Canadian Imperial Bank of Commerce2 weeks ago

Sr. Manager Information Security Governance

Canadian Imperial Bank of Commerce

$160,000–$190,000 year

Hybrid · Chicago, Illinois, United States

Chicago, Illinois, United StatesHybridFull Time$160,000–$190,000 yearSenior LevelNot SpecifiedEnterprise

Type

Full Time

Level

Senior Level

Education

Not Specified

Company size

Enterprise

Job Summary

Sr. Manager, Information Security Governance leads regulatory exam support, internal audit coordination, and regulatory program compliance for the bank. Responsible for end-to-end regulatory exam readiness, coordinating responses and evidence, and delivering regulatory reporting materials. Oversees regulatory remediation, briefing materials, and cross-team collaboration with Internal Audit, Risk, and Technology. Requires expertise in FFIEC IT/Cyber, GLBA safeguards, NY-DFS programs, NIST CSF, and strong communication with regulators and executives. Hybrid work arrangement (2 days in office, 3 days remote) with 40 hours/week; salary range $160,000-$190,000; US-based employment.

Required Qualifications

10 years in Information Security, IT Risk Management, regulatory compliance or audit functions, within a US or Canadian bank (preferably at least 5 years in a leadership role)
Deep knowledge of key information security domains including network security, IAM, data protection, vulnerability management, application security
Experience with FFIEC IT/Cyber Exam Handbook and GLBA Safeguards rule compliance
Strong understanding of control frameworks (e.g. NIST CSF)
Hands on experience preparing and delivering materials for regulatory agencies and internal/external auditors
Certified professional with current Industry recognized certifications such as CISSP, CISM, CISA
Ability to identify regulatory themes, assess control effectiveness and spot emerging gaps
Experience with GRC platforms (e.g. MetricStream,OneTrust, Archer)
Excellent written and verbal communication skills
Ability to translate technical requirements into clear actionable language for regulators and executives
Proven track record of managing banking regulatory examinations (e.g. FRB) and state specific oversight (e.g. NYDFS)
Demonstrated leadership in information security governance and risk management
Ability to influence senior stakeholders and executives

Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started