What is the opportunity?

You will be operating as part of the 2nd line of defense Cyber Security and Technology Risk Management function in London.

You will provide challenge and oversight on the growing scope of RBC UK, Europe and Asia Pacific region, operating in a strict multi-jurisdictional regulatory regime.

Responsibilities include:

• Providing oversight across RBC’s broad set of Enterprise Cyber Security & Technology Risk controls and processes (e.g., RCSA, Risk and Controls registers)
• Providing an opinion on RBC’s Cyber Security and Technology Risk posture
• Ensuring compliance with relevant regulations, oversight and challenge of Key Risk Indicators to measure and monitor Cyber & Technology Risk
• Contributing to the development of Enterprise and Regional policies and standards governing Cyber and Technology Risk.

The role has a horizontal coverage across EU/UK/APAC regions and will also help ensure load-balance with backup/continuous coverage during the absence of the primary accountable in-charge.

This position is full time and will require you to work a minimum of 4 days in the office per week with the option to work one day from home.

What will you do?

Provide independent challenge and oversight over technology risk and control through several core capabilities:

• Provide advisory on RBC’s IT Risk framework, policies, standards and guidelines and contribute to their development where appropriate
• Review risk process outputs, self-identified risk issues and risk-acceptance to ensure the business is operating within Risk Appetite
• Review and challenge Control Assurance outcomes as performed by 1st line
  Conduct Operational Risk Event reviews related to Technology and quality reviews on Self-identified risks/issues
• Maintain knowledge of emerging technologies, threats/vulnerabilities and risk management practices and its implications to the business platform
• Leverage information on current threats to focus business and IT attention on emerging risk themes and issues
• Support Tech/Cyber regulatory assessment/examinations and thematic review
• Leverage data driven insight and provide opinions and challenge on key risk indicators
• Provide challenge and oversight over major technology related initiatives in relation to the bank’s Risk Appetite Support the business by providing an informed view of risks related to changes and new initiatives
• Engage with major transformation changes proving strong risk oversight practices
• Ensure alignment of IT Risk policies/standards with relevant regulations.

Monitor against Risk Appetite

• Support driving the regional Technology Risk Committee
• Support quarterly profiles across all Cyber and IT Risk Categories to provide a strong fact-based opinion on the IT Risk profile for the business
• Provide timely insight to business and technology partners on risk and controls, to ensure effective responses and no surprises.

Business & Technology Relationships and Leadership

• Develop effective business and technology relationships with key stakeholders
• Educate the business on cyber and technology risk, balanced risk approaches, and risk acceptance
• Proactively manage complex and sometimes competing relationships with key local, regional and global stakeholders on a regular basis
• Develop strong relationships within GRM and Operational risk in support of common objectives and goals.

What do you need to succeed?

Must-have

• Extensive experience in financial services or professional services firm in Technology and Cybersecurity Risk Management
• Experience in development of Cyber and IT Risk Frameworks aligned to regulatory expectations
• Strong metrics and performance/risk management skills including data management and analysis
• Highly engaging and collaborative, flexible, adaptable, a great communicator who can quickly form and establish meaningful partnerships and coalitions.

Nice-to-have

• Experience in working within a larger financial services company
• CRISC or other Information Security Certifications.

What is in it for you?

We thrive on the challenge to be our best - progressive thinking to keep growing and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses, flexible benefits and competitive compensation
• Leaders who support your development through coaching and managing opportunities
• Opportunities to work with the best in the field
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services.

Agency Notice

RBC Group does not accept agency resumés. Please do not forward resumés to our employees, nor any other company location. RBC Group only pay fees to agencies where they have entered into a prior agreement to do so and in any event do not pay fees related to unsolicited resumés. Please contact the Recruitment function for additional details.

Job Skills

Business Continuity and Disaster Recovery (BCDR), Cost-Benefit Analysis (CBA), Cyber Security Management, Firewall Management, Information Security Management, IT Network Security, Operational Delivery, Problem Management, Process Management, Threat Management

Additional Job Details

100 BISHOPSGATE:LONDONLondonUnited Kingdom35Full timeGROUP RISK MANAGEMENTRegularSalaried2025-06-042025-06-17

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

Inclusion and Equal Opportunity Employment

At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.