Manager, Infosec Engineering & Operations

Job Posting Organization:
The World Bank Group (WBG) is a unique global partnership of five institutions dedicated to ending poverty and promoting shared prosperity. Established in 1944, the organization has grown to include 189 member countries and operates more than 120 offices worldwide. The WBG is one of the largest sources of funding and knowledge for developing countries, working with public and private partners to invest in groundbreaking projects and utilize data, research, and technology to address global, regional, and local challenges. The organization is currently undergoing a significant transformation to adapt to the multiple crises affecting the world today, as outlined in its Evolution Roadmap.

Job Overview:
The Manager of Infosec Engineering & Operations at the World Bank Group is a pivotal role that provides strategic direction and operational leadership to safeguard the institution's information assets and technology infrastructure. This position is responsible for leading the global cybersecurity function, ensuring that the WBG maintains a resilient security" style="border-bottom: 1px dotted #007bff !important;">security posture aligned with its digital transformation objectives. The role encompasses end-to-end responsibility for security strategy development, architecture design, cyber defense engineering, and incident response. The Manager will orchestrate the detection and containment of cyber threats, drive innovation in operational practices, and ensure compliance with regulatory requirements. This position requires a balance of technical expertise, crisis leadership, and executive communication skills to effectively manage the evolving threat landscape and support the institution's mission-critical operations.

Duties and Responsibilities:
The Manager of IT Security Operations will oversee the global security operations of the World Bank Group, ensuring the continuity and security of technology operations. Key responsibilities include leading incident detection and response, managing vulnerabilities, and ensuring that cyber defense capabilities align with enterprise risk frameworks. The Manager will develop and implement a cybersecurity operations strategy, maintain threat and vulnerability scorecards, and conduct maturity assessments against recognized frameworks such as NIST and ISO. Additionally, the role involves building and mentoring a diverse team, fostering a culture of accountability and continuous learning, and collaborating with senior leadership to ensure that security operations align with business priorities. The Manager will also be responsible for organizing cyber resilience-focused exercises and defining opportunities for AI and automation in security operations.

Required Qualifications:
Candidates must possess a Master’s degree in information systems, computer science, engineering, or a related field, along with at least 12 years of experience in information security management and operations within a global IT organization. Alternatively, a Bachelor’s degree with 15+ years of relevant experience is acceptable. The ideal candidate will have expertise in SIEM, SOAR, XDR, ZTNA, and vulnerability management, as well as a proven track record of leading global Security Operations Centers (SOCs) and incident response efforts. Strong program management skills and the ability to lead large-scale multi-year programs across departments are essential, along with demonstrated crisis management capabilities and experience managing diverse, globally distributed teams.

Educational Background:
A Master’s degree in information systems, computer science, engineering, or a related field is required. Candidates with a Bachelor’s degree must have additional years of experience to meet the qualifications. Relevant certifications such as CISSP and SAFe Agilist are required, while SANS GIAC Certifications and SABSA Chartered Security Architect are preferred.

Experience:
The position requires a minimum of 12 years of experience in information security management and operations in a global IT organization. Candidates should have a strong background in leading global SOCs and incident response, as well as experience in crisis management and workforce leadership. A proven ability to introduce automation and AI-driven defense mechanisms is also essential.

Languages:
While specific language requirements are not mentioned, proficiency in English is likely mandatory given the global nature of the organization. Additional languages may be beneficial but are not specified as required.

Additional Notes:
This position is a local recruitment role with a term duration of 3 years. The World Bank Group values diversity and encourages qualified candidates from member countries to apply, particularly Sub-Saharan African nationals, Caribbean nationals, and female candidates. The role is full-time and involves significant leadership responsibilities, including managing a high-performing team and collaborating with senior executives.