Director, Strategy & Partnerships, Cybersecurity, Third-Party and Resilience

We’re building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what’s right for our clients.

At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute.

To learn more about CIBC, please visit CIBC.com

What you’ll be doing

Cyber security threats represent one of the most significant risks that financial institutions face today and require constant vigilance and improvement to stay ahead in the current environment.  To address these risks, CIBC maintains a comprehensive and robust information & cyber security program to protect the confidentiality, integrity and availability of its information and systems, to enable trusted client relationships.

As the Director, Strategy & Partnerships on our Cybersecurity, Third Party & Resilience (CTPR) team, you will lead a team of people that will establish and maintain an enterprise-wide strategy for Cybersecurity, Third Party & Operational Resilience that sets the direction of CTPR across the organization, incorporating both current and emerging threats, and working with major bank stakeholders and programs to ensure the strategy is adhered to. This role is critical in ensuring that our security initiatives align with organization’s strategic priorities and effectively mitigate risks. You will participate in external engagement opportunities, working with the broader community to help reduce shared cyber risks through thought leadership and execution, and glean benchmarking insights that can help drive CIBC’s CTPR strategy going forward. 

At CIBC we enable the work environment most optimal for you to thrive in your role. You’ll have the flexibility to manage your work activities within a hybrid work arrangement where you’ll spend 1-3 days per week on-site, while other days will be remote

How you’ll succeed

• Develop CTPR strategic plan – Develop and maintain the enterprise CTPR strategy in accordance with established organizational goals and aligned with CIBC’s business objectives. Consult with major information security-related projects and programs, ensuring that appropriate direction and security requirements are in-line with security strategy.

• Establish strategic oversight -  provide comprehensive oversight of the security service lifecycle to ensure alignment with the organization’s cybersecurity strategy. Ensure that strategic priorities are identified and prioritized throughout all phases of the security service management and program management lifecycle. This includes: development of the security service roadmap, creation of business cases, project prioritization & annual project planning.

• Keep abreast of changes in the global cybersecurity, third-party risk, and operational resilience environment, including how emerging threats, best practices and regulatory requirements affect strategy and direction.  Work closely with other risk and control functions within CIBC to understand CIBC risk tolerance and enterprise risk management practices for incorporation into cybersecurity, third-party risk, and operational resilience plans and strategies.

• External Cybersecurity partnership – Manage an external partnerships program, ensuring that CIBC has an active role in influencing industry direction while also leveraging partnership information for CIBC practices. Lead, support, and participate in external engagement opportunities, working with the broader community (e.g. FI’s, government agencies) to help reduce shared cyber risks through thought leadership and execution, and glean benchmarking insights that can help drive CIBC’s information security strategy forward. Actively participate and represent CIBC in external forums and membership organizations, to both gain insight to and influence evolution of security best practices.  Research external frameworks and models for information security risk management, integrating these models into CIBC organization and planning activities.  Facilitate outreach and CIBC representation on external bodies and industry committees related to information security.  Manage a set of vendors and external services related to benchmarking and information sharing within the information security and risk community.

• Develop CTPR talent strategy - that ensures effective organizational design for the Information Security team, workforce planning, establishment of a talent bench with required skills, as well as forming cross functional career pathways, coaching and mentoring. Establish industry partnerships to source top cyber talent. Establish school partnerships to source talent from security programs. Partner with campus talent acquisition to incorporate IS branding into campus recruitment and presence.

• Drive employee engagement- Develop and implement strategies to enhance employee engagement, fostering a positive workplace culture that aligns with organizational goals and drives performance.

Who you are

• You are a pioneer strategist, who can lead the development of a cutting-edge cybersecurity strategy that enables the delivery of the CTPR mission while seamlessly integrating with the larger organizational priorities. You are passionate about fostering a culture of strategic thinking by putting strategy at the driving seat of business decision-making. You are an expert strategic advisor to the leadership team, with the ability to inspire the CTPR workforce to understand how their actions contribute to achieving business goals and objectives.

• You are an influential leader, who can demonstrate outstanding relationship management capabilities in order to influence actions and decision that drive real change. You are adept at fostering positive relationships with strategic partners through effective communication. Your skillset includes successfully influencing organization’s culture in order to achieve business objectives .

• You are a cybersecurity expert, who is able to utilize a comprehensive understanding of security industry best practices intended to ensure the protection of bank and client information. You keep abreast of the changing threat landscape to continuously improve your knowledge of security principles and approaches. You have a security certification (e.g. CISSP, CISM or equivalent work experience)

• You develop and maintain strong interpersonal relationships, being able to work across a variety of stakeholders (e.g. Information Security teams, Third-party Risk, Operational Resilience, Risk Management, Internal Audit, Architecture, Technology, etc.) to gather input, facilitate discussions, review materials, solve problems and build consensus.

• You are an accountable leader who can deliver. You're passionate about leading, delivering and building sustainable capabilities.

• Values matter to you. You bring your real self to work and you live our values - trust, teamwork, and accountability.

#LI-TA

What CIBC Offers

At CIBC, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential. We aspire to give you a career, rather than just a paycheck.

• We work to recognize you in meaningful, personalized ways including a competitive salary, incentive pay, banking benefits, a benefits program*, defined benefit pension plan*, an employee share purchase plan, a vacation offering, wellbeing support, and MomentMakers, our social, points-based recognition program.

• Our spaces and technological toolkit will make it simple to bring together great minds to create innovative solutions that make a difference for our clients.

• We cultivate a culture where you can express your ambition through initiatives like Purpose Day; a paid day off dedicated for you to use to invest in your growth and development.

*Subject to plan and program terms and conditions

What you need to know

• CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact Mailbox.careers-carrieres@cibc.com

• You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit.

• We may ask you to complete an attribute-based assessment and other skills tests (such as simulation, coding, French proficiency, MS Office). Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us.

Job Location

Toronto-81 Bay, 19th Floor

Employment Type

Regular

Weekly Hours

37.5

Skills

Analytical Thinking, Information Security, Leadership, Security Risk, Security Strategy