Sr. Director, Infrastructure and Risk COE

Role: Senior Director, Infrastructure and Risk Center of Excellence (COE)

Full-time/Permanent

2 days a week in the office: Can be in Toronto, CA or NYC or Jersey City, NJ

No 3rd party/sponsorship

The Senior Director, Infrastructure & Risk Center of Excellence (COE) will play a critical leadership role in setting up a newly formed 1A risk team within the Bank’s Technology Infrastructure (TI) organization. This role is accountable for building and leading a high-performing team that collaborates with IT departments (e.g. cloud, mainframe, database, middleware, operations, DR), enterprise risk and security teams and 2LOD. The leader is accountable to build a team that will transform the existing 1st line risk practices and bring forward the TI organization’s risk profile. The position ensures compliance with regulatory, internal risk, and audit expectations while fostering a culture of proactive risk management across the IT organization and supporting the achievement of TI’s strategy.

SKILLS:

• 10 years in an IT Risk management capacity across any of the 3 lines of defense.

• Deep expertise in risk management frameworks and standards across the US and Canada (e.g., regulatory compliance, enterprise risk, internal controls, SOX, ITGC); expertise with UK and APAC regulators, considered beneficial.

• Understanding of cloud, mainframe, middleware, database, operations and AI.

• Proven track record of setting up and leading high-performing teams in a complex IT & risk environment.

• Demonstrated ability to design and implement processes to track risk-related work and integrate these processes into enterprise risk reporting frameworks.

• Exceptional relationship-building skills, with the ability to collaborate across diverse functions and levels of the organization.

• Strong analytical and problem-solving skills, with the ability to create scalable, repeatable processes that simplify risk management in IT operations.

• Demonstrated ability to transform and modernize processes, aligning legacy and modern IT practices into cohesive risk strategies.

• Passionate about improving the risk management experience while delivering on commitments and expectations from risk stakeholders.

• Related certifications: CISA, CPA, CA, CRISC, CISM, CISSP etc.