Cibc
Information Security Senior Manager
We're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients. At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute. As a leader in the US Region Information Security team, you'll work in a fast-paced environment where you will be empowered to make impactful contributions to mature and sustain our risk management program. As an Information Security Senior Manager, you will be responsible for assessing and managing risks related to the confidentiality, integrity, and availability of the organization's information assets. You will work closely with other members of the Information Security department, as well as with business leaders, to identify, evaluate, and mitigate risks to the organization's information systems. At CIBC we enable the work environment most optimal for you to thrive in your role. You can effectively perform all work activities remotely, and will only be required to be on-site on an occasional basis. How you'll succeed: Strategy
Provide strategic thought leadership, building and regularly updating the US Region's vision, roadmap, and backlogs related to Information Security. Gain and nurture support for the program through the creation of business cases and apprising senior and executive management. Execute and deliver on initiatives with agility and quality. Governance
Ensure program governance across US Information Security teams. Delivery and Execution
You will lead the execution of detailed Risk and Control Self-Assessments, reporting of risks, and coordination with impacted stakeholders. Help us complete ad hoc and urgent requests from internal and external partners, and recommend new controls to reduce risks. Project Management
Provides oversight of individual and team activities, supporting development of roadmaps and ensuring execution. Communication
Create and present reports to executive management aimed at communicating organizational risks, status of key initiatives and projects that impact the US Region, and participate in the design and implementation of security assessment processes throughout the Information Security department. Teamwork and Relationship Building
Foster collaborative relationships with a wide range of stakeholders to identify opportunities to enhance Information Security processes and controls, understand pain-points and priorities, influence direction, solve problems, and ensure successful adoption and operation of policies and standards. Grow and deepen an external network of industry contacts and participate in external forums to monitor Information Security trends, developments, and best practices and to assist in the effective benchmarking and evolution of CIBC capabilities. Who you are: You have relevant experience, you have at least 10 years of experience leading execution of information security risk and compliance assessments or audits based on industry standard frameworks and/or regulatory requirements (e.g., NIST, ISO, COSO, GLBA, NY DFS 500, FFIEC, PCI, etc.). You have Information Technology experience. You act like an owner, you are action oriented, thriving when you're empowered to take initiative, go above and beyond, and deliver results. You have a passion for excellence, holding yourself and others accountable. You give meaning to data, you are comfortable with ambiguity and enjoy investigating complex problems and making sense of information. You communicate detailed information in a meaningful way. You're motivated by collective success, you know that teamwork can transform a good idea into a great one. You know that an inclusive team that enjoys working together can bring a vision to life. You are a strong communicator, verbally and in writing, with the ability to flex to needs of executives and team members within and outside of US Information Security. You know that details matter, you notice things that others don't. Your critical thinking skills help to inform your decision-making. You're goal-oriented, you are motivated by accomplishing your goals and delivering your best to make a difference. You are a curious learner, staying current on industry trends. You challenge the status quo and have a passion for continuous improvement. You have experience leading teams. Values matter to you. You bring your real self to work and you live our values - trust, teamwork, and accountability. What you need to know: CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact Mailbox.careers-carrieres@cibc.com. You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit. We may ask you to complete an attribute-based assessment and other skills tests (such as simulation, coding, MS Office). Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us. Employment Type: Regular Weekly Hours: 40 Skills: Analytical Thinking, Group Problem Solving, Information Security, Network Operations, Security Operations, Security Risk Assessment, Technical Knowledge
We're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients. At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute. As a leader in the US Region Information Security team, you'll work in a fast-paced environment where you will be empowered to make impactful contributions to mature and sustain our risk management program. As an Information Security Senior Manager, you will be responsible for assessing and managing risks related to the confidentiality, integrity, and availability of the organization's information assets. You will work closely with other members of the Information Security department, as well as with business leaders, to identify, evaluate, and mitigate risks to the organization's information systems. At CIBC we enable the work environment most optimal for you to thrive in your role. You can effectively perform all work activities remotely, and will only be required to be on-site on an occasional basis. How you'll succeed: Strategy
Provide strategic thought leadership, building and regularly updating the US Region's vision, roadmap, and backlogs related to Information Security. Gain and nurture support for the program through the creation of business cases and apprising senior and executive management. Execute and deliver on initiatives with agility and quality. Governance
Ensure program governance across US Information Security teams. Delivery and Execution
You will lead the execution of detailed Risk and Control Self-Assessments, reporting of risks, and coordination with impacted stakeholders. Help us complete ad hoc and urgent requests from internal and external partners, and recommend new controls to reduce risks. Project Management
Provides oversight of individual and team activities, supporting development of roadmaps and ensuring execution. Communication
Create and present reports to executive management aimed at communicating organizational risks, status of key initiatives and projects that impact the US Region, and participate in the design and implementation of security assessment processes throughout the Information Security department. Teamwork and Relationship Building
Foster collaborative relationships with a wide range of stakeholders to identify opportunities to enhance Information Security processes and controls, understand pain-points and priorities, influence direction, solve problems, and ensure successful adoption and operation of policies and standards. Grow and deepen an external network of industry contacts and participate in external forums to monitor Information Security trends, developments, and best practices and to assist in the effective benchmarking and evolution of CIBC capabilities. Who you are: You have relevant experience, you have at least 10 years of experience leading execution of information security risk and compliance assessments or audits based on industry standard frameworks and/or regulatory requirements (e.g., NIST, ISO, COSO, GLBA, NY DFS 500, FFIEC, PCI, etc.). You have Information Technology experience. You act like an owner, you are action oriented, thriving when you're empowered to take initiative, go above and beyond, and deliver results. You have a passion for excellence, holding yourself and others accountable. You give meaning to data, you are comfortable with ambiguity and enjoy investigating complex problems and making sense of information. You communicate detailed information in a meaningful way. You're motivated by collective success, you know that teamwork can transform a good idea into a great one. You know that an inclusive team that enjoys working together can bring a vision to life. You are a strong communicator, verbally and in writing, with the ability to flex to needs of executives and team members within and outside of US Information Security. You know that details matter, you notice things that others don't. Your critical thinking skills help to inform your decision-making. You're goal-oriented, you are motivated by accomplishing your goals and delivering your best to make a difference. You are a curious learner, staying current on industry trends. You challenge the status quo and have a passion for continuous improvement. You have experience leading teams. Values matter to you. You bring your real self to work and you live our values - trust, teamwork, and accountability. What you need to know: CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact Mailbox.careers-carrieres@cibc.com. You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit. We may ask you to complete an attribute-based assessment and other skills tests (such as simulation, coding, MS Office). Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us. Employment Type: Regular Weekly Hours: 40 Skills: Analytical Thinking, Group Problem Solving, Information Security, Network Operations, Security Operations, Security Risk Assessment, Technical Knowledge