Senior GRC Advisor Data & AI Governance

Address:

Job Family Group:

Role Overview

This role directly reports to and supports the Associate Director of T&O Risk (1B) - Business Risk Advisory and Controls - Testing & Advisory. The candidate will provide independent advisory oversight and validation of governance risk and control activities that support Enterprise Data Governance and AI Governance. The candidate will also support Product/Service/Process Risk Assessments (PSPRA) and Regulatory Compliance Risk Assessment (RCRA) maintain Process Risk and Control (PRC) libraries and advise on Key Risk Indicators (KRIs) etc. The role works in close collaboration with First Line of Defense (1LOD) and Regulatory Compliance and Risk related Second Line of Defense (2LOD) partners to support and strengthen governance and risk management across the enterprise.

Key Responsibilities

Governance Risk & Compliance (Advisory)

• Maintains a strong understanding of applicable regulatory requirements industry standards and internal policy frameworks; monitors changes and provides timely governance risk and control insights.
• Supports PSPRA RCRA and other risk assessment activities across Data Governance and AIrelated processes from an advisory and challenge perspective.
• Provides governance and control advisory support to business partners clarifying expectations and risk considerations without directing operational decisionmaking.
• Applies governance frameworks and control principles to assess alignment of business practices with enterprise standards and risk appetite.
• Communicates governance risk and control considerations clearly to stakeholders supporting informed decisionmaking and consistent application of expectations.

Governance Advisory & Enablement

• Serves as a governance advisor to business and technology stakeholders providing guidance on risk management practices control design considerations and policy interpretation.
• Supports the development refinement and socialization of governance standards procedures and guidance related to Data and AI risk management.
• Facilitates governance forums working sessions and stakeholder discussions to promote shared understanding of governance expectations and emerging risks.
• Reviews governance artifacts assessments and documentation prepared by others to provide advisory feedback on completeness clarity and alignment with governance and risk standards.
• Identifies governance gaps emerging risks or areas of inconsistency and escalates observations with clear articulation of risk and impact.
• Prepares governance summaries advisory materials and reporting to support leadership oversight and informed risk discussions.

Relationship Management & Collaboration

• Builds and maintains strong working relationships with internal and external partners particularly across first and secondline functions.
• Acts as a trusted governance risk and control advisor to stakeholders balancing effective challenge with collaboration.
• Develops a deep understanding of endtoend business processes related to data and AI model risk management and lifecycle management to provide relevant and practical guidance.
• Partners with stakeholders to support governance alignment while respecting ownership and accountability within the first line of defense.

General Responsibilities

• Continuously enhances knowledge and skills in Data and AI governance compliance and risk management.
• Works independently exercising sound judgment to identify assess and escalate governance or control concerns within defined guidelines.
• May assume additional responsibilities aligned with governance risk and control advisory needs.
• Coaches and mentors junior staff to strengthen governance understanding consistency and advisory effectiveness across the team.

Qualifications

Required

• Typically 5 - 7 years of relevant experience in governance risk compliance data governance AI governance risk management audit or related disciplines with a strong focus on advisory and oversight activities.
• Strong knowledge of Data and AI governance risk and regulatory requirements including data privacy data quality model risk and emerging AI governance considerations.
• Solid understanding of applicable regulations industry standards and control frameworks relevant to enterprise risk management and the data and AI lifecycle.
• Experience supporting risk assessments (e.g. PSPRA RCRA process risk and control assessments) including advising on risk identification control considerations and Key Risk Indicators (KRIs).
• Strong analytical and criticalthinking skills with the ability to assess governance and control alignment identify gaps and articulate risk implications.
• Effective communication collaboration and stakeholder management skills with the ability to influence across first and secondline functions.
• Ability to work independently exercise sound judgment and appropriately escalate governance or risk concerns.
• Required professional certifications:
  • CDMP - Certified Data Management Professional (by DAMA)
  • CRISC - Certified in Risk and Information Systems Control (by ISACA) OR CGRC - Certified in Governance Risk and Compliance (by ISC2)
• Preferred certifications:
  • AIGP Artificial Intelligence Governance Professional (by IAPP)
  • ISO/IEC 42001 AI Lead Auditor/Implementer (by ISO)

Salary:

Pay Type:

The above represents BMO Financial Groups pay range and type.

Salaries will vary based on factors such as location skills experience education and qualifications for the role and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles the salary listed above represents BMO Financial Groups expected target for the first year in this position.

BMO Financial Groups total compensation package will vary based on the pay type of the position and may include performance-based incentives discretionary bonuses as well as other perks and rewards. BMO also offers health insurance tuition reimbursement accident and life insurance and retirement savings plans. To view more details of our benefits please visit: Us

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting positive change for our customers our communities and our people. By working together innovating and pushing boundaries we transform lives and businesses and power economic growth around the world.

As a member of the BMO team you are valued respected and heard and you have more ways to grow and make an impact. We strive to help you make an impact from day one for yourself and our customers. Well support you with the tools and resources you need to reach new milestones as you help our customers reach theirs. From in-depth training and coaching to manager support and network-building opportunities well help you gain valuable experience and broaden your skillset.

To find out more visit us at is proud to be an equal employment opportunity employer. We evaluate applicants without regard to race religion color national origin sex (including pregnancy childbirth or related medical conditions) sexual orientation gender identity gender expression transgender status sexual stereotypes age status as a protected veteran status as an individual with a disability or any other legally protected characteristics. We also consider applicants with criminal histories consistent with applicable federal state and local law.

BMO is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process please send an e-mail to and let us know the nature of your request and your contact information.

Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO directly or indirectly will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid written and fully executed agency agreement contract for service to submit resumes.