Manager, Security & Compliance

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

This position requires a strategic thinker who can drive the organization's information security initiatives while effectively managing teams and collaborating across the business. It should have a blend of technical expertise, leadership skills, and business acumen to effectively manage security risks and ensure regulatory compliance.

Job Description:

• Develop and implement comprehensive security plans to protect the organization's network, systems, and data from various threats.
• Lead and manage security processes including vulnerability assessments, penetration testing, and security audits, ensuring timely remediation of identified issues.
• Oversee compliance with industry standards, regulatory requirements, and internal security policies.
• Manage and track security incidents, assess their impact, and coordinate response efforts with relevant stakeholders.
• Develop and deliver security awareness training programs for staff at all levels of the organization.
• Collaborate with business units, IT teams, and external auditors to align security measures with business objectives and regulatory requirements.
• Stay informed about emerging security threats, industry best practices, and relevant regulatory changes.
• Prepare and present reports on security status, risks, and compliance to senior management and other stakeholders.
• Manage security and compliance projects, including resource allocation and budget planning.
• Act as a liaison between regional, corporate, and regulatory bodies on security and compliance matters.

Job Requirements:

• Bachelor’s degree in information technology, Computer Science, or related field
• 8+ years of experience in IT with a focus on information security and security risk management
• Professional Information Security Certification (e.g., CISSP, CISM, ISO 27001 Lead Auditor)
• Knowledge of NIST Cybersecurity Framework and Canadian OSFI regulatory requirements
• Strong understanding of network security, system architecture, and cybersecurity best practices
• Excellent communication, presentation, and interpersonal skills

Job Category:

Posting End Date: