Enterprise Risk Governance Program Manager

ENTERPRISE RISK GOVERNANCE PROGRAM MANAGER

WHAT IS THE OPPORTUNITY?

Under direction of the SVP, Enterprise Change Risk Management and Product Risk Oversight this position supports the second Line of Defense Enterprise Risk function and assists with the managing the portfolios within Change Risk and Product Risk Management. The Enterprise Risk Program Manager is responsible for providing advisory and oversight for Change Risk and Product Risk, with a particular focus on strengthening risk assessments, reporting and governance efforts to support decision-making. This position provides an excellent opportunity to strengthen adherence to the risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve change and product risk outcomes.

WHAT WILL YOU DO?

• Assist in maintaining the Enterprise Change Risk Management Framework and Product framework, Policy, Standards, and second line of defense Procedures annual review and refresh process.

• Work collaboratively with assigned business or corporate unit(s) to embed an understanding of the Change Risk and Product Risk

• Review, challenge and monitor 1LOD change risk and product risk assessments, and alignment with risk appetite

• Review and challenge practices against CNB enterprise risk framework and policies, including but not limited to CNB Client Product and Suitability Policy, and Enterprise Change Risk Management Policy, Risk and Control Self Assessments (RCSA’s), Key Risk Indicators (KRI’s), Operational Risk Events (ORE) reporting, and issue resolution

• Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile for Product and Change Risk

• Review and challenge whether 1LOD strategic priorities and new product offerings sufficiently consider change and product risk when applicable and whether the risks have been adequately assessed across all strategic priorities

• Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to change and product risk governance and policy requirements

• Review and challenge 1LOD risk acceptances and new business initiatives

• Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans

• Review and challenge 1LOD control testing and monitoring plans, the adequacy of control management activities and assessment results, and risk mitigation strategies to address gaps in control design or operating effectiveness for product and change risk management

• Review and challenge regulatory remediation activities in assigned coverage areas to ensure product and change risk exposures associated with known control deficiencies are addressed. This includes providing oversight and challenge during the Issue Management Lifecycle, which may include issue details; root cause analysis; action plan; material issue changes; management’s completion of the required and/or committed corrective actions with supporting evidence; control management activities; and sustainability.

• Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy

• Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams

• Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders

• Lead with the preparation of status reports, key metrics and other Change and Product Risk reporting information as requested by management, the Risk Committee or RBC.

• Contribute to ad-hoc assignments/special projects

• Maintain awareness of current regulatory/industry trends impacting the Bank’s enterprise risk management program or practices.

• Maintain familiarity of, and technical expertise with, business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas

• Support and facilitate audit and regulatory exam activities related to Product and Change Risk

• Build effective relationships, alliances, and strategic partnerships across CNB and RBC to help deliver results and to ensure opportunities are identified, analyzed, and managed appropriately. Understand interdependencies to achieve success.

• Provide guidance to colleagues on the application of the ECM Framework, Policy, Standards, and Procedures, including but not limited to providing training, communication, and i