, SOX IT controls, ISO 27001, NIST CSF, COBIT.

  • Operational Processes: Familiarity with IT operational processes: change management, patch management, incident response, vulnerability management, backup/recovery.

  • Tools & GRC: Understanding of control automation tools and GRC platforms (ServiceNow GRC, AuditBoard, or similar).

  • Software & Systems: MS Office, Advanced Excel, Visual Basic, Jira.

  • Certifications: Preferred certifications: ITIL, CompTIA Security+, CISA, CRISC, ISO 27001 Lead Implementer.

  • Languages: Fluent in English.

Behavioral Competencies:

  • Operational Mindset: Ability to think like an IT operator and design controls that fit operational realities.

  • Collaborative Influence: Builds trust and credibility with technical teams through partnership rather than enforcement.

  • Practical Problem-Solving: Finds pragmatic solutions that balance control effectiveness with operational efficiency.

  • Clear Communication: Translates complex compliance language into plain operational guidance.

  • Adaptability: Comfortable working in fast-paced technical environments with evolving priorities.

Required Experience:

  • Overall: 10-15 years of total professional experience.

  • 5-7 years in IT operations, infrastructure, or technical roles with hands-on experience in system administration, application support, or similar technical domains.

  • 5+ years working with IT controls, compliance frameworks, or operational risk management in a first-line or embedded capacity.

  • Demonstrated experience coordinating cross-functional operational initiatives and building collaborative relationships with technical teams.

  • Experience translating compliance requirements into operational procedures and facilitating adoption across technical teams.




Requirements
The ideal candidate must possess 10–15 years of experience with a strong background in IT operations, first-line IT controls, and compliance frameworks such as SOX, ISO 27001, or NIST. Additionally, this role requires deep familiarity with IT operational processes (change, patch, and vulnerability management), GRC tools, and the ability to translate complex regulatory requirements into practical, operational guidance.
Create a job alert for this search

IT Operational Risk Representative • Downtown Montreal East, QC, ca

Similar jobs

Operational Risk Manager CIB Hybrid Role

Crédit Agricole CIBMontreal (administrative region), QC, CA
Full-time

Elevate your career as a Senior Operational Risk Manager at Crédit Agricole CIB, where your 10+ years of experience in Operational Risk Management will directly support the bank’s strategic initiat... Show more

 • Promoted

Lead Advisor in Operational Risk Management

National Bank of CanadaMontreal
Full-time

Take charge as a Lead Advisor in Operational Risk Management, focusing on scenario analysis.Enhance the governance of non-financial risks while leading cross-functional initiatives to improve opera... Show more

 • Promoted

Senior IT Auditor & Team Lead – Cyber Risk & Controls

Crédit Agricole GroupMontréal, Montreal (administrative region), Canada
Full-time

A prominent financial institution is seeking a Lead Auditor / Vice President for its Montreal team.This role involves conducting comprehensive audits for regional operations across the Americas, pa... Show more

 • Promoted

IT Audit Expert at Crowe BGK

Crowe BGKWestmount, Montreal (administrative region), CA
Full-time

Step into a pivotal role as an IT Audit Expert at Crowe BGK.Focus on integrating technology risk and auditing in a supportive hybrid work environment.Crowe BGK is on the lookout for an IT Audit Exp... Show more

 • Promoted

Director of FinTech Analytics & Risk

JobberMontreal (administrative region), QC, CA
Full-time

Join Jobber as a Director where you will elevate the integration of FinTech analytics and risk management.This key position makes a significant impact on financial product strategies.Reporting to t... Show more

 • Promoted

Manager, IT Financial Business Partner

WSPMontreal (administrative region), QC, CA
Full-time

What if you could redefine what’s possible? With us, you can.We are the home of ambitious, passionate, and innovative world shapers.With an unmatched breadth and depth of engineering, advisory and ... Show more

 • Promoted

Tech Lead

XsollaMontreal (administrative region), QC, CA
Full-time

Xsolla’s fraud prevention and risk systems.Anti-Fraud Systems (AFS), and the ability to lead engineers building.You will work closely with Product, Data Science, Risk Operations, Compliance, and Pl... Show more

 • Promoted

Remote Digital Assets Lead for Health IT Projects

Russell TobinMontreal (administrative region), QC, CA
Remote
Full-time

A staffing agency is seeking a Business Digital Assets Lead to manage digital transformation efforts in a clinical information modernization initiative in New Brunswick.In this remote role, the suc... Show more

 • Promoted

Expert Analyst in Healthcare IT Infrastructure and Security

CIUSSS de l'Ouest-de-l'Île-de-MontréalMontreal-Ouest
Full-time +1

Shape the future of healthcare IT as an Expert Analyst specializing in infrastructure and security systems.Manage high-availability systems and ensure robust network operations tailored to healthca... Show more

 • Promoted

Strategic IT Risk & Governance Analyst

ALLTECH CONSULTING SVC INCMontreal
Full-time

A consulting firm based in Canada is seeking an experienced individual to manage technology risk initiatives effectively.The role involves developing strong relationships with stakeholders, monitor... Show more

 • Promoted

IT Security & Strategy Leader

Global Partner SolutionsDorval
Full-time

A leading organization in technology and cybersecurity is seeking an IT Manager to provide strategic and operational leadership for its IT systems.The successful candidate will implement cybersecur... Show more

 • Promoted

Remote IT Security Risk Analyst: Governance & Risk

Onico SolutionsMontreal (administrative region), QC, CA
Remote
Permanent

A leading IT security firm in Richmond Hill is looking for an IT Security Risk Analyst to support their Information Security Risk Management programs.The role requires expertise in risk assessments... Show more

 • Promoted

Head of Risk - Remote

BitfinexMontreal (administrative region), QC, CA
Remote
Full-time

Be among the first 25 applicants.Inspired by Bitcoin's vision of financial freedom, we are committed to empowering individuals to transact and connect seamlessly across the globe.From the early day... Show more

 • Promoted

Operational Risk Specialist Elevating Portfolio Integration Strategies

Infotree Global SolutionsMontreal
Full-time

As a Senior Operational Risk Advisor, you will play a critical role in integrating portfolios and enhancing risk management practices.Leverage your expertise to drive innovation while addressing op... Show more

 • Promoted

Infrastructure Risk Management Advisor

AltoMontreal (administrative region), QC, CA
Full-time

Play a key role in a groundbreaking railway project as an Infrastructure Risk Management Advisor.Focus on identifying, assessing, and mitigating risks to enhance project delivery and communication ... Show more

 • Promoted

Senior IT Compliance & Audit Lead — Remote

P2PMontreal (administrative region), QC, CA
Remote
Full-time

A leading crypto firm is seeking a senior IT audit professional.This fully remote role emphasizes managing SOC examinations and establishing audit rigor.Ideal candidates will have over 5 years of e... Show more

 • Promoted

Risk Manager

Aecon ConcessionsMontreal (administrative region), QC, CA
Full-time

It has come to our attention that various international organizations or individuals have been offering false employment opportunities at Aecon Group Inc.To do so would be contrary to our business ... Show more

 • Promoted

Risk Manager

Portage Ventures GP Inc.Montreal
Full-time

Dialogue is the #1 virtual care provider in Canada.By developing our Integrated Health Platform, we provide exceptional online health and wellness programs (primary care, mental health, iCBT, EAP, ... Show more

 • Promoted

Risk Manager

Dialogue Technologies Inc.Montreal
Full-time

Dialogue is the #1 virtual care provider in Canada.By developing our Integrated Health Platform🅫, we provide exceptional online health and wellness programs (primary care, mental health, iCBT, EAP... Show more

 • Promoted

IT Admin & Cybersecurity Specialist

GenAIzMontreal, Montreal (administrative region), CA
Full-time

IT Admin & Cybersecurity Specialist.GenAIz is a cutting‑edge technology company specializing in developing solutions for the Life Sciences industry.We’re looking for an experienced IT Admin and Cyb... Show more