Chief Information Security Officer

3 months ago
# of Openings


CIBC provides tailored commercial, wealth management, personal, and small business financial solutions in the United States through 46 offices in 18 states, as well as cross-border banking services to clients with North American operations. Learn more at


CIBC is a Toronto-based, global financial institution with a 150 year history, serving 11 million personal and business clients. We invest in our businesses, our clients, our people and our communities to deliver consistent and sustainable earnings to our shareholders. 


CIBC delivers access to career and development opportunities, safe and healthy workplaces, effective training, and positive work-life balance – so that employees are able to perform at their best, contribute to their communities and focus on cultivating deeper relationships with our clients.


Every year, CIBC is recognized for its business success, community commitment and employee initiatives.  We are proud of this success and are committed to creating an inclusive workplace and an environment where all employees can excel.


CIBC Bank USA is an Equal Opportunity Employer M/F/Disability/Veteran




1. The Chief Information Security Officer (CISO) is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets and employees are adequately protected. This position is responsible for identifying, evaluating, mitigating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise.

2. The position requires a visionary leader with sound knowledge of business management and a broad understanding of information security technologies and threats. The CISO will proactively work with business and technology partners to implement a strategy and practices that meet defined policies and standards for information security. He or she will also oversee a variety of security related risk management activities. A key element of the role is working with executive management to determine acceptable levels of risk for the organization. The CISO must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode.



Knowledge/Experience Required

 Advanced knowledge of applicable US laws and regulations as they relate to the Information Risk and Information Technology Risk

 10+ years of managerial experience in information security

 CISO designation and associated certifications at a prior financial institution of similar scope and scale

 A university degree in Information or Technology Management or Risk Management or equivalent work experience. Master’s degree in either of these fields or MBA is preferred.

 Experience in implementing strategic plans and policy development

 Advanced knowledge of business processes, management, and budgeting

 Advanced understanding of human resource management principles and practices

 Advanced technology background



Skills Required

 Exceptional and proven leadership capabilities – communication, influence & negotiation, conflict resolution, people management, relationship management (internal/external), and team building

 Proven ability to successfully partner with internal clients and vendors to align strategy with deliverables, identify business challenges and develop alternatives to mitigate

 Enjoys working in a team-oriented, collaborative environment

 Strong service management and service delivery orientation

 Expert written, oral, and interpersonal communication skills

 Ability to present ideas in user-friendly language

 Proven ability to work within a changing environment and lead the implementation of change.

 Ability to apply change management principles to initiatives of variable sizes and degrees of complexities

 Ability to assess the impact or potential impact of change management initiatives of various sizes and degrees of complexities on business financials and performance

 Advanced level of creativity, strategic thinking and problem management skills

 Ability to conduct and direct research into information risk issues

 Self-motivated, self-directed, attentive to detail, and able to multi-task

 Ability to effectively prioritize and execute tasks in a high-pressure environment


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed