Senior Security Service Manager
CIBC
What You’ll Be Doing
The Security Service Management (SSM) function within Cyber Security at CIBC is responsible for ensuring that critical web applications and digital services are protected by robust security controls, in accordance with enterprise frameworks and standards. SSM develops, operationalizes, and continuously improves security services—such as Akamai ION, Web Application Firewall (WAF), and other cloud-based security solutions—to identify vulnerabilities, enforce remediation, reduce risks, ensure regulatory readiness, and enable secure innovation across the bank. This Senior Consultant, Security Service Management will support CIBC’s SSM practices by evaluating new security technologies (e.g., Akamai ION, WAF, DDoS mitigation), developing effective operational plans in partnership with business teams and other risk control groups, and providing security services to the enterprise. The position will be responsible for ensuring that all web-facing applications and services are appropriately risk-assessed, as required by the Risk Assessment Process. The Senior Consultant will work collaboratively with application development, network security, security engineering, and oversight bodies to ensure that all security testing requirements are adhered to and are effective in managing web application and network-related risks.
At CIBC, we foster an environment that enables you to thrive in your role. You’ll have the flexibility to manage your work activities within a hybrid work arrangement where you’ll spend 1-3 days per week on‑site, with the remaining days remote.
How You’ll Succeed
- Providing Solutions to Reduce Security Risk: Collaborate with risk management, application security, IAM, DLP, and network security teams to address web and network security needs, embed security features, and reduce operational pain points. Propose solutions to risk and control teams and contribute to enterprise security standards and educational resources.
- Lead the Evaluation and Integration of Security Technologies: Conduct market comparisons and vendor assessments for Akamai and other security platforms, manage vendor selection and proof‑of‑concept processes, and oversee RFI documentation. Set up testing environments and evaluate solutions for future rollouts.
- Ensure Applications Are Managed and Tested with High Assurance: Work with security vendors to develop and deploy controls that enable identification, assessment, and mitigation of web application and network risks. Ensure compliance with governance requirements and support CIBC’s leadership in secure web and digital service delivery. Assist with ongoing risk reporting and reviews.
- Translate Research into Actionable Insights: Monitor and report on trends in web application and network security, document potential threats, and ensure new security features address emerging risks. Develop and refine security processes and tools, and operationalize security controls within the application lifecycle and runtime environments.
- Ignite Innovation: Evaluate the latest features in Akamai ION, WAF, and related services. Support the development and adoption of strategies and success metrics, and actively participate in all security service meetings.
- Develop and Maintain Comprehensive Documentation: Create essential documentation such as RACI matrices, operational processes, playbooks, and procedures for WAF policy management, incident response, and runtime protection. Define workflows, scanning frequency, issue review protocols, and escalation paths for risk assessment. Collect and analyze health check metrics to measure service improvement, maintain backlogs based on service capabilities, and develop data flow diagrams from an architectural perspective. Manage the ServiceNow Catalogue for access and identify new roles for security configuration management. Oversee the end‑to‑end risk management process for WAF and Akamai ION requests. Ensure enterprise standards are updated with the latest security control requirements and facilitate discussions with stakeholders to finalize all processing documentation.
- Enable Automation: Identify and document opportunities for automation to reduce human effort in testing and assessment processes, and track expected outcomes such as hours saved within operations.
Who You Are
- You can demonstrate 5+ years of experience in Security operations and hands‑on experience in Akamai ION, WAF, DDoS mitigation, and web application security controls. You understand the production lifecycle and have assessed controls and evidence in regulated environments. You are familiar with NIST, ISO/IEC security standards, and can embed new processes to reduce application and network risk in financial services, translating requirements into pragmatic, auditable security controls. You apply data protection, threat mitigation, security‑by‑design, and third‑party risk practices to safeguard clients and the bank, and support positive outcomes for society.
- You have a degree/diploma in relevant field (e.g., Computer Science, Engineering, Information Security, Risk Management). Certifications such as CISSP, CISM, or Akamai certifications are assets.
- Your influence makes a difference. You know that relationships and networks are essential to success. You inspire outcomes by sharing your expertise.
- You act like an owner. You thrive when you’re empowered to take initiative, go above and beyond, and deliver results.
- You embrace and advocate for change. You continuously evolve your thinking and the way you work in order to deliver your best.
- You look beyond the moment. You know what you do will make a difference today and tomorrow. You look for new opportunities to define what’s possible.
- Values matter to you. You bring your real self to work and you live our values - trust, teamwork, and accountability.
What CIBC Offers
At CIBC, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential. We aspire to give you a career, rather than just a paycheck.
- We work to recognize you in meaningful, personalized ways including a competitive salary, incentive pay, banking benefits, a benefits program*, defined benefit pension plan*, an employee share purchase plan, a vacation offering, wellbeing support, and MomentMakers, our social, points‑based recognition program.
- Our spaces and technological toolkit will make it simple to bring together great minds to create innovative solutions that make a difference for our clients.
- We cultivate a culture where you can express your ambition through initiatives like Purpose Day; a paid day off dedicated for you to use to invest in your growth and development.
- Subject to plan and program terms and conditions
What You Need To Know
- CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact View email address on ca.talent.com
- CIBC is committed to clarity in our hiring process. All roles posted are opportunities we’re actively recruiting for, unless stated otherwise.
- You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit.
- We may ask you to complete an attribute‑based assessment and other skills test (such as simulation, coding, French proficiency).
- We use artificial intelligence tools during the recruitment process. Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us.
Job Location
Toronto-141 Bay, 17th Floor
Employment Type
Regular
Weekly Hours
37.5
Skills
Application Security, Business Operations, Cybersecurity, Information Security, Network Security, Security Service
#J-18808-Ljbffr- ## Senior Security Consultant, Cryptographic Service ManagementApplylocations: Toronto, ONtime type: Full timeposted on: Posted Todaytime left to apply... ...doing**As a Senior Consultant, Cryptographic Service Management, you will join CIBC's Information Security department...Senior3 days per week1 day per week
$146k - $211.6k per year
...customers design, build, operate, and secure their cloud environments.... ...with AWS Professional Services, upskill with AWS Training and... ...optimize with AWS Support and Managed Services, and meet objectives... ...innovative compliance and risk‑management approaches that help customers...Senior- Shape security strategies at Rates.ca as the Senior Manager of Security Engineering. In this in-office position, focus on risk reduction via compliance and advanced... ...workflows, manage vendor risks, and implement secure SDLC standards. You will significantly contribute to...SeniorWork at office
- ...into a pivotal role at BlackBerry, leading marketing strategy for Secure Communications. Your AI-driven insights will shape messaging and elevate impact across key markets. As a Senior Product Marketing Manager, you'll handle go-to-market efforts for BlackBerry's...Senior
- ...Job Overview Senior Client Service Account Manager – Responsible for managing a portfolio of enterprise‑scale clients and ensuring service excellence... .... Clear post‑sale roadblocks to enable sales teams to secure new business. Deliver performance reports and quarterly...SeniorFull timeWork at office3 days per week
$175k - $195k per year
...now and create your future. Huron is seeking a senior‑level AI Security Architect to help clients design, secure, and scale enterprise AI and generative AI... ...client‑facing advisory, focusing on security, risk management, and governance across the AI lifecycle. You will...Senior$18.5 per hour
...skilled team of developers and security architects to build and deploy... ...residents by providing information and services as needed. This role requires... ..., enforce least privilege, manage MFA and privileged accounts. Assist with... Full-time Senior Cyber Security Specialist (...SeniorHourly payFull timeContract work- Lead innovative cloud security initiatives as a Senior Product Manager at Scotiabank. Oversee product strategies and collaborate across teams for impactful security... .... Your influence will be vital in shaping secure, scalable solutions in a collaborative setting. Key...Senior
- Lead a transformative security initiative as a Senior Project Manager based in Toronto. Focus on network modernization and multi-layered security implementation... ...and influence tech architecture, ensuring secure connectivity for numerous locations. Key Responsibilities...SeniorContract work
- ...We are seeking an experienced Senior Manager to join our Enterprise Identity and Access Management... ...? Lead applications onboarding to IAM services (SailPoint and ServiceNow), ensuring... ...requirements, onboarding procedures, and security frameworks to business units and application...SeniorFlexible hours
- ...cybersecurity and compliance services firm trusted by organizations... ...reduce risk, strengthen their security posture, and navigate complex... ...ISO, PCI, and HITRUST. The Senior Security Consultant is a trusted... ...leadership and stakeholders. Manage multiple client engagements...SeniorWork at officeRemote work
- Lead impactful banking projects at a premier financial institution as a Senior Business Project Manager. Focus on cross-border initiatives, particularly between Canada and the US, ensuring alignment with business goals. This senior role emphasizes strategic planning and...Senior
- Take charge as a Senior Product Manager at Questrade Financial Group, focusing on alternative trading solutions in a hybrid work setting. Revolutionize... ...analytical and documentation skills • Interest in financial services and investing Elevate Questrade's product offerings with...Senior
- Senior Security Engineer At Cognichip, we are building the next-generation IDE to empower semiconductor... ...secure defaults, templates, and self‑service security tooling Excellent... ...security (endpoint protection, identity management, SSO/MFA) What We Offer A greenfield...Senior
- ...response for advanced threats, security operations, and digital... ...Extensive experience leading and managing complex security investigations... ...& Tools Access Management: CyberArk Security Tools:... ...essential for this role. The Senior Cybersecurity Specialist plays...Senior
- иррнтduction At Gallagher Benefit Services, you’re a trusted partner to organizations navigating some of their most important people decisions... ...will be highly valued. We are currently looking for an Account Manager that has the character and personality to work with a strong...SeniorLive outWork at officeLocal areaFlexible hours
$119k - $202k per year
...are the leading provider of professional services to the middle market globally, our purpose... ...the client and the service team while managing the risk for both the client and the firm... ...compensation design and implementation. Lead and manage the business relationship of complex...Senior- A technology firm is seeking a Senior Service Delivery Manager in Toronto to lead end-to-end delivery of Network and Voice projects. You will work closely with business contacts and technology teams to ensure project timelines and budgets are met. Responsibilities include managing...SeniorContract work
- Shape endpoint strategies at Moneris as a Senior Engineer in End User Services in Toronto. Focus on automation and lifecycle management while leading technical initiatives in a hybrid work model. In this critical role, you will define strategies for up-to-date endpoint management...Senior
- .... Lead in designing scalable, secure, and efficient data architectures... ...to engage and influence senior leadership, business units, and... ...to diverse audiences. Risk Management: Identify, assess, and mitigate... ...development, leveraging your deep data services expertise to win new contracts...SeniorLong term contract
- We are seeking an experienced Security Incident Response Manager to lead and manage our security incident... .... Communicate effectively with senior leadership during high-severity incidents... ...Experience in the insurance or financial services sector is a strong asset. Familiarity...Senior
$168k - $218k per year
At PwC, we provide professional services to our clients, with a focus on optimizing operational... ...business operations, and using modern management techniques such as workforce upskilling,... ...insurance innovations. Masterfully manage senior client stakeholders, facilitate cross-...SeniorShift work$80k per year
...hardening, extension hygiene, secret management, and least-privilege access... ...twice. Compound a real security culture by inoculation. Run phishing... ...partner with every team so secure defaults become the obvious... ...AWS . You don't need to be a senior software engineer, but you can...SeniorFull timeWork at officeImmediate startDay shift- Overview The Sr. Manager, CISO Governance will play a critical role... ...practices across Cyber Security domains. The ideal candidate will... ...actionable reporting tailored for senior management, risk and... ...performance for Cyber operations and service delivery requirements (i.e. IGAs...SeniorWork at officeFlexible hours
$130k - $160k per year
...Responsibilities Conduct threat modeling and security design reviews for new and changing... ...) and application vulnerability management workflows. Evaluate and implement vendor... ...solutions that improve detection, response, and secure design (e.g., logging/SIEM, SOAR, runtime...SeniorLong term contractTemporary workWork at officeLocal areaRemote workFlexible hours- Optimize CIBC's web application security as a Senior Security Services Consultant in Toronto. Lead the integration of cutting-edge technologies like Akamai... .... In this senior role, you'll work closely with risk management and application security teams to assess and reduce...Senior
- ...26WD97513 Overview We are building secure, cloud‑native applications and want a Senior Application Security Developer to... ...modern applications, APIs, services, and developer platforms to identify... ..., authorization, session management, data protection, input validation...Senior
$113k - $163k per year
...is a leading international financial services provider, helping people make decisions... ...go. We are seeking an experienced Senior Application Security Specialist to join our team. The... ...penetration testing, code scanning, secrets management (GitGuardian), and threat modeling...SeniorLocal areaFlexible hours$113k - $163k per year
...is a leading international financial services provider, helping people make decisions... ...go. We are seeking an experienced Senior Application Security Specialist to join our team. The... ...penetration testing, code scanning, secrets management (GitGuardian), and threat modeling...SeniorLocal areaFlexible hours- ...recognized leader in financial services, known for delivering... ...opportunity to work on complex security challenges within a highly regulated... ...environment. Job Title Senior Developer with Pen Test/Red Teaming... ...to Threat & Vulnerability Management initiatives and continuous...SeniorContract workWork at officeRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Security Service Manager. Be the first to apply!
- director security operations Toronto, ON
- security manager Toronto, ON
- supervisor security Toronto, ON
- oil and gas security manager Toronto, ON
- responsable sécurité Toronto, ON
- safety & security manager Toronto, ON
- remote security manager Toronto, ON
- regional security manager Toronto, ON
- site security manager Toronto, ON
- security engineering manager Toronto, ON
