Apply on Employer Site

CIBC · 1 day ago

Sr. Manager, Information Security - Governance & Regulatory

Chicago, IL

Full-time

Hybrid

Senior Level, Lead/Staff

$150K/yr - $175K/yr

10+ years exp

CIBC is a relationship-oriented bank for the modern world, seeking a talented professional for the role of Sr. Manager, Information Security. The role involves leading the Information Security team, managing risks related to information assets, and collaborating with stakeholders to enhance security processes and controls.

BankingCredit CardsFinancial Services

No H1B

Responsibilities

Provide strategic thought leadership, building and regularly updating the US Region’s vision, roadmap, and backlogs related to Information Security

Ensure program governance across US Information Security teams

Lead the execution of detailed risk assessments, reporting of risks, and coordination with impacted stakeholders

Complete ad hoc and urgent requests from internal and external partners, and recommend new controls to reduce risks

Provide oversight of individual and team activities, supporting development of roadmaps and ensuring execution

Create powerful reports to executive management and external parties aimed at communicating Informational Security program maturity, organizational risks, status of key initiatives and projects that impact the US Region, and participate in the design and implementation of security assessment processes throughout the Information Security department

Foster collaborative relationships with a wide range of stakeholders to identify opportunities to enhance Information Security processes and controls, understand pain-points and priorities, influence direction, solve problems, and ensure successful adoption and operation of policies and standards

Grow and deepen an external network of industry contacts and participate in external forums to monitor Information Security trends, developments, and best practices and to assist in the effective benchmarking and evolution of CIBC capabilities

Qualification

Information SecuritySecurity Risk AssessmentGovernanceTechnical KnowledgeProject ManagementAnalytical ThinkingGroup Problem SolvingNetwork OperationsSecurity Operations

Required

You have at least 10 years of experience leading execution of information security risk and compliance assessments or audits based on industry standard frameworks and/or regulatory requirements in highly regulated industries (e.g., NIST, ISO, COSO, GLBA, NY DFS 500, FFIEC, PCI, etc.)

You have Information Technology experience

You are action oriented, thriving when you're empowered to take initiative, go above and beyond, and deliver results

You have a passion for excellence, holding yourself and others accountable

You are comfortable with ambiguity and enjoy investigating complex problems and making sense of information

You are a strong communicator, verbally and in writing, with the ability to flex to needs of executives and team members within and outside of US Information Security

You're motivated by accomplishing individual and team based goals and consistently delivering your best to make a difference

You are a curious learner, staying current on industry trends

You challenge the status quo and have a passion for continuous improvement

You have experience leading teams

Values matter to you. You bring your real self to work and you live our values - trust, teamwork, and accountability