Attendance: Hybrid
Employment Category: Senior Professional
Type of Contract: Permanent
A career as an Senior Analyst Control Testing at National Bank means acting as a specialist to carry out control tests, document procedures and results and also define action plans when control performance does not meet expectations. This position allows you to have a positive impact on our organisation through your expertise to help execute our risk control testing strategy across cybersecurity and IT domains and improve the Bank's control environment.
Your role
-
Conduct control testing activities in alignment with the established methodology and schedule
- Design and document test plans, procedures, and results with precision and clarity
- Identify control gaps and collaborate with stakeholders to define and follow up on remediation plans
- Work closely with cyber, IT, and risk teams to ensure alignment and continuous improvement
- Prepare clear and concise reports summarizing test outcomes, observations, and recommendations
- Contribute to the evolution of testing practices and support the optimization of control processes
Your team
The Vice-Presidency – Integrated risk Management is a proactive and collaborative team that helps transform the way the Bank manages risk. Be part of a high-impact team dedicated to strengthening the Bank's cyber and IT resilience. You will work in a collaborative, inclusive and innovative environment.
The Bank values continuous development and internal mobility. Our personalised training programs, based on on on-the-job learning, help you master your profession and develop new fields of expertise. Tools such as the Data Academy, Language Training, Harvard Learning Centre and coaching and mentoring support are available to you at any time
Prerequisites
-
University degree in a relevant field (e.g., information security, it, risk management)
- 7 to 10 years in risk management, internal audit or cybersecurity, with a strong focus on it and cyber control testing
- Solid understanding of cybersecurity frameworks (e.g., NIST, ISO 27001), IT general controls, and risk management principles
- Ability to anticipate problems, analyse complex data and propose effective solutions
- Positive attitude, team spirit, ability to perform in a constantly changing environment
- Professional certifications (CISA, CISSP, CRISC) are an asset
Your benefits
In addition to competitive compensation, upon hiring you’ll be eligible for a wide range of flexible benefits to help promote your wellbeing and that of your family such as:
- Health and wellness program, including many options
- Flexible group insurance
- Generous pension plan
- Employee Share Ownership Plan
- Employee and family assistance program
- Preferential banking services
- Involvement in community initiatives
- Telemedicine service
- Virtual sleep clinic
We have an offer that keeps up with trends as well as your needs and those of your family.
Our dynamic work environments and cutting-edge collaboration tools foster a positive employee experience. We value employees’ ideas. Whether through our surveys or programs, regular feedback and ongoing communication are encouraged.
Making a bold move in a people-first environment
We’re a bank on a human scale that stands out for its courage, entrepreneurial culture, and passion for people. Our mission is to have a positive impact on people’s lives. Our core values of partnership, agility, and empowerment inspire us, and inclusion is central to our commitments. We aim, wherever possible, to provide a barrier-free and accessible environment to all employees.
We strive to provide accessibility measures throughout the recruitment process within the limits of our available resources. If you require accommodations, feel free to let us know during our initial conversations. We welcome all candidates! What can you bring to our team?
Join us!
Additional required languages: English, French
Skills: Analytical Skills, Finance, Risk Management, Cybersecurity, Cybersecurity Audit, Information Technology Risk Audit, Resiliency, Control Testing, Cybersecurity Risk Management, Audit, Cybersecurity Risk, Audit Risk, Risk Based Internal Auditing