Business Information Security Officer (Global Security)

Business Information Security Officer (BISO) (Global Security)

Join RBC's newly established US Cyber Security & Resilience function as a strategic leader responsible for implementing corporate cyber security standards and initiatives across our US business units. As the Business Information Security Officer (BISO) (Global Security), you'll translate global security policies into regional execution, bridge business and security needs, and build the infrastructure and team capabilities to support RBC's cyber resilience mission. Reporting to the Head of US Cyber Security & Resilience, you'll have the autonomy to shape the security posture of our US operations and drive meaningful impact across the organization.

What will you do?

• Lead the rollout and operationalization of RBC's global cyber security strategy, translating corporate policies and frameworks into actionable regional initiatives tailored to US business unit needs
• Serve as the primary strategic liaison between senior business leadership, IT, and enterprise security teams to ensure alignment on cyber resilience priorities and identify opportunities to strengthen the overall security posture
• Own compliance strategy for US regulatory requirements and industry frameworks (NIST CSF 2.0, ISO 27001, NYDFS, NFA standards); ensure business units understand and meet control requirements
• Drive incident prevention and response capabilities by collaborating on risk assessments, control testing, tabletop exercises, and security control implementation across US entities
• Direct the execution and monitoring of information and data security initiatives, including policy development, control implementation, and effectiveness assessment
• Provide strategic counsel to senior leadership on emerging cyber threats, compliance challenges, and opportunities to enhance RBC's security architecture and defense mechanisms
• Foster cross-functional collaboration and relationships with business, IT, Risk, and Business Continuity leadership to address complex security issues and drive continuous improvement
• Contribute to training and awareness initiatives to elevate cybersecurity literacy across US business units

What do you need to succeed?

Must-have

• 10+ years of proven cyber security experience (ideally at a consulting or program/strategy delivery level)
• 3+ years' experience in strategic relationship management, delivery performance analysis, and negotiations
• 2-4 years in the financial services or other regulated industries, working at the management level, with demonstrated expertise in US regulatory compliance (NYDFS, NFA, or similar frameworks)
• Strong business and financial acumen plus operational mindset; ability to articulate security value to C-suite and executive stakeholders
• Proven track record building and scaling security programs or teams; comfort operating in ambiguous environments and establishing structure in emerging functions

Nice-to-have

• Financial Services experience in: Wealth Management, Payments, Capital Markets, or similar lines of business

What's in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• Flexible work/life balance options
• Opportunities to do challenging work
• Opportunities to take on progressively greater accountabilities
• Access to a variety of job opportunities across business

The good-faith expected salary range for the above position is $160,000 - $275,000 depending on factors including but not limited to the candidate's experience, skills, registration status; market conditions; and business needs. This salary range does not include other elements that comprise our total compensation package, which includes the following: commission sharing eligibility for select roles, a discretionary bonus, a paid time-off plan, our 401(k) program with company-matching contributions, and our health, dental, vision, life and disability insurance.

RBC's compensation philosophy and principles recognize the importance of a highly qualified global workforce and plays a critical role in attracting, engaging and retaining talent that:

• Drives RBC's high performance culture
• Enables collective achievement of our strategic goals
• Generates sustainable shareholder returns and above market shareholder value

Job Skills: Confidentiality, Critical Thinking, Data Privacy, Decision Making, Group Problem Solving, Information Security Management, Information Technology Security, IT Incident Management, Long Term Planning

Job Location: Goldman Sachs Tower, 30 Hudson Street, Jersey City, United States of America

Work hours/week: 40

Employment Type: Full time

Platform: Technology and Operations

Job Type: Regular

Pay Type: Salaried

Posted Date: 2026-05-18

Application Deadline: 2026-06-19

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above