Vice President and Chief Information Security Officer

Reporting to the Senior Vice-President - Chief Technology and Information Security (CTO/GCISO), the Vice-President and Chief Information Security Officer (CISO) is accountable for defining, governing, and overseeing the Bank’s enterprise-wide cybersecurity and technology risk posture. In addition to core CISO responsibilities, the role leads enterprise-level enablement functions for the CTO organisation, including financial planning and portfolio management, change and communication enablement, and executive reporting. These functions support the effectiveness, coherence, and delivery discipline of the CTO leadership team.
The role ensures the confidentiality, integrity, availability, and resilience of information assets, digital platforms, cloud environments, applications, and critical infrastructures, while enabling the Bank’s strategic, digital, and regulatory objectives.
This executive role operates at the intersection of risk, technology, and business strategy, and provides authoritative leadership to executive management, the Board of Directors, regulators, and external stakeholders.
Key Accountabilities:
1. Enterprise Cybersecurity & Technology Risk Leadership

• Define and maintain the enterprise cybersecurity and technology risk management strategy aligned with business objectives, risk appetite, and regulatory expectations.
• Establish and oversee security policies, standards, and governance frameworks in line with recognised industry practices.
• Ensure effective identification, assessment, monitoring, and mitigation of cybersecurity and technology risks across the Bank’s operations and digital ecosystem.

2. Governance, Oversight & Assurance

• Oversee independent assessments including penetration testing, audits, investigations, and control reviews to ensure continuous risk reduction.
• Ensure consistent regulatory compliance and effective engagement with audit, risk management, and compliance functions.
• Provide regular, transparent reporting on cyber and technology risk posture to executive management and the Board’s Technology and Risk Committees.

3. Enablement of the CTO Organisation (Financial, Portfolio, Change & Reporting)

• Lead financial planning, budget oversight, and investment governance for the CTO organisation, ensuring transparency, discipline, and alignment with strategic priorities.
• Oversee technology and cybersecurity portfolio management, including prioritisation, dependency management, execution tracking, and benefits realisation.
• Provide structured change management support across the CTO organisation, including communication planning, executive messaging, and stakeholder alignment.
• Establish and maintain executive-level reporting, dashboards, and performance metrics to support decision-making by the CTO and peer Vice-Presidents.
• Act as a trusted partner to other Vice-Presidents within the CTO organisation by enabling consistency, coordination, and delivery effectiveness across major initiatives.

4. Enablement, Architecture & Transformation

• Partner with enterprise architecture, technology strategy, and operations leaders to embed security-by-design across platforms, products, and services.
• Ensure cybersecurity considerations are embedded into major transformation programmes, cloud adoption, data platforms, and customer-facing solutions.
• Align governance and enablement mechanisms to support large-scale transformation and organisational change.

5. Operational Resilience & Crisis Leadership

• Provide executive leadership during significant cybersecurity incidents, crises, and simulations.
• Strengthen cyber resilience, third-party risk management, and business continuity capabilities in line with regulatory guidance and best practices.

6. External & Ecosystem Engagement

• Represent the Bank with regulators, industry forums, peer institutions, and cross-sector organisations on cybersecurity and technology risk matters.
• Contribute to industry initiatives and thought leadership to advance the Bank’s positioning and influence within the financial services ecosystem.

Leadership Profile
The successful candidate is an experienced executive leader with a proven ability to:

• Influence strategic decision-making at executive and Board levels.
• Lead large, diverse, and highly specialised teams with integrity, accountability, and clarity.
• Mobilise stakeholders across business, technology, and risk functions to achieve shared outcomes.
• Communicate complex technical, financial, and risk matters clearly to non-technical audiences.
• Demonstrate courage, sound judgement, and resilience in high-pressure and high-visibility environments.

Experience & Qualifications:

• 15+ years of progressive experience in technology and cybersecurity, including senior executive leadership roles.
• Demonstrated experience leading enterprise governance, financial planning, portfolio management, or transformation enablement functions.
• Proven experience operating in regulated environments with customer-facing digital platforms.
• Deep knowledge of recognised frameworks and standards (e.g. NIST, ISO/IEC 27001, PCI-DSS, SOC 1/2).
• Professional certifications (e.g. CISSP, CISA, CRISC) and an extensive and proven professional network are strongly preferred.
• Undergraduate or graduate degree in computer science, engineering, or a related discipline.

National Bank offers a unique opportunity to shape both the cybersecurity risk posture and the execution effectiveness of a leading financial institution undergoing significant digital and organisational transformation. The role provides direct exposure to executive management and the Board, with a mandate that combines risk leadership, enablement, and strategic influence.
Your benefits In addition to competitive compensation, upon hiring you’ll be eligible for a wide range of flexible benefits to help promote your wellbeing and that of your family such as:
* Health and wellness program, including many options * Flexible group insurance * Generous pension plan * Employee Share Ownership Plan * Employee and family assistance program * Preferential banking services * Involvement in community initiatives * Telemedicine service * Virtual sleep clinic
We have an offer that keeps up with trends as well as your needs and those of your family.
Our dynamic work environments and cutting-edge collaboration tools foster a positive employee experience. We value employees’ ideas. Whether through our surveys or programs, regular feedback and ongoing communication are encouraged.
Making a bold move in a people-first environment We’re a bank on a human scale that stands out for its courage, entrepreneurial culture, and passion for people. Our mission is to have a positive impact on people’s lives. Our core values of partnership, agility, and empowerment inspire us, and inclusion is central to our commitments. We aim, wherever possible, to provide a barrier-free and accessible environment to all employees.
We strive to provide accessibility measures throughout the recruitment process within the limits of our available resources. If you require accommodations, feel free to let us know during our initial conversations. We welcome all candidates! What can you bring to our team?
Join us!