Skip to main content
Saved Jobs 0
Search Jobs

Search Jobs

Business Information Security Officer (BISO) - Digital Assets

Location Southlake, Texas, United States; Austin,Texas,United States;Omaha,Nebraska,United States; Requisition ID 2026-118152 Category Risk & Regulatory Position Type Regular
Apply Now

Your Opportunity

Your opportunity


At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

We believe in the importance of in-office collaboration and fully intend for the selected candidate for this role to work on site in the specified location(s).  

The Business Information Security Officer (BISO) is a subject matter professional (SMP) within the Technology Risk & Cybersecurity Compliance (TRACC) team under the Schwab Cybersecurity Services (SCS) organization. The Digital Assets BISO acts as the primary cybersecurity risk liaison and advisor for Schwab business units engaged in cryptocurrency and digital asset–related products, services, and vendor partnerships. This role ensures that all digital asset initiatives adhere to Schwab’s cybersecurity policies and procedures, while enabling innovation in a secure and compliant manner.

The Digital Assets BISO will oversee vendor cybersecurity controls, conduct comprehensive risk assessments, guide business and technology teams on policy and standards, and support compliance and audit activities. The role requires strong domain knowledge of crypto ecosystems, custody/security models, and third-party risk management, along with effective communication skills to bridge cybersecurity, engineering, and business functions.

Key Responsibilities:

  1. Cybersecurity Governance & Business Alignment
  • Serve as the embedded security partner for Digital Assets business teams, aligning security requirements with product and operational objectives.
  • Translate enterprise cybersecurity policies and procedures into practical, actionable expectations for digital asset initiatives.
  • Participate in project planning, architecture reviews, and roadmap discussions to ensure secure design and regulatory alignment.
  • Support risk exception, risk acceptance, and mitigation processes.
  1. Digital Asset & Cryptocurrency Risk Assessments
  • Lead end-to-end cybersecurity risk assessments for digital asset products, crypto custody models, wallet operations, blockchain integrations, and supporting vendors.
  • Evaluate risks related to private key management, wallet operations, smart contract risks, node infrastructure, and transaction processes.
  • Document risks, recommend compensating controls, and track remediation to closure.
  1. Vendor Cybersecurity Oversight
  • Own the security risk lifecycle for digital asset vendors—from due diligence and contract negotiation to ongoing monitoring.
  • Review vendor cybersecurity evidence (SOC 2, pen tests, questionnaires, cloud posture).
  • Ensure contractual controls for data protection, breach notification, crypto asset handling, and regulatory adherence.
  • Track and drive remediation of vendor findings.
  1. Education, Policy, and Standards Enablement
  • Educate business, engineering, and operations teams on Schwab’s cybersecurity policies and secure practices.
  • Develop crypto-specific security training and guidance.
  • Promote a culture of security awareness.
  1. Compliance, Audit, and Regulatory Support
  • Prepare and coordinate internal/external audit activities.
  • Ensure controls operate effectively and evidence is complete.
  • Support alignment with SEC, FINRA, OCC, FFIEC, and other regulatory expectations.
  1. Cyber Incident Preparedness & Response
  • Collaborate with Cyber Operations and IR teams for crypto-specific incident preparedness.
  • Contribute to playbooks for key compromise, vendor breaches, on-chain exploits, and blockchain outages.
  1. Risk Reporting & Executive Communication
  • Produce business-focused reporting on residual risk, vendor posture, assessment outcomes, KRIs, and audit findings.
  • Present risks and recommendations to leadership.

What you have


Qualifications:

  • Bachelor’s degree in Information Security, Computer Science, Engineering, or related field.
  • 7+ years in cybersecurity or technology risk.
  • Experience with digital assets, blockchain, or crypto custody/security.
  • Familiarity with cybersecurity frameworks: NIST CSF, NIST 800-53, , SOC 2, FFIEC.
  • Strong communication and risk articulation skills.

Preferred Qualifications

  • Cybersecurity related certification such as: CISSP, CISM, CRISC, CCSP, CISA or similar.
  • Crypto-focused credentials or blockchain training.
  • Knowledge of key management systems, smart contract risks, and cloud security.
  • Experience with GRC (Governance Risk & Compliance) platforms.

What’s in it for you

At Schwab, you’re empowered to shape your future. We champion your growth through meaningful work, continuous learning, and a culture of trust and collaboration—so you can build the skills to make a lasting impact. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.

We offer a competitive benefits package that takes care of the whole you – both today and in the future:

  • 401(k) with company match and Employee stock purchase plan
  • Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
  • Paid parental leave and family building benefits
  • Tuition reimbursement
  • Health, dental, and vision insurance

What you are good at

What you have

Qualifications:

  • Bachelor’s degree in Information Security, Computer Science, Engineering, or related field.
  • 7+ years in cybersecurity or technology risk.
  • Experience with digital assets, blockchain, or crypto custody/security.
  • Familiarity with cybersecurity frameworks: NIST CSF, NIST 800-53, , SOC 2, FFIEC.
  • Strong communication and risk articulation skills.

Preferred Qualifications

  • Cybersecurity related certification such as: CISSP, CISM, CRISC, CCSP, CISA or similar.
  • Crypto-focused credentials or blockchain training.
  • Knowledge of key management systems, smart contract risks, and cloud security.
  • Experience with GRC (Governance Risk & Compliance) platforms.

Why Schwab?

At Schwab, “Own Your Tomorrow” embodies everything we do! We are committed to helping our employees unleash their potential and achieve their dreams. Our employees get to play a central role in disrupting a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth. We’re a modern financial services firm that stands apart from the industry, where you can go as far as your ambition takes you.

Hear from employees: What’s it like to work at Schwab!

The benefits of working at Schwab : a package designed to empower your health, wealth, career and life. Schwab is committed to building a diverse and inclusive workplace where everyone feels valued.

As an equal employment opportunity employer, our policy is to provide equal employment opportunities to all employees and applicants without regard to any status that is protected by law. (Please click here to see policy.)

Schwab is also an affirmative action employer, focused on advancing women, minorities, veterans, and individuals with disabilities in the workplace. We believe diversity and inclusion are part of our success as a company and our purpose of serving every client with passion and integrity.

Apply Now