Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Manager, Information Security Risk and Governance

$100.71k - $125.92k per year
Full-time

Current External

Role impact:

The Senior Manager Information Security Risk & Governance leads the Information Security Risk Management and Governance programs. Their main objective is to manage and continue the development of both programs to enhance and communicate the value of the Information Security (IS) practice in reducing related risks to CF.

In addition this role is expected to work with technology and business stakeholders to identify Information Security risks conduct risk assessments recommend risks mitigation strategies and monitor identified risks throughout its lifecycle. They also develop maintain and report on Key Performance Indicators (KPIs) Key Risk Indicators (KRIs) Service Level Agreements (SLAs) and other documentation related to the Information Security program.

What you will deliver:

  • Own and manage the Risk & Governance program within the D&T Department
  • Understand and manage Information Security risks pertinent to the organizations business goals and work with various departments to identify measure monitor and report on risk based on information assets
  • Partner with senior leadership team to obtain approvals for treatment of risk
  • Develop document and communicate risk mitigation strategies to risk owners; document and monitor the implementation of security controls and adjust risk rating accordingly
  • Develop maintain and report on KRIs KPIs and SLAs related to Information Security program.
  • Research implement and operate risk and governance technology tools and processes to enhance the effectiveness of the practice
  • Develop new Information Security policies; ensure all existing policies and related documents are up to date
  • Liaise with auditors and support the internal and external audit processes including the collection of requested artifacts review and prioritization of findings and recommendations.
  • Stay abreast of and actively seek out information on emerging trends in Information Security risks and threat vectors; apply new techniques in-line with overall Information Security objectives and risk tolerance of the organization
  • Work with internal stakeholders to develop strategies and implementation plans to enforce Information Security requirements and address identified risks
  • Identifies requirements and conducts business impact analyses for threats risks and vulnerabilities for the Security Operations team to execute vulnerability assessments penetration tests and security audits
  • Primary author for risk and governance reports to highlight risk posture of the organization mitigations and recommendations

What your strengths are:

  • Ability to discuss with clarity risk and governance matters with non-technical stakeholders.
  • Ability to analyze a large complex interlinked environment of data communications and information systems where the technology is changing as well as the types of threats and vulnerabilities.
  • Excel at problem-solving with a deep understanding of computer security and applicable laws and regulations.
  • Understand business goals and operations and align risk mitigation recommendations with overall strategy and budget.
  • Proven ability to conduct research into Information Security controls and technologies as required.
  • Ability to work independently setting goals prioritize and execute tasks in a high-pressure environment.
  • Excellent written oral and interpersonal communication skills.
  • Ability to collaborate effectively with other leaders
  • Ability to provide effective coaching to direct reports

What you need to succeed:

  • Post-secondary degree in Computer Science or equivalent combination of education and experience that satisfy the requirements of the position.
  • Minimum 8 years of progressive responsibilities in developing and supporting Information Security risks management and governance programs; out of them 3 years in a management role.
  • Excellent knowledge of security technologies which are commonly used in enterprises to protect information systems including on premise Cloud and Mobile.
  • Working knowledge of Information Security and Risk Management frameworks like ISO27001/2 ISO27005 NIST CSF and NIST 800-30
  • Understanding of legal and regulatory compliance standards and requirements like PCI-DSS and PIPEDA
  • CISSP CISA CRISC and other security certifications are a strong asset.

Starting base salary for this job level may range from $100712 - $125920. The actual base salary offered will consider several factors including but not limited to the role experiences skills & qualifications location market and internal considerations; with this context CF reserves the right to pay above this range.

Cadillac Fairview offers a competitive total rewards package in addition to base pay which includes a performance based incentive plan a comprehensive pension and benefits plan paid time off including vacation wellbeing & volunteer days and support for continued growth and development.

Why you should join us:

At Cadillac Fairview we have been transforming communities for over 50 years. We are so much more than our properties. We are building leaders at all levels. We offer the challenge of interesting work a great organizational culture the opportunity to collaborate with the best in the business and support for your growth and development. We reward values-based behavior and superior results with a competitive rewards package that includes best-in-class benefits and pension. Imagine a place where you can make a difference!

At CF our everyday actions and critical business decisions are guided by our CF Values. Achieving results is naturally important for us and we achieve results through behaviours that are consistent with our CF Values.

Are you someone who believes in our values

  • Aim Higher we strive to exceed expectations
  • Own Your Expertise we empower ourselves and each other
  • Collaborate Effectively we bring the right people together to get the right results
  • Engage with Empathy we objectively consider the needs of others
  • Embrace Change we drive learn from and adapt to change

At CF youll join a diverse community and award-winning team where your talent and commitment to excellence are welcomed valued and respected.

CF is an equal opportunity employer and is committed to creating a diverse and inclusive environment. If you need reasonable accommodation during the recruitment assessment and/or selection process please notify your CF contact or email

Required Experience:

Senior Manager

Vacancy posted 11 hours ago
Similar jobs that could be interesting for youBased on the Senior Manager, Information Security Risk and Governance in Toronto, ON vacancy
  •  ...CIBC.com What you'll be doing You’ll be joining CIBC’s Information Security Risk Services team. You’ll be on the front lines of building the...  ...digestible reports, metrics and dashboards for consumption by senior management across CIBC. At CIBC we enable the work... 
    Senior
    Risk
    Full time
    3 days per week
    1 day per week

    CIBC

    Toronto, ON
    10 days ago
  •  ...better and more beautiful place.  Job Description The Information Security Lead provides cybersecurity expertise across Security Awareness, Identity and Access Management (IAM), Cloud Security, Security Risk Assessments, and Security Projects. The role works closely... 
    Senior
    Risk
    Full time
    Flexible hours

    Indigo Books & Music

    Toronto, ON
    9 days ago
  • $50 - $55 per hour

     ...Senior Information Security Advisor (Cybersecurity Risk & Cloud Security) Support impactful cybersecurity initiatives within a leading insurance environment where your expertise will help strengthen security practices, protect critical business information, and influence... 
    Senior
    Risk
    Hourly pay
    Permanent employment
    Full time
    Contract work
    Work at office
    1 day per week

    Recrute Action

    Toronto, ON
    11 hours ago
  •  ...connect and transforms what’s possible, you belong on #TeamBell. Summary We are seeking a Senior Information Security Specialist to join our Cyber Risk & Secure Architecture team, a group that is transforming how cybersecurity risk is assessed, managed, and... 
    Senior
    Risk
    Full time
    Work at office
    3 days per week

    Bell

    Toronto, ON
    4 days ago
  •  ...results, in an inclusive and high-performing culture. The role: The Senior Manager, Governance & Process Optimization (G&PO) is a key contributor to the success of the Governance team in Global Risk Management (GRM). By supporting Governance functions and projects, they... 
    Senior
    Risk
    Contract work
    Temporary work
    Work at office

    Scotiabank

    Toronto, ON
    7 days ago
  • $69k - $114k per year

     ...look like? Deloitte is seeking a Senior Consultant to join its Global Risk & Brand Protection team. In this role...  ...and implementation of risk management processes and programs; help coordinate...  ..., confidentiality & privacy, cyber security oversight, regulatory, independence... 
    Senior
    Risk
    Permanent employment
    Work at office
    Remote work
    Flexible hours
    Weekend work

    Deloitte

    Toronto, ON
    1 day ago
  •  ...CIBC, please visit CIBC.com What you'll be doing As a Senior Consultant, Information Security, you will join CIBC's Enterprise Cryptographic Services...  ...ensure compliance with cryptographic standards, identify risks, and recommend improvements to align with best practices.... 
    Senior
    Risk
    Full time
    3 days per week
    1 day per week

    CIBC

    Toronto, ON
    7 days ago
  • $175k - $190k per year

     ...your contributions. The Job: Director, Governance, Risk and Compliance (GRC) We’re seeking a Director...  ...’s cybersecurity governance, cyber risk management, compliance, and data governance functions. This is a highly hands-on senior individual contributor role responsible... 
    Senior
    Risk
    Temporary work
    Work at office
    Remote work

    Momentum Financial Services Group

    Toronto, ON
    5 days ago
  • $126k - $234k per year

     ...coaching -- What will your typical day look like?   As a Senior Manager in People Risk, you will work collaboratively within a high-performing...  ..., and risk management. You will communicate complex information clearly and effectively through well-crafted deliverables... 
    Senior
    Risk
    Permanent employment
    Flexible hours

    Deloitte

    Toronto, ON
    1 day ago
  • $88 per hour

    Our client, a large enterprise organization, is seeking a Senior Project Manager to lead governance and risk-focused initiatives within a large enterprise environment. This is an 8-month contract (with potential extension), starting ASAP, operating in a hybrid model with 2 days... 
    Senior
    Risk
    Contract work
    Immediate start
    Toronto, ON
    more than 2 months ago
  • $102.64k - $153.96k per year

     ...trust with their most complex legal matters. GRC Analyst, Information security The Role The information security GRC analyst, reporting...  ...the implementation and maintenance of the organization’s Governance, Risk, and Compliance (GRC) program, with a strong focus on third... 
    Senior
    Risk
    Full time

    Bennett Jones

    Toronto, ON
    23 days ago
  • $137.7k - $178.2k per year

     ...seeking a strategic and experienced  Manager, Project Management Governance to lead the governance, standards, and...  ..., oversee quality assurance and risk management practices, and lead a team...  ...Build and influence relationships with senior leaders and external partners Represent... 
    Senior
    Risk
    Long term contract
    Internship
    Work at office
    Afternoon shift

    Hydro One Networks Inc

    Toronto, ON
    23 hours ago
  • $96.56k - $128.74k per year

     ...change in emerging markets?  We are looking for an Senior Advisor, Enterprise Risk Management ! Join FinDev Canada, Canada’s development financial...  ...responses to current and emerging enterprise risks. Governance : Support adherence to sound risk governance under the... 
    Senior
    Risk
    Long term contract
    Permanent employment
    Full time
    Work at office
    3 days per week

    FinDev Canada

    Toronto, ON
    7 days ago
  •  ...across space, aerospace, defense, government, financial services, and...  ...the intersection of national security, allied intelligence cooperation...  ...advisors shape the governance, risk, and compliance programs that...  ...based – as required. This is a senior leadership role for a... 
    Senior
    Risk
    Internship
    Remote work

    Malleum

    Toronto, ON
    21 days ago
  •  ...opportunity? As the leader of the Fraud Model Governance team, you will oversee the model...  ...external vendors to deliver high quality model risk governance documentation and model...  ...ambiguity ~ Strong organization and time management skills ~ Ability to balance multiple deliverables... 
    Senior
    Risk
    Full time

    Royal Bank of Canada

    Toronto, ON
    7 days ago
  •  ...culture. Purpose Leads and oversees CB Project Portfolio Management and Governance ensuring successful execution of initiatives in alignment...  ...development planning for the team. 11. Understand how the Bank's risk appetite and risk culture should be considered in day-to-day... 
    Senior
    Risk
    Full time
    Flexible hours

    Scotiabank

    Toronto, ON
    7 days ago
  •  ...About the Role As a Senior Leader within Capco’s Cyber Risk Management practice, you will be driving the growth, delivery, and innovation of our cybersecurity...  ...(CISO, CRO, CIO) on how to effectively manage and govern cyber and technology risks in an evolving regulatory and... 
    Senior
    Risk
    Immediate start

    Capco

    Toronto, ON
    3 days ago
  •  ...opportunity.  We can’t wait to get to know you!  The Work  The Senior Manager, Risk Transformation is a senior contributor responsible for...  ...of enterprise‑wide risk priorities across transformation, governance, regulatory engagement, and strategy. The role delivers outcomes... 
    Senior
    Risk
    Full time

    eqbank

    Toronto, ON
    14 days ago
  • $128.9k - $178.9k per year

     ...Specialism Conduct and Compliance Management Level Senior Manager Job Description & Summary At PwC, our people in risk and compliance focus on maintaining regulatory...  ...-on experience designing, configuring, governing, and scaling PMO tooling, reporting, and workflow... 
    Senior
    Risk
    Full time
    Contract work
    Visa sponsorship
    Work visa

    PwC Canada

    Toronto, ON
    16 days ago
  •  ...analysis, vulnerability assessment, and security architecture recommendations. Create...  ...organization, MSSP, consultancy, or government/defense environment. ~ Background in...  ...about the interview process and platform information, please check: For any help or support... 
    Remote job
    Hourly pay
    Contract work
    Summer work

    Mercor

    Toronto, ON
    28 days ago
  •  ...implement AI strategies that are secure, scalable, and human-centered....  ...a legacy infrastructure, manage a large team, and maintain the...  ...conversation around AI safety and governance, this is it. What You'll...  ...develop response frameworks for risks unique to agentic AI — things... 
    Risk
    Full time
    For contractors
    Internship
    Remote work
    Day shift

    Human Agency

    Toronto, ON
    11 days ago
  •  ...working world.  The opportunity EY’s Financial Services Risk Management (FSRM) practice is a consulting unit that provides risk management...  ..., project management and risk professionals. We are seeking a Senior Manager with technology and architecture experience to join our... 
    Senior
    Risk

    Ernst & Young

    Toronto, ON
    12 days ago
  • $86k - $130k per year

     ...first. Then, watch for a unique link in your email to apply. We are looking for a motivated Lead, Information Management to join the dynamic Value Management, Risk and Governance team within OMERS Data and Technology. This role will work primarily on Enterprise Information... 
    Risk
    Long term contract
    Full time
    Temporary work
    Work at office
    Flexible hours

    OMERS

    Toronto, ON
    13 days ago
  • $140k - $260k per year

     ...member of the leadership team you will spend your time helping manage the risk for the service line. This will involve assisting with strategic...  ...skills. Strong executive presence and ability to influence senior stakeholders Ability to multitask and manage conflicting priorities... 
    Senior
    Risk
    Permanent employment
    Flexible hours

    Deloitte

    Toronto, ON
    1 day ago
  • $112k - $162k per year

     ...One Legal team at Equinix is seeking a Canadian Government Contracts Manager who must be eligible for a Canadian government security clearance to support Equinix’s growing Federal...  ..., analyzing terms and conditions to evaluate risks to provide for proper contract acquisition and... 
    Risk
    Full time
    Contract work
    For subcontractor

    Equinix

    Toronto, ON
    1 day ago
  • $130k - $170k per year

     ...you’ll help shape our lending strategy, risk framework, and operations as we bring this...  .... About the role: We’re hiring a Senior Manager, Credit & Risk to build and lead the...  ...clear measurement and guardrails. Risk governance, controls, and compliance support Help... 
    Senior
    Risk
    Internship
    Remote work

    Clutch Technologies Inc.

    Toronto, ON
    3 days ago
  •  ...your typical day look like? As a Cyber Risk Consultant / Senior Consultant, you will have the...  ...• Assessing and implementing Cloud security solutions for clients • Reviewing security...  ...Diploma in Computer Science, Engineering, Management Information Systems or Information... 
    Senior
    Risk
    Permanent employment
    Flexible hours

    Deloitte

    Toronto, ON
    1 day ago
  • $68k - $102k per year

     ...typical day look like?   As a Consultant or Senior Consultant in People Risk, you will work collaboratively within a high-performing...  ...focus on client service, quality, and risk management. You will communicate complex information clearly through well-structured deliverables... 
    Senior
    Risk
    Permanent employment
    Work at office
    Flexible hours

    Deloitte

    Toronto, ON
    1 day ago
  •  ...Director, PMO Strategic Delivery (Global Security) you are responsible to lead, direct...  ...with RBC's standard project management discipline. Oversee end to end program...  ...creation of business case, governance structure, artifacts, risks and issues, financials, and drive business... 
    Senior
    Risk
    Long term contract
    Full time
    Flexible hours

    Royal Bank of Canada

    Toronto, ON
    7 days ago
  • $90k - $175k per year

     ...programs on track—and raise the bar for quality and risk. In this role, you’ll help leaders run large, high...  ...typical” day. You’ll balance analytics, stakeholder management, and continuous improvement—working with senior leaders and delivery teams to spot risks early,... 
    Senior
    Risk
    Permanent employment
    Remote work
    Flexible hours

    Deloitte

    Toronto, ON
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Manager, Information Security Risk and Governance. Be the first to apply!