Lead Information Security Specialist

Company: CGL
Department: Information Technology
Employment Type: Regular Full-Time
Work Model: Hybrid
Language: English is required, French is an asset
Additional Information: This/these role(s) is/are currently vacant 

The Opportunity:

We are a leading Canadian financial services co-operative committed to being a catalyst for a sustainable and resilient society and our team is essential to deliver on this strategy. That’s why we prioritize our people, to ensure we provide a strong culture and development opportunities which enables our team to thrive and to live our purpose. The best part is that you will work with people that care passionately about you, our clients, and our communities.

Our Information Technology team aspires to be a leader in applying technology to power business strategies. We connect concepts with solutions to create value and efficiencies for our clients, employees, and communities. Our success is driven by our skilled and diverse team who are passionate about excellence, innovation, and agility.

The Lead Information Security Specialist is responsible for program/project/product/service development, quality assurance, and effective and efficient delivery of Security Governance program elements, in the area of security culture, awareness and training. The Co-operators group of companies, in line with regulatory/legislative requirements and industry best practices. 

How you will create impact:

You will get an exciting opportunity to:

• Establish key relationships across the enterprise to promote a culture of positive change and prioritize a security-first mindset.

• Envision, curate, and design effective security training experiences for employees, providing clear and actionable guidance that leads to observable behavior changes across the organization.

• Establish a Cyber Champion program, aimed at creating a peer network within the organization to improve skills and instill a security-first mindset across all levels.

• Oversee the execution of comprehensive social engineering testing initiatives and provide program design and tooling recommendations.
• Formulate engaging awareness campaigns focused on changing culture and behaviors.
• Measure the program’s success and consistently report on human risk reduction to senior management.

How you will succeed:

• You have an innovative mindset to improve operational efficiencies and ability to influence change, with a primary focus on client needs.  
• You use critical thinking skills to recognize assumptions, evaluate arguments, draw conclusions and proactively propose solutions.
• You have strong communication skills to clearly convey messages and explore diverse points of view. 
• You build trusting relationships and provide guidance to support the development of colleagues.

To join our team:

• A bachelor’s degree in information technology, Cybersecurity, or a similar area is required.
• Five or more years of experience in security awareness, security risk or related fields.
• In-depth knowledge of information security principles, policies, and regulations.
• Comprehensive understanding of information security frameworks (e.g., NIST CSF, ISO 27001) and risk management practices.
• Previous experience leading security awareness initiatives.
• Experience in measuring information security awareness programs in medium to large organizations.
• Excellent communication skills, capable of presenting and communicating complex information clearly to a non-technical audience.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), or SSAP (SANS Security Awareness Professional), SACP (Security Awareness and Culture Professional), are beneficial.
• Capacity to work collaboratively within a team-oriented setting and manage multiple projects concurrently.

What you need to know:

• Detail oriented work that requires a moderate degree of mental concentration for extended periods of time.
• You will be subject to a Background check as a condition of employment, in the event you are the successful candidate.

What’s in it for you?

• Training and development opportunities to grow your career.
• Flexible work options and paid time off to support your personal and family needs.
• A holistic approach to your well-being, with physical and mental health programs and a supportive workplace culture.
• Paid volunteer days to give back to your community.
• In addition to our competitive salary and incentive programs, eligible employees also benefit from a comprehensive total rewards package including group retirement savings plans, pension and benefits (e.g., health and wellness, dental, disability and life coverage), mental health support and an employee assistance program. Please contact our recruitment team for more information.