Senior Director, Head of US IT Risk Governance and Oversight (Global Security)
Top Benefits
About the role
Job Description
What is the opportunity?
The Head of IT Risk Governance at RBC US is a is a First Line of Defense leadership role accountable for establishing, maintaining, and overseeing the US IT Risk framework. This role will report to the Head of IT Risk at RBC US.
This leadership role will establish and manage the US IT risk governance, measure and report the IT Risk indicators of RBC US, monitor compliance with IT Risk internal policies and regulation, provide advisory support for risk management practices, and promote an IT Risk culture across the IT organization.
What will you do?
Build and manage a team of IT Risk professionals responsible for delivering the IT risk framework for RBC US and its Legal Entities in close partnership with Enterprise IT Risk and US Legal Entities IT Risk teams.
Key areas of focus will include:
- US IT Risk Governance
- Develop, manage and communicate CUSO specific IT Risk procedures.
- Manage the CUSO IT Risk Committee.
- Oversee US legal Entity IT Risk practices in alignment with the CUSO framework.
- Measure the performance of the US IT Risk framework.
- US IT Risk Monitoring and Reporting
- Manage CUSO KRI lifecycle inclusive of KRI reviews and reperformance.
- Develop comprehensive risk reports towards senior audience.
- US IT Risk Compliance
- Monitor and communicate changes to internal policies and industry standards for key IT Stakeholders to pro-actively address any impact.
- Monitor and communicate changes to regulatory framework for key IT stakeholders to pro-actively address any impact.
- US IT Risk Framework & Advisory
- Define and ensure US requirements are included into the Enterprise IT Risk Framework.
- Provide advisory support to IT stakeholders for risk assessment and control design.
- US IT Risk Culture
- Provide guidance and training to employees on IT risk management best practices.
- Increase IT Risk awareness through regular communication to IT stakeholders.
What do you need to succeed?
Must have:
- Minimum 10-15 years of experience in IT Risk, preferably in large financial services firms.
- Strong leadership skills.
- Proven track record at analyzing large datasets and extracting added value.
- Excellent written reporting skills towards senior audience.
- Hands-on experience with great attention to details.
- Solid understanding of US IT regulatory requirements is a plus (e.g., OCC Heightened Standards, FFIEC Handbooks, NIST)
- Master’s degree in engineering, ideally in Computer Science.
Nice to have:
- Certifications are a plus (e.g., CRISC, CISA, CISM, CISSP)
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
- Leaders who support your development through coaching and managing opportunities.
- Ability to make a difference and lasting impact.
- Work in a dynamic, collaborative, progressive, and high-performing team.
- Opportunities to do challenging work as part of a global team.
- A world-class training program in financial services.
The expected salary range for this particular position is $200,000-$325,000, depending on your experience, skills, and registration status, market conditions and business needs.
You have the potential to earn more through RBC’s discretionary variable compensation program which gives you an opportunity to increase your total compensation, provided the business meets its performance targets and you meet your individual goals.
RBC’s compensation philosophy and principles recognize the importance of a highly qualified global workforce and plays a critical role in attracting, engaging and retaining talent that:
- Drives RBC’s high-performance culture.
- Enables collective achievement of our strategic goals.
- Generates sustainable shareholder returns and above market shareholder value.
Job Skills
Critical Thinking, Cyber Security Management, Decision Making, Detail- Oriented, Information Security Management, Information Technology Security, Interpersonal Relationship Management, IT Security Architecture, Performance Management (PM)
Additional Job Details
Address:
GOLDMAN SACHS TOWER, 30 HUDSON STREET:JERSEY CITY
City:
Jersey City
Country:
United States of America
Work hours/week:
40
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-10-24
Application Deadline:
2025-10-31
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.
Senior Director, Head of US IT Risk Governance and Oversight (Global Security)
Top Benefits
About the role
Job Description
What is the opportunity?
The Head of IT Risk Governance at RBC US is a is a First Line of Defense leadership role accountable for establishing, maintaining, and overseeing the US IT Risk framework. This role will report to the Head of IT Risk at RBC US.
This leadership role will establish and manage the US IT risk governance, measure and report the IT Risk indicators of RBC US, monitor compliance with IT Risk internal policies and regulation, provide advisory support for risk management practices, and promote an IT Risk culture across the IT organization.
What will you do?
Build and manage a team of IT Risk professionals responsible for delivering the IT risk framework for RBC US and its Legal Entities in close partnership with Enterprise IT Risk and US Legal Entities IT Risk teams.
Key areas of focus will include:
- US IT Risk Governance
- Develop, manage and communicate CUSO specific IT Risk procedures.
- Manage the CUSO IT Risk Committee.
- Oversee US legal Entity IT Risk practices in alignment with the CUSO framework.
- Measure the performance of the US IT Risk framework.
- US IT Risk Monitoring and Reporting
- Manage CUSO KRI lifecycle inclusive of KRI reviews and reperformance.
- Develop comprehensive risk reports towards senior audience.
- US IT Risk Compliance
- Monitor and communicate changes to internal policies and industry standards for key IT Stakeholders to pro-actively address any impact.
- Monitor and communicate changes to regulatory framework for key IT stakeholders to pro-actively address any impact.
- US IT Risk Framework & Advisory
- Define and ensure US requirements are included into the Enterprise IT Risk Framework.
- Provide advisory support to IT stakeholders for risk assessment and control design.
- US IT Risk Culture
- Provide guidance and training to employees on IT risk management best practices.
- Increase IT Risk awareness through regular communication to IT stakeholders.
What do you need to succeed?
Must have:
- Minimum 10-15 years of experience in IT Risk, preferably in large financial services firms.
- Strong leadership skills.
- Proven track record at analyzing large datasets and extracting added value.
- Excellent written reporting skills towards senior audience.
- Hands-on experience with great attention to details.
- Solid understanding of US IT regulatory requirements is a plus (e.g., OCC Heightened Standards, FFIEC Handbooks, NIST)
- Master’s degree in engineering, ideally in Computer Science.
Nice to have:
- Certifications are a plus (e.g., CRISC, CISA, CISM, CISSP)
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
- Leaders who support your development through coaching and managing opportunities.
- Ability to make a difference and lasting impact.
- Work in a dynamic, collaborative, progressive, and high-performing team.
- Opportunities to do challenging work as part of a global team.
- A world-class training program in financial services.
The expected salary range for this particular position is $200,000-$325,000, depending on your experience, skills, and registration status, market conditions and business needs.
You have the potential to earn more through RBC’s discretionary variable compensation program which gives you an opportunity to increase your total compensation, provided the business meets its performance targets and you meet your individual goals.
RBC’s compensation philosophy and principles recognize the importance of a highly qualified global workforce and plays a critical role in attracting, engaging and retaining talent that:
- Drives RBC’s high-performance culture.
- Enables collective achievement of our strategic goals.
- Generates sustainable shareholder returns and above market shareholder value.
Job Skills
Critical Thinking, Cyber Security Management, Decision Making, Detail- Oriented, Information Security Management, Information Technology Security, Interpersonal Relationship Management, IT Security Architecture, Performance Management (PM)
Additional Job Details
Address:
GOLDMAN SACHS TOWER, 30 HUDSON STREET:JERSEY CITY
City:
Jersey City
Country:
United States of America
Work hours/week:
40
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-10-24
Application Deadline:
2025-10-31
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.