Cyber and Technology Operational Risk Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

CIBC US · 6 days ago

Cyber and Technology Operational Risk Manager

positionChicago, IL
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$90K/yr - $130K/yr
date7+ years exp

CIBC US is building a relationship-oriented bank for the modern world and is seeking a Cyber and Technology Operational Risk Manager. In this role, you will ensure effective management of cybersecurity operational risk and collaborate with various partners to maintain a robust risk management framework.

BankingFinancial Services
badNo H1Bnote

Responsibilities

Review operational practices, risk assessments, controls, deficiencies, metrics, and other relevant information to form an independent view of cyber risks and perform effective challenges
Apply a risk-based approach to assess and manage risks related to information/cyber security, ensuring alignment with operational risk management policies, the CIBC risk appetite, and specific risk tolerances
Conduct independent assessments of business lines and initiatives, such as projects, risk and control self-assessments, and incidents, using established operational risk tools and processes
Leverage strong data and analytical skills to conduct detailed research, generate actionable risk insights, and document findings for distribution to various internal audiences
Prepare high-quality, impactful risk reporting and portfolio-level insights for senior operational risk management leadership and committees
Bring credibility and influence by leveraging your broad technology experience and deep risk expertise in areas such as cloud, network, cybersecurity, DevOps, vulnerability management, and IT service management to assess and challenge risks and controls across technology and business lines
Support risk activities across the team, including incident management, deficiency management, risk reviews, and risk assessments, operating within a matrix team environment, and driving continuous improvement in risk management methodologies
Maintain a forward-looking, industry-informed view of the technology and cyber risk landscape, staying current with best practices, performance benchmarks, and emerging trends
Provide expert guidance on the management and mitigation of cyber risks and contribute to the continuous enhancement of operational risk management methodologies and practices
Leverage effective communication and people skills to build and sustain trusted internal relationships, positioning yourself as a valued partner who provides sound risk guidance and demonstrates a deep understanding of both the business and technology environments
Collaborate closely with information security, technology, risk, and business partners to ensure a consistent and integrated approach to risk management
Promote a culture of risk awareness and the importance of robust operational and cyber risk management practices
Ensure operational risk policies, processes, and continuous improvement initiatives are effectively communicated

Qualification

CybersecurityRisk ManagementCloud ComputingIT Service ManagementData AnalysisContinuous ImprovementNIST Cybersecurity FrameworkAgile/DevOpsAnalytical ThinkingGroup Problem SolvingEmerging RisksControl FrameworksRisk MonitoringRisk AssessmentsDecision Making

Required

Broad expertise in cyber and technology risk
Demonstrated experience across IT service management, cybersecurity, and associated industry frameworks and regulations
Adept at managing risk across multiple domains, including technology infrastructure, application delivery, architecture, IT asset management, and cybersecurity
Bachelor's degree preferably in technology and/or information security, management, risk, or business
7+ years of relevant technology and information security risk work experience in the financial industry
Technical acumen and a continuous improvement mindset
Technical experience in areas such as cloud, Agile/DevOps, automation
Industry-recognized certifications (e.g., CISA, CISSP, Microsoft Certified: Cybersecurity Architect Expert) are considered valued assets
Solid understanding of NIST Cybersecurity Framework, ITIL, related IT topics covered by Federal Financial Institutions Examination Council (FFIEC) examination handbooks
Actively contribute to the enhancement of risk management methodologies
Data-driven and insightful
Strong analytical skills to extract insights from data
Collaborative partner and effective communicator
Ability to build strong working relationships and collaborate with diverse stakeholders

Preferred

Large Financial Institution or Large Foreign Banking Organization second line of defense experience

Benefits

Medical
Dental
Vision
Health Savings Account
Life Insurance
Disability
Other Insurance Plans
Paid Time Off (including Sick Leave, Parental Leave and Vacation)
Holidays
401(k)

Company

CIBC US

twittertwitter
Glassdoor4.0
company-logo
CIBC US provides tailored commercial and personal banking services, private banking, wealth management and small business financial solutions.
dateFounded in 2017
location
Chicago, Illinois, USA
people-size1001-5000 employees
web-link
https://us.cibc.com/en/home.html

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Brant Ahrens
Chief Administrative Officer
linkedin

Recent News

Canada NewsWire
CIBC Asset Management Inc. announces a new strategic alliance with Avantis Investors by American Century Investments Français
2025-11-27
Newswire
Wyyerd Fiber Secures Additional Financing to Accelerate Expansion, Increasing Its Debt Facility to $435m
2025-08-08
Canada NewsWire
CIBC Asset Management announces CIBC ETF cash distributions for July 2025 Français
2025-07-25
Company data provided by crunchbase