Cybersecurity & Technology Risk Officer

Calling all innovators - find your future at Fiserv.

We're Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we're involved. If you want to make an impact on a global scale, come make a difference at Fiserv.

Job Title

Cybersecurity & Technology Risk Officer

Seeking a strategic and business-savvy Cybersecurity & Technology Risk Officer (CTRO) to serve as the critical link between our business unit leadership and the broader enterprise Cybersecurity organization. This individual will champion cybersecurity awareness and risk mitigation, advise executive stakeholders, and ensure alignment of business objectives with enterprise security and technology standards, and regulatory expectations.

As the CTRO, this individual is responsible for embedding cybersecurity principles into the day-to-day and strategic operations of the business, with a focus on data protection, resiliency, regulatory compliance, and enabling secure innovation. This role is particularly well-suited to a candidate with both technical depth, risk management experience, and strong executive communication skills in the context of the financial services sector.

Key Responsibilities

• Executive Engagement & Risk Advisory
  Partner with CIOs, senior leadership, and technology stakeholders to assess and communicate cybersecurity risk in business terms. Influence prioritization of security investments and drive remediation strategies that align with enterprise risk tolerance.
• Cybersecurity Consulting & Enablement
  Serve as the primary cybersecurity advisor to the business, interpreting enterprise policies, providing actionable guidance, and ensuring business initiatives comply with internal standards and regulatory requirements.
• Risk Identification & Mitigation
  Identify, assess, and document security risks across products, applications, and third-party relationships. Collaborate with remediation owners to develop and track resolution plans based on risk severity and business impact.
• Metrics & Reporting
  Deliver executive-level risk dashboards and metrics that provide transparency into the business’s security posture. Ensure timely and meaningful communication of emerging risks and remediation progress.
• Policy & Strategy Alignment
  Collaborate with the broader Cybersecurity and Risk organizations to ensure security strategies are pragmatic, risk-based, and aligned with both business priorities and technical capabilities.
• Compliance & Awareness
  Promote awareness of regulatory and industry obligations through targeted training, awareness campaigns, and proactive engagement. Ensure the business maintains readiness for internal audits and external regulatory assessments.
• Security Assessments & Continuous Improvement
  Ensure security risk and controls assessments are conducted at appropriate intervals and with relevant depth based on evolving threats and business changes. Continuously refine assessment methodologies to improve effectiveness and efficiency.
• Technology Enablement & Governance
  Guide technology teams in adopting enterprise cybersecurity tools, capabilities, and controls. Assist in prioritizing adoption based on risk impact and business value.
• Threat & Trend Monitoring
  Stay current with the threat landscape, regulatory developments, and best practices. Apply insights to anticipate future risks and inform business-specific security planning.
• Team & Culture Leadership
  Foster a security-first mindset across the business. Promote high performance, collaboration, and continuous development within the extended risk and technology teams.

Qualifications

• Education - Bachelor’s degree in Computer Science, Information Security, Information Technology, or related discipline (or equivalent work experience)
• Certifications preferred but not required: CISSP (Certified Information Systems Security Professional); CRISC, CISM, or other risk-related certifications

Experience

• 10+ years of progressive experience in Information Security, Cyber Risk, or Technology Risk roles
• 5+ years in the financial services or banking industry with working knowledge of relevant regulations (e.g., GLBA, FFIEC, PCI, SOX)
• Proven experience influencing executive leadership and communicating complex technical risks in business terms
• Demonstrated success in leading cross-functional teams and delivering cybersecurity solutions at scale
• Experience with cybersecurity governance frameworks (e.g., NIST CSF, ISO/IEC 27001) and enterprise risk management practices

Key Competencies

• Strong business acumen and the ability to apply risk-based thinking to diverse technical environments
• Excellent interpersonal and communication skills with executive presence
• Adept at balancing business objectives with security imperatives
• Ability to operate with a sense of urgency in high-stakes, highly regulated environments
• Strategic mindset with the ability to execute operationally

Salary Range

$210,000.00 - $330,000.00

These pay ranges apply to employees in New Jersey and New York. Pay ranges for employees in other states may differ.

It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran.

For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company’s sole discretion.

Thank you for considering employment with Fiserv.  Please:

• Apply using your legal name
• Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

Our commitment to Equal Opportunity:

Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. 

If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact [email protected]. Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv’s Disability Accommodation Policy for additional information.

Note to agencies:

Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions.

Warning about fake job posts:

Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.