GRC Controls Specialist

Apex Systems is a global IT services provider, and our staffing practice is seeking a highly motivated and experienced Intermediate/Senior Risk Advisor to join our client, a Big 5 Bank, and play a critical role in strengthening their internal controls and risk management framework.

Client: Big 5 Bank

Location: Downtown Toronto. 1 day in office

Duration of Contract/Perm: 6-month contract to begin with opportunity to extend or convert.

Hours/week: 37.5 hrs

Start date: May 2025

Job Description

We are seeking a highly experienced GRC professional to join our team and play a pivotal role in defining the operational guardrails for our Governance, Risk, and Compliance (GRC) functions. This individual will be instrumental in establishing standards and best practices for control management across the organization. This is a control-centric role requiring a mature understanding of GRC principles and a proactive, detail-oriented approach. A key focus of the current program involves a comprehensive refresh of controls, including regulatory controls.

Responsibilities:

• Define and document standards for how controls should be documented.
• Establish the minimum attributes required for effective control documentation.
• Develop processes for managing and documenting control deficiencies.
• Define criteria for identifying and assessing the significance of control deficiencies.
• Contribute to a program focused on the refresh of all controls, with a specific emphasis on regulatory controls.
• Collaborate closely with GRC teams to ensure consistent application of control standards.
• Liaise with the Technology teams and Director to align on control requirements.
• Apply knowledge of regulatory requirements, policies, and procedures to control management.
• Understand the implications of control failures, particularly those related to regulatory compliance.
• Contribute to streamlining GRC capabilities through a risk-aware and audit-focused mindset.

Qualifications:

• Mature understanding of GRC principles and control frameworks, akin to a Subject Matter Expert (SME).
• Demonstrated experience in documenting how controls should be tested and documented.
• Familiarity with regulatory requirements, policies, and procedures.
• Understanding of the relationship between controls and regulatory obligations, and the implications of control failures in this context.
• Strong control-centric perspective.
• Audit-oriented mindset with attention to detail.
• Risk-aware approach with a focus on process improvement and streamlining.
• Excellent communication and collaboration skills, including the ability to build relationships with stakeholders.