Director, Information Security

An experienced IT Security leader, the position develops, implements, monitors, and adjusts the IT security strategy and approach, ensuring Alterna is protected from security and cyber-security threats, and is in good standing with regulators and oversight bodies.

In addition to this scope, the incumbent will apply proven communication skills, problem-solving skills, and knowledge of best practices to guide his/her security team and the user group on issues related to the design, development, and deployment of mission-critical information and technology systems.

Oversee the development, implementation and enforcement of information security standards and procedures.

Together with the management team, the Director ensures privileged company and Member information is not compromised due to internal or external breaches.

The Director will prepare the company for potential cyber-attacks and play a leadership role in preventing such attacks and responding to an attack should it occur.

Major Responsibilities

• Develop, continually refresh, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program and framework
• Understand and interact with related disciplines to ensure the consistent application of security policies and standards across all technology projects, systems and services
• Provide leadership to Alterna’s information security organization and security budget
• Partner with business stakeholders across the company to raise awareness of risk management concerns and prevention
• Determine what type of training employees require to meet various security requirements, and develop plans for providing it to them
• Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems security
• Analyzing IT security threats in real-time and mitigating these threats.
• Ensuring that newly acquired and refreshed technology complies with the IT security regulations.
• To oversee the development of new products and services, ensuring that their design takes security into account from the beginning. 
• Determining the cause of internal and external data breaches and instituting immediate and appropriate corrective action.
• To develop, implement and maintain all information security policies.
• To ensure the organization’s information security program and policies are consistently enforced throughout Alterna.
• Ensure that only authorized people have access to restricted data and systems
• Monitor security threats and vulnerabilities to determine the risks they pose to Alterna, and what countermeasures must be put in place to address them and periodically test to ensure Alterna’s security measures are working as intended.
• To coordinate with the company’s external business partners to determine their information security programs. Also, ensure they are consistent with the Alterna’s and regulatory policies, as well as to evaluate any potential risks these partners may pose to Alterna’s information assets.
• Work closely with external Security groups and associations to keep abreast of developing threats and innovative up and coming security techniques and trends.
• Presenting regular feedback reports on IT security and cyber security to the leadership team

Acquisition & Deployment

• Coordinate feasibility studies for software and system products under consideration for purchase, and give advice based on findings.
• Ensure that any new software integration into company systems meets IT Security, system compliance, and interface specifications.
• Leads the planning and deployment of application and configuration security measures.
• Analyzes existing operations and make recommendations for the improvement of Information Security
• Conducts research and remains current with the latest technologies and solutions in support of procurement.

Operational Management

•  Ensures appropriate physical and data security standards are developed and adhered to
• Ensure appropriate staffing flexibility to meet SLAs, projects and off hour processes
• Direct, manage, and coach a team of IT professionals. This includes performance reviews, daily activities, and corrective action when necessary.
• Provide monthly operational KPI’s and reports to IT Management
• Responsible for vendor management. This includes holding vendors accountable and conducting SLA meetings and reviews to ensure expectations are being met. 
• Provide information and input into the annual budget planning process for IT

Qualifications

• University degree in Computer Science, Business Administration or a related field.
• 10 years’ experience in information security, preferably the financial sector.
• 10 years or more of direct line management of a comparative IT operation.
• IT Management certifications like CISSP, or CISM is mandatory for this role
• Strong experience with data privacy & Security, and cyber-security strategy, practices, regulations, and laws relating to the Financial Services industry.
• Experience in banking systems and/or financial systems preferred.
• Experience in leading major enterprise IT projects
• Strong technical knowledge of network and PC operating systems. *
• Strong technical knowledge of current network hardware, protocols, and standards.
• Knowledge of IT Management Control Frameworks such as COBiT, ITIL.
• Experience developing and leading high-performance teams with a solid understanding of management principles, practices, and procedures.
• Extensive experience working in a team-oriented, collaborative environment

About Alterna Savings

Alterna Savings and Credit Union Limited (Alterna) has been the good in banking for 112 years!  Alterna is made up of Alterna Savings and Credit Union Limited and its wholly-owned subsidiary, Alterna Bank. Together, we have $9.6 billion in assets under management. 

As the first full-service, member-owned co-operative financial institution outside Quebec, Alterna Savings shares its expertise with more than 183,000 members through a network of 36 branches across Ontario, that includes partner Peterborough Community Savings; as well as call centre and digital channels. Members and customers also benefit from industry-leading online brokerage, investment management services, and have access to the largest surcharge-free ATM network in Canada through THE EXCHANGE® Network, with over 3,700 ATMs to serve them. 

Working at Alterna

Every day, over 600 people take pride in putting our members first. Our caring culture has been recognized by the prestigious employer awards National Capital Region’s Top Employers and Aon’s Best Employers (Platinum level). 

* Although we appreciate all applicants, preference will be given to candidates who most closely meet the qualifications, key skills and competencies outlined above. 

* Alterna is compliant with the Ontarians with Disabilities Act. If you have a disability, please contact the recruiter to let us know how we can accommodate you.