Senior Manager Information Security & Tech Risk Mgmt.

Senior Manager, Information Security & Technology Risk Management

Role Title: Senior Manager, Information Security & Technology Risk Management

Country: Barbados/Bahamas/Cayman/Jamaica/Trinidad

Permanent full- time

About Us

CIBC FirstCaribbean is a major Caribbean bank offering a full range of market-leading financial services in Corporate Banking, Retail Banking, Wealth Management, Credit Cards, Treasury Sales and trading and Investment Banking. We are a large, regionally listed bank in the English and Dutch speaking Caribbean. The bank has over 2,600 staff; 54 branches, 22 banking centres and offices in 15 regional markets.

Technology & Operations

Delivering the systems and technologies to support our clients requires innovation. As professionals we are committed to raising the bar of excellence through the technology we deploy and the processes we support. Every click and swipe, supports the delivery of exceptional client service.

About the Role

The Senior Manager, Information Security & Technology Risk Management works collaboratively with Technology teams and third parties to ensure efficient and effective delivery of information / cyber security risk management to FirstCaribbean. The Senior Manager directs and leads a team who proactively identify, assess, mitigate and communicate the Bank’s information security / cybersecurity risks as a key component of the Bank’s overall operational risk management programme.

About Success

• Assists with the development and implementation of the information / cybersecurity strategy and recommends changes to the strategy / roadmap to ensure that alignment and continued protection of the Bank’s information assets and compliance with laws and regulations.
• Responsible for the research and identification of emerging trends in data threats, data protection, and cloud and application security and the successful implementation of programmes that will ensure and improve the effectiveness of risk management and protection strategies.
• Responsible for the quality and timeliness of all risk assessments, cloud and application security tasks and consulting deliverables and acts as the initial escalation point to overcome barriers to success and roadblocks impeding the work.
• Responsible for the development and improvement of metrics, key performance indicators (KPIs), key risk indicators (KRIs)

About You

• Undergraduate or post graduate degree in Computer Science, Information Security, or a related field and one or more of the following or related professional certifications:

• Certified in Risk and Information Systems Control (CRISC)
• Certification in Risk Management Assurance (CRMA)
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)

• At least five years’ experience in information / cyber security, with at least three years in Information Security & Technology Risk Management 
• At least five years’ experience in another IT function, especially IT Audit
• At least three years’ experience with regulatory compliance and information / cyber security management frameworks. 

About the Offer

We use the same innovation and vigour for our benefits and reward package. It is attractively structured and performance bonuses are offered. You will have a challenging, diverse experience with opportunities for professional growth. We value agility, collaboration, integrity, sense of ownership and urgency.

Interested applicants are encouraged to apply by March 14, 2023