Our client, a major Canadian enterprise, is seeking a technology Governance Risk Manager with experience identifying regulatory obligations and risks, assess control design and operating effectiveness, document evidence and conclusions, and monitor deficiencies and action plans.
The candidate will work in a medium sized team of between 5-15 people.
-----------------------------------------------------------------------------------------------------
AdvantagesWorking with a leading provincial based financial institution.
Consistent Hours: Enjoy a stable 40-hour work week with a predictable schedule for scheduled maintenance.
Growth Potential: This contract includes a strong possibility of extension based on performance and project needs
ResponsibilitiesAs the next Technology Risk Manager, you will operate as a first-line risk and compliance advisor within Client Experience and Technology (CXT), supporting the Risk and Control Self-Assessment (RCSA) programs.
You will partner with business and technology stakeholders to identify regulatory obligations and risks, assess control design and operating effectiveness, document evidence and conclusions, and monitor deficiencies and action plans. As a trusted advisor, you will provide clear, practical guidance that strengthens risk ownership, control effectiveness, and informed decision-making.
Enter below in “Accountabilities” field
Coordinate RCSA activities in accordance with frameworks, standards, risk appetite, and program timelines.
Facilitate regulatory compliance, risk, and control assessments with accountable CXT stakeholders.
Assess control design to determine whether controls appropriately address identified risks and regulatory obligations.
Assess control operating effectiveness using risk-based procedures, evidence, and appropriate sampling to determine whether controls operate consistently as intended.
Document assessment procedures, evidence, results, and conclusions clearly and maintain complete, accurate program records in the applicable governance, risk, and compliance platform.
Identify control deficiencies and compliance gaps; recommend remediation, risk acceptance, or escalation and monitor action plans through completion.
Monitor emerging risks, regulatory changes, business changes, and recurring findings to determine whether risks and controls require reassessment.
Prepare concise program reporting, trends, insights, and recommendations for risk owners and senior leaders.
Advise and coach stakeholders on first-line risk ownership, regulatory obligations, control design, operating effectiveness, and evidence expectations.
Partner with Risk, Compliance, Internal Audit, and other stakeholders to support effective oversight and continuous improvement of the RCSA programs.
Enter below in “Skills, experience & requirements” field
Technical & Professional Experience
Five to seven years of experience in technology risk, operational risk, regulatory compliance, IT audit, or technology governance.
Practical experience delivering or supporting RCSA, control assessment, or comparable risk and compliance programs.
Demonstrated experience assessing control design and operating effectiveness, including developing risk-based procedures, evaluating evidence, applying appropriate sampling, identifying deficiencies, and documenting defensible conclusions.
Strong understanding of regulatory obligations, risk and control concepts, issue management, risk appetite, and the three lines model.
Strong analytical and judgment skills, with the ability to synthesize complex information and develop clear, actionable recommendations.
Strong facilitation, stakeholder management, and written and verbal communication skills, including experience presenting findings to senior leaders.
Experience with governance, risk, and compliance platforms such as MetricStream, Archer, ServiceNow GRC, or an equivalent tool.
Experience using data analytics, automation, or AI to improve risk and compliance processes is an asset.
Education
Bachelor’s degree in Business, Information Systems, Accounting, Risk Management, or a related discipline is required.
Certifications
One or more of the following designations strongly preferred:
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
Certified Internal Auditor (CIA)
Certified Risk Management Assurance (CRMA)
Certified Information Systems Security Professional (CISSP)
QualificationsTechnical & Professional Experience
Five to seven years of experience in technology risk, operational risk, regulatory compliance, IT audit, or technology governance.
Practical experience delivering or supporting RCSA, control assessment, or comparable risk and compliance programs.
Demonstrated experience assessing control design and operating effectiveness, including developing risk-based procedures, evaluating evidence, applying appropriate sampling, identifying deficiencies, and documenting defensible conclusions.
Strong understanding of regulatory obligations, risk and control concepts, issue management, risk appetite, and the three lines model.
Strong analytical and judgment skills, with the ability to synthesize complex information and develop clear, actionable recommendations.
Strong facilitation, stakeholder management, and written and verbal communication skills, including experience presenting findings to senior leaders.
Experience with governance, risk, and compliance platforms such as MetricStream, Archer, ServiceNow GRC, or an equivalent tool.
Experience using data analytics, automation, or AI to improve risk and compliance processes is an asset.
SummaryPosition Title: Technology Governance Risk Manager
Position Type: Contract (Possibility of extension)
Hours: 40 hours/week
Location: Hybrid, Alberta (onsite for team meetings ONLY)
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to
accessibility@randstad.ca to ensure their ability to fully participate in the interview process.