Head Information Security
20 hours ago
Position Status: Permanent Full Time
Position Type: Hybrid
Office Location: Ottawa (ON) preferred, Montreal (QC) and Toronto (ON) will be considered
Travel Requirement: Travel not required
Language Skill Levels (Read/Write/Speak): CBC
Security Requirement: Secret
Salary: Our salaries generally range from $196,189.Here’s the comprehensive and generous benefits you get when you’re a permanent employee:
Annual individual performance incentive.Support towards your personal and professional growth with training, mentorship, and more.While positions at CMHC require some in-office presence, alternative work arrangements may be considered for Indigenous candidates.About the role
Reporting to the SVP Technology and Business Transformation, the Head Information Security (CISO) is a critical role in providing strategic leadership and oversight for CMHC's global security posture. This position oversees the protection of the organization’s information assets, physical and virtual infrastructure, and operations against an evolving threat landscape. The incumbent is responsible to develop and implement a security strategy, governance framework, and operational plan that align with CMHC's vision, mission, and values and risk appetite. The Head, Information Security (CISO) also manages security risks, ensures compliance with security standards and regulations, communicates, and promotes a security culture, and fosters strategic partnerships with internal and external stakeholders.
- Create, manage and maintain CMHC’s information security strategy and governance framework (including cybersecurity) to be a unified, flexible and risk-based approach aligned with CMHC’s overall business objectives, ensure it continues to evolve and remain compliant with global laws, standards and regulations compliance requirements and in adoption of the cybersecurity framework (ISO) 2700X, ITIL, National Institute of Standards and Technology (NIST) Cybersecurity Framework.
- Lead and develop objectives, priorities, operational business plans, policies and standards to reflect industry security leading best practices and oversee the audits and assessments to maintain the standards of CMHC’s security governance.
- Facilitate a cybersecurity governance structure governed by a cybersecurity steering committee/advisory board to manage and contain cybersecurity incidents/events to protect corporate IT assets, intellectual property, regulated data, and the company's reputation.
- Develop and provide regular reporting on the current status of the cybersecurity program to enterprise risk teams, senior business leaders and the board of directors as part of a strategic enterprise risk management program, thus supporting business outcomes.
Security, emergency, risk management and incident response:
- Lead the strategic security and emergency planning prioritizing defence initiatives and providing oversight to the security and emergency management functions while monitoring the external threat environment for emerging threats.
- Identify, assess and mitigate information security risks across the organization and lead the response to security incidents by ensuring minimal business impact and that lessons learned are shared and implemented across teams.
- Oversee the analysis, design and deployment of the infrastructure security procedures and practices that enhance the integrity and privacy of the organization’s IT.
Security Partnerships and Visibility:
- Build and maintain strategic relationships with external partners, industry groups, and regulatory bodies, law enforcement and other advisory bodies to enhance CMHC’s visibility, security posture and keep abreast of the relevant threats.
What you should have:
- An undergraduate degree in management information systems, information security, information technology, information systems management. li>
- Thirteen (13) years of a combination of experience in information technology or information security roles, with at least 5 years in a senior leadership role.
- Experience with the framework of the financial regulations and guidelines of the Office of the Superintendent of Financial Institutions (OSFI), the compliance and integration of these standards into the organization’s security and risk management frameworks.
- Demonstrated experience identifying cyber vulnerabilities and devising solutions for risk improvement.
- The knowledge of current trends and best practices in threat risk assessment, vulnerability assessment, redundancy and disaster recovery practices.
- The knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework.
- Sound knowledge of business management and a working knowledge of cybersecurity risk management and cybersecurity technologies.
- Superior written and oral communication skills (French and English). Ability to deliver a persuasive, clear presentation of ideas that will convince others and gain acceptance of proposals in a variety of settings and styles to a variety of stakeholders (senior management in particular).
CMHC is an inclusive workplace where diversity of thought – and of people – are recognized, valued, and considered essential to achieving our mission.
-
Information Security Compliance
1 month ago
Old Toronto, Canada Athennian Group Full timeAthennian increases trust in business. Our products help legal, finance, and tax teams be transaction and audit-ready by organizing business entity and corporate structure information. Over 370,000 business entities in almost every country are managed on Athennian to automate workflows for ownership, company secretarial, governance, tax, and compliance.We...
-
Information and Security Manager
2 months ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob Responsibilities:Plan, coordinate, and direct all information security tasks within the area of responsibility to meet the global and local security goals.Support all security incidents of the location with alignment to the incident management process.Work with the Procurement and Legal departments to review and screen suppliers.Lead IT/security...
-
Old Toronto, Canada Ezra Full timep>Job Role: IT Security, Risk and Compliance Manager - EZRA Location: Toronto, Canada – Hybrid (3 days per week in office) Who we are Ezra is the fastest-growing global virtual coaching company, supporting some of the world’s leading companies. p>The primary purpose of the role is to support the Head of IT Security Risk and Compliance to ensure the...
-
Chief Information Security Officer
3 days ago
Old Toronto, Canada LZ Security & Service GmbH Full timeJob OverviewLZ Security & Service GmbH is seeking a highly skilled and experienced Chief Information Security Officer to lead our information security efforts. This role is responsible for planning, coordinating, and directing all information security tasks within the organization to meet global and local security goals.
-
Information Security Officer
6 months ago
Toronto, Canada ThoughtStorm Inc Full time**Job Description and Responsibilities**: Assist Chief Risk Officer in acting second line of defense of Cyber Security Risk Management: - To be responsible for maintaining and improving Information Security risk management framework in terms of bank’s risk management framework. - To be responsible for manage and mitigate risks related to cyber security,...
-
Old Toronto, Canada Knightsbridge Solutions, L.L.C. Full timep>Job Role: IT Security, Risk and Compliance Manager - EZRALocation: Toronto, Canada – Hybrid (3 days per week in office)Who we areImagine what even the world’s finest organizations could achieve if all of their employees were coached to be their absolute best. We believe, through coaching, people get to know themselves, their goals, weaknesses, and...
-
Information Security Analyst
2 weeks ago
Toronto, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded as...
-
Information Security Analyst
2 weeks ago
Toronto, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded as...
-
Information Security Analyst
1 month ago
Toronto, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded as...
-
Information Security Analyst
4 months ago
Toronto, Canada Toyota Full timeJob Description Information Security Analyst Rank P4 Scarborough, ON (Hybrid) What We’ll Bring: - Company & Culture_- A hybrid work environment- A work environment built on teamwork, flexibility and respect- Professional growth and development programs to help advance your career- A focus on respect for people and continuous improvement- Summer Hours...
-
Information Security Analyst
2 weeks ago
Toronto, ON, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded...
-
Information Security Analyst
2 weeks ago
Toronto, ON, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded...
-
Information Security Analyst
1 month ago
Toronto, Ontario, Ontario, Canada Hana Bank Canada Full timeHana Bank Canada is a subsidiary of Hana Financial Group, the largest global financial group in South Korea which operates a domestic and overseas network of over 750 branches in 25 countries. As a leading provider of financial solutions for the Korean community in Canada, our mission of "Growing Together, Sharing Happiness" keeps us focused and grounded as...
-
Chief Information Security Architect
4 weeks ago
Old Toronto, Canada Nova Credit Full timeNova Credit is a pioneering financial technology company that empowers a more inclusive and fair financial system for the world. As a leading player in rewiring the financial industry with better credit infrastructure, analytics, and workflows, Nova Credit enables individuals from traditionally underserved populations to access credit opportunities. Our...
-
Head of IT Operations
3 days ago
Old Toronto, Canada Gated Talent Full timeCosmetica Laboratories is recognized for innovation and excellence, with award-winning products that drive business growth.About UsWe value talent and strive to create beauty in the world through cutting-edge technology and exceptional service. As a company committed to developing our internal employees, we aim to foster a culture of continuous learning and...
-
Senior Information Security Strategist
2 weeks ago
Old Toronto, Canada Hitachi Vantara Corporation Full timeAt Hitachi Rail, we are committed to creating a diverse and inclusive work environment where everyone feels valued and empowered to succeed.About the RoleWe are seeking a highly skilled Senior Information Security Strategist to join our team in Toronto, Canada. As a key member of our security leadership team, you will play a critical role in shaping our...
-
Chief Information Security Architect
2 weeks ago
Old Toronto, Canada Manulife Insurance Malaysia Full timeManulife Insurance MalaysiaWe are seeking an experienced Chief Information Security Architect to lead our information security and risk management efforts.About the RoleThis role offers the opportunity to develop and implement a comprehensive vulnerability management program, update security policies, and drive security awareness initiatives. You will...
-
Global Identity Operations Head
2 weeks ago
Old Toronto, Canada Scotiabank Full timeAt Scotiabank, we are seeking a seasoned professional to fill the role of Global Identity Operations Head. This key position will oversee the execution of business strategies, plans, and initiatives in compliance with governing regulations, internal policies, and procedures.About the RoleThis critical role involves collaborating with stakeholders globally to...
-
Chief Information Security Architect
4 weeks ago
Old Toronto, Canada HOOPP Thames Limited Full timeAt HOOPP Thames Limited, we are committed to providing our members with a stable and reliable pension that starts in retirement and is paid for life.We take pride in being the pension plan for Ontario's healthcare community and serve more than 460,000 members at more than 670 employers across the province.The successful candidate will be responsible for...
-
Chief Information Security Officer
1 day ago
Old Toronto, Canada Athennian Group Full timeJob Title: Chief Information Security OfficerEstimated Salary: $140,000 - $180,000 per yearAbout Athennian GroupAthennian Group is a leading provider of technology solutions for businesses, with a focus on increasing trust and efficiency in the market.Job DescriptionWe are seeking an experienced Chief Information Security Officer to join our team. The...
