Lead, Cybersecurity Insider Risk Management

Join a Challenger
Being a traditional bank just isn't our thing, so we challenge ourselves to get creative in providing innovative banking solutions for Canadians
How do we get there? With a talented team of inquisitive and agile challengers that break through the status quo. So, if you're passionate about redefining the future of banking—while having fun—this could be your next big opportunity
Our company continues to grow, and today we serve more than 670,000 people across Canada through Equitable Bank, Canada's Challenger Bank, and have been around for more than 50 years. Equitable Bank's wholly-owned subsidiary, Concentra Bank, supports credit unions across Canada that serve more than six million members. Together we have over $125 billion in combined assets under management and administration, with a clear mandate to drive change in Canadian banking to enrich people's lives. Our customers have named our EQ Bank digital platform ) one of the top banks in Canada on the Forbes World's Best Banks list since
The Work
The Lead, Cybersecurity Insider Risk Management is a senior-level individual contributor role responsible for shaping and advancing the organization's insider risk strategy. This position is dedicated to protecting sensitive data and critical assets by leading the design, implementation, and continuous enhancement of insider risk capabilities. This role is exclusively focused on cyber-related threats and does not involve financial fraud or AML investigations. While it does not currently include people management responsibilities, it offers a clear pathway to future leadership opportunities. Success in this role requires deep technical expertise, strategic vision, and the ability to influence and collaborate across cybersecurity, legal, HR, and business teams to strengthen organizational resilience. The Core Responsibilities Own and lead the insider risk program strategy, governance framework, and roadmap. Define policies, standards, and procedures for insider risk management aligned with regulatory and organizational requirements. Develop and report on KPIs and metrics to measure program effectiveness and maturity. Lead the selection, assessment, and proof-of-concept (POC) for insider risk management tools (e.g., DLP, UEBA, SIM, CASB). Architect and implement advanced insider risk detection and response capabilities leveraging behavioral analytics, machine learning, and automation. Leverage AI-driven tools and automation to enhance efficiency, accuracy, and scalability of the insider risk management program. Integrate insider risk monitoring with broader cybersecurity platforms and threat intelligence feeds. Oversee day-to-day insider risk operations, ensuring timely detection, triage, and resolution of alerts. Define and maintain high-risk user groups, implementing automation for dynamic updates. Direct investigations into suspicious activities, ensuring proper documentation, evidence handling, and escalation. Monitor insider risk users through IRM alerts, DLP alerts, UEBA alerts, and database activity monitoring (DAM) alerts. Detect anomalous queries, unauthorized schema changes, or mass data exports, correlating database activity with user behavior analytics (UEBA). Deploy DAM tools to track queries, changes, and access patterns; set alerts for suspicious activities like bulk data extraction or unusual query patterns. Integrate DAM logs with SIEM for centralized monitoring. Let's Talk About You Bachelor in Computer Science or related field. At least seven (7) years of information security and information risk experience. Expertise in insider risk platforms and technologies: DLP, IRM, UEBA, SIEM, CASB, EDR Strong knowledge of database security principles, encryption, and DAM tools Proficiency in scripting and automation (Python, PowerShell) for alert enrichment and remediation workflows. CISSP or similar certification is preferred. Ability to work in a fast-paced environment with minimal guidance and supervision. Ability to adapt to constantly changing technical, regulatory, and compliance environments. The incumbent is expected to interact with all employees including executives and thus good verbal and written skills are important. Experience working in a banking or financial services environment is an asset. Ability to think out of the box for solutions to technical problems. What we offer [For full-time permanent roles] Competitive discretionary bonus Market leading RRSP match program Medical, dental, vision, life, and disability benefits Employee Share Purchase Plan Maternity/Parental top-up while you care for your little one Generous vacation policy and personal days Virtual events to connect with your fellow colleagues Annual professional development allowance and a comprehensive Career Development program A fulfilling opportunity to join one of the top FinTechs and help create a new kind of banking experience
The incumbent will be working hybrid and in office time will be spent working from Equitable Bank's additional office space located at Ontario Street, Toronto, ON Equitable Bank is deeply committed to inclusion. Our organization is stronger and our employees thrive when we honour and celebrate everyone's diverse experiences and perspectives. In tandem with that commitment, we support and encourage our staff to grow not just in their career path, but personally as well
We commit to providing a barrier-free recruitment process and work environment for all applicants. Please let us know of any accommodations needed so that you can bring your best self to the application process and beyond. All candidates considered for hire must successfully pass a criminal background check and credit check to qualify for hire. While we appreciate your interest in applying, an Equitable recruiter will only contact leading candidates whose skills and qualifications closely match the requirements of the position We can't wait to get to know you

---