AVP, Threat and Vulnerability Management

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world. Overview As the AVP, Global Threat & Vulnerability Management (TVM) within Digital Security Threat Management (DSTM) under Security, Risk & Crisis Management (SRC), you will lead Sun Life’s global capability for identifying, assessing, prioritizing, and mitigating cyber vulnerabilities and threats across the enterprise. You will oversee multiple sub‑disciplines—vulnerability management, red teaming, threat intelligence, defensive security (blue team), application security platform & testing, and incident management & process development—ensuring Sun Life maintains a resilient and compliant security posture. This role partners closely with Security Engineering & Advisory, Technology Risk & Compliance, Security Governance & Client Programs, Security Initiatives & Awareness, and Security Operations to drive measurable improvements in cyber resilience and reduce enterprise attack surface. Key Responsibilities Enterprise Vulnerability Management Leadership Responsible Person/Contact for the enterprise Vulnerability Management Directive, overseeing the entire vulnerability lifecycle across Sun Life: identification, prioritization, reporting, remediation governance, and compliance monitoring. VM program encompasses: internal and external vulnerability scanning, database scanning, Security Scorecard monitoring, threat‑intel‑driven vulnerability monitoring, classification of vulnerabilities and zero‑day response, audit, client and regulatory responses, management of platforms related to Vulnerability Management, and senior leadership/executive reporting. Cyber Threat Intelligence (CTI) & Threat Hunting (CTH) Lead the collection, analysis, and operationalization of internal and external threat intelligence. Monitor global threats affecting Sun Life brands, staff, infrastructure, and clients; identify indicators of compromise and attacker behaviors. Produce actionable threat briefings for Security teams, Technology Risk, and senior leadership; maintain relationships with intelligence‑sharing communities and government partners. Ensure threat intelligence informs detection engineering, vulnerability prioritization, and offensive testing; perform continuous Threat Hunting. Develop and refine use cases with Security Operations and Engineering for alerting to Defensive Security teams. Red Team / Offensive Security Oversight Lead Offensive Security (Red Team) program, including application, network, social engineering, and physical penetration tests; adversary emulation engagements; intelligence‑led penetration testing. Translate findings into prioritized remediation actions and long‑term security improvements; validate remediation with technology teams. Blue Team / Defensive Security Oversight Lead Defensive Security (Blue Team) program; respond to detections and evolve capabilities based on threat intelligence and testing results. Collaborate with Offensive Security, CTI and Security Operations to enhance detection coverage, reduce dwell time, and improve alert fidelity. Security Incident & Process Management Lead the Security Incident team; respond to incidents and govern maturity of incident response processes, playbooks, and readiness exercises. Ensure consistent, high‑quality incident handling with clear communication and post‑incident reviews. Application Security Platforms & Testing Oversee application security scanning capabilities (static, dynamic, software composition, mobile analysis); integrate with DevOps pipelines. Identify systemic weaknesses, drive remediation strategies, provide secure development guidance, and ensure findings feed into enterprise vulnerability reporting. Cross‑Functional Collaboration & Governance Partner with Security Engineering & Advisory on architecture alignment and remediation; align with Technology Risk & Compliance, Security Governance & Client Programs, Security Initiatives & Awareness, and Security Operations. Define KPIs/KRIs and dashboards; deliver regular briefings to senior leadership, risk committees, and the board; translate technical risks into business impacts. Qualifications 15+ years of cybersecurity experience, with deep expertise in vulnerability management, threat intelligence, application security, or offensive/defensive security. Proven leadership experience managing technical teams and enterprise‑scale security programs. Strong understanding of vulnerability scanning tools, AppSec testing platforms, cloud security, and threat intelligence technologies. Hands‑on knowledge of Red and Blue Team operations, adversary emulation, penetration testing (web, network, cloud), threat hunting, incident detection and response, malware analysis, and validation of security controls across complex environments. Deep understanding of secure coding practices, CI/CD/DevSecOps principles, and secure development lifecycle. Experience in regulated industries, audits, regulators, and client assurance programs. Excellent communication skills with the ability to influence senior executives and technical teams. Ability to lead through complexity, ambiguity, and rapid change. Certifications such as CISSP, CISM, GIAC, OSCP, GCTI, or CSSLP. Experience with automation, cloud‑native security tooling, and large‑scale AppSec programs. Background in cyber risk quantification or exposure analytics. Leadership Competencies Strategic thinker with the ability to anticipate emerging threats and evolving attack surfaces. Strong decision‑making, ability to operate under pressure, and ability to build trust across diverse teams. High integrity, accountability, and a commitment to continuous improvement. Experience developing leaders, building high‑performing teams, and fostering a culture of security excellence. Ability to communicate complex risk topics clearly to senior leadership and influence across units. Regulatory‑grade evidence, narratives, and rationale development. What’s in it for you? Great Place to Work® Certified recognitions and awards (Canada) spanning 2023–2025. Flexible hybrid work model. Pension, stock and savings programs for long‑term financial security. Professional development aligned with our purpose to help clients and employees achieve financial security and healthier lives. Inclusive culture and opportunities to contribute to continuous improvement of the digital enterprise experience. Competitive salary and bonus structure; potential for career path diversification. Salary Range: 145,000 – 235,000 Job Category: IT - Technology Services Posting End Date: 16/02/2026 Footer Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our Clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds. Persons with disabilities who need accommodation in the application process, or those needing job postings in an alternative format, may e‑mail a request to thebrightside@sunlife.com. We are proud to be a hybrid organization that offers our employees choice and flexibility to work from both the office and virtually. We may use artificial intelligence to support candidate sourcing and scheduling. We thank all applicants for their interest. Only those selected for an interview will be contacted. #J-18808-Ljbffr