• This position will support for the process Risk & Control Self Assessments (pRCSA), and/or execute testing activities to meet the Regulatory Compliance Management (OSFI E-13) program requirements and the Operational Risk Management Quality Assurance/Quality Check (QA/QC) requirements for Canada Credit Cards (CCC) and Merchant Solutions (MS).
•Complete the end-to-end Operational Risk Management (ORM) Process Risk Control Self-Assessment (pRCSA) refresh process including process walk-through, risk & control identification, leading executive review sessions and securing executive certifications.
•Create test scripts for both Regulatory QA testing and pRCSA key control testing to ensure testing objectives are adequately addressed and are sufficiently robust to allow for proper analysis of findings and identification of key issues and trends.
•Conduct design effectiveness and operating effectiveness reviews of regulatory and operational controls in accordance with the established standards and sampling methodology.
•Conduct substantive testing (transactions/output) utilizing data analytic techniques where applicable to ensure regulations are met.
•Understand and apply sampling methodology in accordance with the QC methodology (and Sampling Standard) owned by the Corporate ORM team as well as the CCC&MS QA Standards.
•Prepare finding notification form and present the recommendations to the business management team and/executives in a concise and professional manner.
•Actively manage the follow-up of findings arising from testing and track the findings till resolution with established standards and timelines as assigned.
•Subject Matter Expert of risk & control and regulatory requirements. Keep abreast of merging issues and evolving regulatory space; and assess potential impacts across the business units.
•Review processes and controls and “connect the dots” across issues and control deficiencies in order to increase standardization of solutions, processes and controls.
•Build and maintain positive working relationships by effectively communicating and regularly sharing information, issues, points of interest and knowledge with the second and third line partners (Compliance, ORM, GAML, Audit).
•Provide insight and guidance to line management on the identification of major risk drivers.
•Protect Client’s interests by keeping updated on external business trends, risk management issues, regulatory guidance and by maintaining knowledge of existing and emerging risk issues across the business.
•1-2+ yrs Risk Analyst exp.
•Solid knowledge of governance, risk & control procedures, strategies & tactics
•Knowledge of current & emerging trends
•Skill in using analytical software tools, data analysis methods & reporting techniques
•MS Office: Excel (V look ups, formulas, pivot tables)
Nice to have:
•Bachelor’s degree &/or combination of training & certifications in Operational Risk Mgt.
•Broad knowledge of business & risk and control env.
•Exp. in Governance & Control, Audit or Compliance testing
•Bilingual on both English and French language
•Visio – to document flowcharts