Senior Manager, Information Security Risk and Governance
$100.71k - $125.92k per yearCurrent External
Role impact:
The Senior Manager Information Security Risk & Governance leads the Information Security Risk Management and Governance programs. Their main objective is to manage and continue the development of both programs to enhance and communicate the value of the Information Security (IS) practice in reducing related risks to CF.
In addition this role is expected to work with technology and business stakeholders to identify Information Security risks conduct risk assessments recommend risks mitigation strategies and monitor identified risks throughout its lifecycle. They also develop maintain and report on Key Performance Indicators (KPIs) Key Risk Indicators (KRIs) Service Level Agreements (SLAs) and other documentation related to the Information Security program.
What you will deliver:
- Own and manage the Risk & Governance program within the D&T Department
- Understand and manage Information Security risks pertinent to the organizations business goals and work with various departments to identify measure monitor and report on risk based on information assets
- Partner with senior leadership team to obtain approvals for treatment of risk
- Develop document and communicate risk mitigation strategies to risk owners; document and monitor the implementation of security controls and adjust risk rating accordingly
- Develop maintain and report on KRIs KPIs and SLAs related to Information Security program.
- Research implement and operate risk and governance technology tools and processes to enhance the effectiveness of the practice
- Develop new Information Security policies; ensure all existing policies and related documents are up to date
- Liaise with auditors and support the internal and external audit processes including the collection of requested artifacts review and prioritization of findings and recommendations.
- Stay abreast of and actively seek out information on emerging trends in Information Security risks and threat vectors; apply new techniques in-line with overall Information Security objectives and risk tolerance of the organization
- Work with internal stakeholders to develop strategies and implementation plans to enforce Information Security requirements and address identified risks
- Identifies requirements and conducts business impact analyses for threats risks and vulnerabilities for the Security Operations team to execute vulnerability assessments penetration tests and security audits
- Primary author for risk and governance reports to highlight risk posture of the organization mitigations and recommendations
What your strengths are:
- Ability to discuss with clarity risk and governance matters with non-technical stakeholders.
- Ability to analyze a large complex interlinked environment of data communications and information systems where the technology is changing as well as the types of threats and vulnerabilities.
- Excel at problem-solving with a deep understanding of computer security and applicable laws and regulations.
- Understand business goals and operations and align risk mitigation recommendations with overall strategy and budget.
- Proven ability to conduct research into Information Security controls and technologies as required.
- Ability to work independently setting goals prioritize and execute tasks in a high-pressure environment.
- Excellent written oral and interpersonal communication skills.
- Ability to collaborate effectively with other leaders
- Ability to provide effective coaching to direct reports
What you need to succeed:
- Post-secondary degree in Computer Science or equivalent combination of education and experience that satisfy the requirements of the position.
- Minimum 8 years of progressive responsibilities in developing and supporting Information Security risks management and governance programs; out of them 3 years in a management role.
- Excellent knowledge of security technologies which are commonly used in enterprises to protect information systems including on premise Cloud and Mobile.
- Working knowledge of Information Security and Risk Management frameworks like ISO27001/2 ISO27005 NIST CSF and NIST 800-30
- Understanding of legal and regulatory compliance standards and requirements like PCI-DSS and PIPEDA
- CISSP CISA CRISC and other security certifications are a strong asset.
Starting base salary for this job level may range from $100712 - $125920. The actual base salary offered will consider several factors including but not limited to the role experiences skills & qualifications location market and internal considerations; with this context CF reserves the right to pay above this range.
Cadillac Fairview offers a competitive total rewards package in addition to base pay which includes a performance based incentive plan a comprehensive pension and benefits plan paid time off including vacation wellbeing & volunteer days and support for continued growth and development.
Why you should join us:
At Cadillac Fairview we have been transforming communities for over 50 years. We are so much more than our properties. We are building leaders at all levels. We offer the challenge of interesting work a great organizational culture the opportunity to collaborate with the best in the business and support for your growth and development. We reward values-based behavior and superior results with a competitive rewards package that includes best-in-class benefits and pension. Imagine a place where you can make a difference!
At CF our everyday actions and critical business decisions are guided by our CF Values. Achieving results is naturally important for us and we achieve results through behaviours that are consistent with our CF Values.
Are you someone who believes in our values
- Aim Higher we strive to exceed expectations
- Own Your Expertise we empower ourselves and each other
- Collaborate Effectively we bring the right people together to get the right results
- Engage with Empathy we objectively consider the needs of others
- Embrace Change we drive learn from and adapt to change
At CF youll join a diverse community and award-winning team where your talent and commitment to excellence are welcomed valued and respected.
CF is an equal opportunity employer and is committed to creating a diverse and inclusive environment. If you need reasonable accommodation during the recruitment assessment and/or selection process please notify your CF contact or email
Required Experience:
Senior Manager
- ...CIBC.com What you'll be doing You’ll be joining CIBC’s Information Security Risk Services team. You’ll be on the front lines of building the... ...digestible reports, metrics and dashboards for consumption by senior management across CIBC. At CIBC we enable the work...SeniorRiskFull time3 days per week1 day per week
- ...better and more beautiful place. Job Description The Information Security Lead provides cybersecurity expertise across Security Awareness, Identity and Access Management (IAM), Cloud Security, Security Risk Assessments, and Security Projects. The role works closely...SeniorRiskFull timeFlexible hours
$50 - $55 per hour
...Senior Information Security Advisor (Cybersecurity Risk & Cloud Security) Support impactful cybersecurity initiatives within a leading insurance environment where your expertise will help strengthen security practices, protect critical business information, and influence...SeniorRiskHourly payPermanent employmentFull timeContract workWork at office1 day per week- ...connect and transforms what’s possible, you belong on #TeamBell. Summary We are seeking a Senior Information Security Specialist to join our Cyber Risk & Secure Architecture team, a group that is transforming how cybersecurity risk is assessed, managed, and...SeniorRiskFull timeWork at office3 days per week
- ...results, in an inclusive and high-performing culture. The role: The Senior Manager, Governance & Process Optimization (G&PO) is a key contributor to the success of the Governance team in Global Risk Management (GRM). By supporting Governance functions and projects, they...SeniorRiskContract workTemporary workWork at office
$69k - $114k per year
...look like? Deloitte is seeking a Senior Consultant to join its Global Risk & Brand Protection team. In this role... ...and implementation of risk management processes and programs; help coordinate... ..., confidentiality & privacy, cyber security oversight, regulatory, independence...SeniorRiskPermanent employmentWork at officeRemote workFlexible hoursWeekend work- ...CIBC, please visit CIBC.com What you'll be doing As a Senior Consultant, Information Security, you will join CIBC's Enterprise Cryptographic Services... ...ensure compliance with cryptographic standards, identify risks, and recommend improvements to align with best practices....SeniorRiskFull time3 days per week1 day per week
$175k - $190k per year
...your contributions. The Job: Director, Governance, Risk and Compliance (GRC) We’re seeking a Director... ...’s cybersecurity governance, cyber risk management, compliance, and data governance functions. This is a highly hands-on senior individual contributor role responsible...SeniorRiskTemporary workWork at officeRemote work$126k - $234k per year
...coaching -- What will your typical day look like? As a Senior Manager in People Risk, you will work collaboratively within a high-performing... ..., and risk management. You will communicate complex information clearly and effectively through well-crafted deliverables...SeniorRiskPermanent employmentFlexible hours$88 per hour
Our client, a large enterprise organization, is seeking a Senior Project Manager to lead governance and risk-focused initiatives within a large enterprise environment. This is an 8-month contract (with potential extension), starting ASAP, operating in a hybrid model with 2 days...SeniorRiskContract workImmediate start$102.64k - $153.96k per year
...trust with their most complex legal matters. GRC Analyst, Information security The Role The information security GRC analyst, reporting... ...the implementation and maintenance of the organization’s Governance, Risk, and Compliance (GRC) program, with a strong focus on third...SeniorRiskFull time$137.7k - $178.2k per year
...seeking a strategic and experienced Manager, Project Management Governance to lead the governance, standards, and... ..., oversee quality assurance and risk management practices, and lead a team... ...Build and influence relationships with senior leaders and external partners Represent...SeniorRiskLong term contractInternshipWork at officeAfternoon shift$96.56k - $128.74k per year
...change in emerging markets? We are looking for an Senior Advisor, Enterprise Risk Management ! Join FinDev Canada, Canada’s development financial... ...responses to current and emerging enterprise risks. Governance : Support adherence to sound risk governance under the...SeniorRiskLong term contractPermanent employmentFull timeWork at office3 days per week- ...across space, aerospace, defense, government, financial services, and... ...the intersection of national security, allied intelligence cooperation... ...advisors shape the governance, risk, and compliance programs that... ...based – as required. This is a senior leadership role for a...SeniorRiskInternshipRemote work
- ...opportunity? As the leader of the Fraud Model Governance team, you will oversee the model... ...external vendors to deliver high quality model risk governance documentation and model... ...ambiguity ~ Strong organization and time management skills ~ Ability to balance multiple deliverables...SeniorRiskFull time
- ...culture. Purpose Leads and oversees CB Project Portfolio Management and Governance ensuring successful execution of initiatives in alignment... ...development planning for the team. 11. Understand how the Bank's risk appetite and risk culture should be considered in day-to-day...SeniorRiskFull timeFlexible hours
- ...About the Role As a Senior Leader within Capco’s Cyber Risk Management practice, you will be driving the growth, delivery, and innovation of our cybersecurity... ...(CISO, CRO, CIO) on how to effectively manage and govern cyber and technology risks in an evolving regulatory and...SeniorRiskImmediate start
- ...opportunity. We can’t wait to get to know you! The Work The Senior Manager, Risk Transformation is a senior contributor responsible for... ...of enterprise‑wide risk priorities across transformation, governance, regulatory engagement, and strategy. The role delivers outcomes...SeniorRiskFull time
$128.9k - $178.9k per year
...Specialism Conduct and Compliance Management Level Senior Manager Job Description & Summary At PwC, our people in risk and compliance focus on maintaining regulatory... ...-on experience designing, configuring, governing, and scaling PMO tooling, reporting, and workflow...SeniorRiskFull timeContract workVisa sponsorshipWork visa- ...analysis, vulnerability assessment, and security architecture recommendations. Create... ...organization, MSSP, consultancy, or government/defense environment. ~ Background in... ...about the interview process and platform information, please check: For any help or support...Remote jobHourly payContract workSummer work
- ...implement AI strategies that are secure, scalable, and human-centered.... ...a legacy infrastructure, manage a large team, and maintain the... ...conversation around AI safety and governance, this is it. What You'll... ...develop response frameworks for risks unique to agentic AI — things...RiskFull timeFor contractorsInternshipRemote workDay shift
- ...working world. The opportunity EY’s Financial Services Risk Management (FSRM) practice is a consulting unit that provides risk management... ..., project management and risk professionals. We are seeking a Senior Manager with technology and architecture experience to join our...SeniorRisk
$86k - $130k per year
...first. Then, watch for a unique link in your email to apply. We are looking for a motivated Lead, Information Management to join the dynamic Value Management, Risk and Governance team within OMERS Data and Technology. This role will work primarily on Enterprise Information...RiskLong term contractFull timeTemporary workWork at officeFlexible hours$140k - $260k per year
...member of the leadership team you will spend your time helping manage the risk for the service line. This will involve assisting with strategic... ...skills. Strong executive presence and ability to influence senior stakeholders Ability to multitask and manage conflicting priorities...SeniorRiskPermanent employmentFlexible hours$112k - $162k per year
...One Legal team at Equinix is seeking a Canadian Government Contracts Manager who must be eligible for a Canadian government security clearance to support Equinix’s growing Federal... ..., analyzing terms and conditions to evaluate risks to provide for proper contract acquisition and...RiskFull timeContract workFor subcontractor$130k - $170k per year
...you’ll help shape our lending strategy, risk framework, and operations as we bring this... .... About the role: We’re hiring a Senior Manager, Credit & Risk to build and lead the... ...clear measurement and guardrails. Risk governance, controls, and compliance support Help...SeniorRiskInternshipRemote work- ...your typical day look like? As a Cyber Risk Consultant / Senior Consultant, you will have the... ...• Assessing and implementing Cloud security solutions for clients • Reviewing security... ...Diploma in Computer Science, Engineering, Management Information Systems or Information...SeniorRiskPermanent employmentFlexible hours
$68k - $102k per year
...typical day look like? As a Consultant or Senior Consultant in People Risk, you will work collaboratively within a high-performing... ...focus on client service, quality, and risk management. You will communicate complex information clearly through well-structured deliverables...SeniorRiskPermanent employmentWork at officeFlexible hours- ...Director, PMO Strategic Delivery (Global Security) you are responsible to lead, direct... ...with RBC's standard project management discipline. Oversee end to end program... ...creation of business case, governance structure, artifacts, risks and issues, financials, and drive business...SeniorRiskLong term contractFull timeFlexible hours
$90k - $175k per year
...programs on track—and raise the bar for quality and risk. In this role, you’ll help leaders run large, high... ...typical” day. You’ll balance analytics, stakeholder management, and continuous improvement—working with senior leaders and delivery teams to spot risks early,...SeniorRiskPermanent employmentRemote workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Manager, Information Security Risk and Governance. Be the first to apply!
- manager information technology Toronto, ON
- records manager Toronto, ON
- sports information director Toronto, ON
- information director Toronto, ON
- director information technology Toronto, ON
- director security operations Toronto, ON
- security manager Toronto, ON
- supervisor security Toronto, ON
- oil and gas security manager Toronto, ON
- responsable sécurité Toronto, ON
