Associate Director, Data and Risk Management Strategy & Analytics

Job Description

What is the opportunity?

Reporting to the Director, Data and Risk Management Strategy & Analytics, this position plays a key role in assessing system and data lineage to support Cyber and Technology risk architecture design, developing and maintaining methodologies, conducting deep‑dive thematic reviews, and analyzing risk metrics to support risk management and compliance efforts. The role ensures that technology risks are consistently identified, measured, aggregated, and reported to enable informed decision‑making at all levels of the organization.

What will you do?

Framework and Methodology

• Develop and maintain risk‑management data‑driven methodologies, including but not limited to Regional / Legal Entity Asset Identification, Crown Jewels Methodology, Inherent Risk Rating Methodology and Asset Criticality Methodology.


• Assess criteria for Cyber and Technology risk factors (impact, likelihood, asset criticality, EOL, exposure) by gathering and organizing data for inherent risk, residual risk, and scoring models.


• Act as liaison to collect Cyber and Technology risk reporting scope and technology requirements to drive future legal‑entity/segment/regional methodology enhancements.

Risk Metric Analysis & Inventory Maintenance

• Review existing metrics, identify and communicate data inconsistencies or misalignment against overall Cyber and Technology Risk data strategy.


• Lead periodic data‑quality reviews and validate risk metrics within Cyber and Technology dashboards against risk‑management frameworks and compliance standards, and recommend improvements.


• Work with Cyber and Technology Risk metric leads to monitor and document threshold updates and risk‑metric lifecycle.

Business Requirement Gathering & Data Strategy Alignment with Enterprise Operational Risk Management

• Develop and execute the organization’s data and risk‑management strategy in alignment with business objectives and regulatory requirements.


• Collaborate with Cyber and Technology Risk leads to align risk‑management initiatives with data and process requirements.


• Evaluate end‑to‑end Operational Risk Management systems to identify and communicate areas for improvement to support Cyber and Technology strategy and roadmap.


• Collaborate with Cyber and Technology Risk Reporting & Analytics team to monitor and evaluate data‑integration processes.


• Develop project plans highlighting key dependencies as part of roadmaps to align data initiatives with enterprise architecture and digital transformation efforts.


• Drive automation initiatives for data integration, transformation, and reporting.

What do you need to succeed?

Must‑have

• University degree, or equivalent


• 7 years in the financial services or other regulated industries


• 5 years’ experience in development of Risk Analytics and Reporting


• 5 years’ experience in risk identification, aggregation, analysis, and ranking


• 5 years in a delivery organization


• Strong understanding of IT risk‑management frameworks and compliance standards


• Knowledge of cybersecurity risks, IT controls, and risk assessment methodologies


• Strong metrics and performance management background including data management and analysis


• Ability to translate complex data into clear, actionable insights


• Proficiency in data analytics and visualization tools (e.g., Power BI, Tableau, Excel, SQL)

Nice‑to‑have

• Excellent communication, reporting, and stakeholder‑management skills


• Professional certifications such as CISA, CRISC, CISSP, or equivalent


• Working knowledge of GRC tools (e.g., Archer, ServiceNow, etc.)

What’s in it for you?

• A comprehensive Total Rewards Program including bonuses and flexible benefits


• Work on a dynamic topic of strategic importance


• Ability to make a difference and have lasting impact


• Work in an agile, collaborative, progressive, and high‑performing team


• The opportunity to interface with executives from many different parts of the organization

Job Skills

Actionable Insights, Analytics, Data Analytics, Data Quality, Data Strategies, Enterprise Architecture, Information Technology (IT) Risk, Operational Risks, Risk Analytics, RiskMetrics, Technology Risk, Technology Risk Management

Additional Job Details

Address: 20 KING ST W: TORONTO
City: Toronto
Country: Canada
Work hours/week: 37.5
Employment Type: Full time
Platform: GROUP RISK MANAGEMENT
Job Type: Regular
Pay Type: Salaried
Posted Date: 2026-02-04
Application Deadline: 2026-03-27
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above