Manager, Cybersecurity & Technology Control Assessment

We're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients.

At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute.

To learn more about CIBC, please visit CIBC.com

Technology Infrastructure and Innovation (TI&I) spans the areas of Technology, Information Security, Deposit Operations, Loan Operations, Project Management, Data Management Office, Corporate Real Estate, Corporate Security, and Risk & Governance. TI&I delivers operational excellence by effectively managing the technology and operations required to run the bank, enables the bank's transformation by focusing on clients, innovating for the future and simplifying operations and supporting the bank's growth objectives through flawless execution of strategic initiatives.

Governance and Oversight is a First Line control group within the Three Lines of Defense model. As a first line control group, we empower CIBC's Control Framework, which sets out the objectives for the design of the internal control environment aligned to the Risk Appetite Statement (RAS). We serve the Bank's strategy to deliver a superior client experience through the stewardship of sustained and effective risk discipline. US TI&I Governance & Oversight enables the Bank's strategic mandate to maintain financial strength and risk discipline while advancing our purpose-driven culture. We collaborate with the strategic Business Units and work across Functional Groups to grow our business resiliency and value while managing risk. In addition, we steward the processes for assessing the design and operating effectiveness of the internal control environment, and we strengthen the CIBC Risk Management Framework with related policies and processes.

What You'll Be Doing

As the Manager, Cybersecurity & Technology Control Assessment you will independently conduct control testing, providing assessment, consulting, and reporting on operational risk and controls involving people, technology, processes or external events that arise from audit and control testing. Independently understand and follow the qualitative and quantitative components of our Risk Appetite Statements. You escalate matters through one of the appropriate channels identified in the CIBC Code of Conduct (i.e., HR, management, Ethics Hotline, Whistleblower, etc.) upon observing activities that may be inconsistent with CIBC's policies, frameworks, guidelines, processes and controls. Speaking up if witnessing behaviors that drive poor or unfair outcomes for clients, team members or other stakeholders and escalating matters that can result in adverse market practices and outcomes, thereby negatively impacting CIBC's reputation as a leading financial institution. You work closely with the Sr. Managers and / or Program Director of the US TII Control Assessment Program on completion of cybersecurity on cybersecurity and information technology control design and operating effectiveness testing. Additionally, you independently assist in the development of cybersecurity control testing program to align requirements from Governance and Regulatory bodies and maintain awareness of regulatory changes across the industry, analyzing how the changes will affect the line of business, and creating a strategy to implement such changes within US TI&I

At CIBC we enable the work environment most optimal for you to thrive in your role. Details on your work arrangement (proportion of on-site and remote work) will be discussed at the time of your interview.

How You'll Succeed

• Risk Management - Leverage you technology and cyber security risk management expertise to share your knowledge by introducing ideas to the organization to continuously maintain an acceptable risk posture that is aligned with the industry peers, regulatory requirements and CIBC's risk appetite.
• Understand Requirements - Conduct analysis of processes and functional requirements to provide proactive advice and guidance to internal stakeholders to ensure that the requirements and work packages are appropriately defined and completed.
• Time and Project Management - Leverage your strong project management skills to proactively manage timelines by keeping direct managers and internal client informed of predicted / preliminary results and proactively communicate reasonable estimated time to completion by avoiding working up to the last minute for every task or adding burden to direct manager or the rest of the organization.
• Internal Client Engagement - Meet with internal clients to understand their priorities and advise them on technology and cybersecurity risk management solutions. Use your knowledge of cybersecurity and technology to protect the organization by providing proactive advisory services to the technology and cybersecurity teams in deploying risk management measures and in remediating known issues.
• Communication - Exhibit strong verbal and written communication skills. You will communicate effectively with internal and external teams, and different lines of business.
• Relationship Management - You'll create trusted advisory relationships with all partners cross risk management function across all lines of defense, inclusive of Operational Risk Management, Internal Audit, Enterprise counterparts, and control assessment teams.
• Collaboration - Engaging with cross functional teams across all three lines of defense to foster open communication, value diverse perspectives, ensuring that all voices are heard, and contributing to shared success. You will build trust within the team, encouraging a supportive environment that enhances creativity and problem-solving.

Who You Are

California residents - your privacy rights regarding your actual or prospective employment

At CIBC, we offer a competitive total rewards package. This role has an expected salary range of $80,000 - $130,000 for the market based on experience, qualifications, and location of the position. The successful candidate may be eligible to participate in the relevant business unit's incentive compensation plan, which may also include a discretionary bonus component. CIBC offers a full range of benefits and programs to meet our employee's needs; including Medical, Dental, Vision, Health Savings Account, Life Insurance, Disability, and Other Insurance Plans, Paid Time Off (including Sick Leave, Parental Leave and Vacation), Holidays and 401(k), in addition to other special perks reserved for our team members.

#LI-TA

What CIBC Offers

At CIBC, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential. We aspire to give you a career, rather than just a paycheck.

What you need to know

Job Location

IL-Illinois - Virtual

Employment Type

Regular

Weekly Hours

40

Skills

Analytical Thinking, Control Frameworks, Decision Making, Group Problem Solving, Operation Risk Management, Risk Analytics, Risk Assessments, Risk Governance