Director, Technology Risk Oversight & Governance

Address: 111 W Monroe - 115 S LaSalle Job Family Group: Audit, Risk & Compliance If you’re looking for your next dream job, consider this one in BMO’s ERPM Risk group where every colleague helps protect and grow the bank by providing independent review and oversight of enterprise-wide risks, working together to maintain a risk management framework and fostering a strong risk culture. #ERPMDreamJobs Oversees, monitors, and reports on information and technology risks for a designated portfolio. Develops and monitors the risk management and governance framework and practices leveraged across BMO to manage information and technology risks. Develops and monitors adherence to policies, standards, methodologies, and controls that increase transparency, accuracy, and consistency across groups. Works with stakeholders to implement the methodology, metrics, and program standards for the assigned portfolio to ensure compliance, effective monitoring, timely reporting, and identify action plans. Acts as a trusted advisor to senior leaders for making business decisions and implementing strategic initiatives. Develops an expert understanding of business/group challenges. Networks with industry contacts to gather competitive insights and best practices. Recommends measures to improve organizational effectiveness. May consult to or serve on various committees and task forces. Interprets new regulations and assesses impacts to the governance framework. Influences and negotiates to achieve business objectives. Identifies emerging issues and trends to inform decision-making. Researches existing or emerging requirements and related best practices to develop recommendations for changes/enhancements. Independently assesses the information and technology risk profile (e.g. exposures, material initiatives, systems issues or weaknesses in the control structure) for the assigned portfolio. Recommends business priorities, advises on resource requirements and develops roadmap for strategic execution. Manages resources and leads the execution of strategic initiatives to deliver on business and financial goals. Measures the effectiveness of risk governance system and framework; recommends changes as required. Conducts independent analysis and assessment to resolve strategic issues. Leads the development and maintenance of the governance system and framework. Acts as the prime contact for internal/external stakeholder relationships, which may include regulators. Ensures alignment between stakeholders. Represents the risk program / governance structure during internal/external regulatory audits and/or examinations. Designs and produces regular and ad-hoc reports, and dashboards. Develops and manages comprehensive information management systems; designs and/or leads initiatives to improve processes, analysis and reporting. Leads change management programs of varying scope and type, including readiness assessments, planning, stakeholder management, execution, evaluation and sustainment of initiatives. Leads the development of the communication strategy focusing on positively influencing or changing behavior. Assesses and adapts existing operational programs; develops new capabilities to ensure ongoing success. Manages the review and sign-off process for relevant regulatory reporting. May provide specialized support for other internal and external regulatory requirements. Leads/participates in the design, implementation and management of core business/group processes. Administers and maintains technology and information security and management risk program activities adhering to applicable policies, procedures, and established processes. Reviews new business initiatives and monitors existing initiatives to identify potential risk situations/ impacts; makes recommendations or escalates as per guidelines. Identifies potential risk situations / impacts and makes recommendations or escalates. Provides advice and guidance to assigned business/group on implementation of the risk framework, including effective challenge. Coordinates and participates in the execution of oversight/governance activities including reporting; assessment of education & training needs, development/delivery of training; development and execution of regulatory administration processes & procedures. Consults with stakeholders to improve consistency and transparency of risk measurement, metrics and reporting. Supports the development and maintenance of the governance system and framework including supporting policy/standard/operating procedures lifecycle management, education and training assessments. Builds effective relationships with internal/external stakeholders e.g. business stakeholders and corporate support areas to provide second line of defense information and technology risk management support. Manages databases and provides support for analysis, forecasting and/or data visualization, ensuring adherence with data governance standards. Analyzes data and information to provide insights and recommendations; includes identification of risk impacts for new processes and workflows related to initiatives. Maintains tools and templates for information and technology risk programs and standards e.g. Risk Control Self Assessment (RCSA), Sarbanes-Oxley (SOX), business continuity planning standards and policies for internal and third-party solution development. Develops and maintains in-depth knowledge of business and related risk management requirements and legislative/ regulatory directives and guidance. Builds effective relationships with internal/external stakeholders. Analyzes data and information to provide insights and recommendations. Operates at a group/enterprise-wide level and serves as a senior specialist resource across BMO. Influences how teams/groups work together. Applies expertise and thinks creatively to address unique or ambiguous situations and to find solutions to multiple, interdependent, complex problems. Communicates abstract concepts in simple terms. Fosters strong internal and external networks and works with and across multiple teams to achieve business objectives. Anticipates trends and responds by implementing appropriate changes. Broader work or accountabilities may be assigned as needed. Qualifications: Typically 9 years of relevant experience and post-secondary degree in related field of study or an equivalent combination of education and experience. Degree in Information Technology, Computer Science, Business Administration or related field of study preferred. Completion of a Security related certification preferred (e.g. CISSP, CISA, CISM, GIAC). Expert knowledge of information and technology risk management practices. Expert knowledge of the designated business / product portfolio. Expert knowledge of regulatory requirements. Expert knowledge and experience with risk policy frameworks; quality control / testing frameworks. Seasoned expert with extensive industry knowledge. Technical leader viewed as a thought leader for innovation. Verbal & written communication skills - Expert. Analytical and problem solving skills - Expert. Influence skills - Expert. Collaboration & team skills; with a focus on cross-group collaboration - Expert. Able to manage ambiguity. Data driven decision making - Expert. We’re here to help At BMO Harris Bank we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world. As a member of the BMO Harris Bank team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset. To find out more visit us at https://jobs.bmoharris.com. BMO Harris Bank is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. BMO Harris Bank N.A. is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter. Note to Recruiters: BMO Harris Bank does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO Harris Bank, directly or indirectly, will be considered BMO Harris Bank property. BMO Harris Bank will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes. BMO is a leading bank driven by a single purpose: to Boldly Grow the Good in business and life. Everywhere we do business, we’re focused on building, investing and transforming how we work to drive performance and continue growing the good. Who we are We’re proud to be fueling growth and expanding possibilities for individuals, families and businesses. More than 12 million customers count on us for personal and commercial banking, wealth management and investment services. As the 8th largest bank, by assets, in North America, we help our customers make the most of their money. In Canada, the United States and across the globe, we’ll continue to build, invest and transform to drive performance that serves the good that grows.