About the role

Manager of Cyber Governance leading compliance and awareness initiatives in cybersecurity. Managing a team to improve security and compliance, reporting to senior management.

Responsibilities

Manage a team of professionals to drive continuous improvement of IFC’s security controls.
Maintain the compliance program by managing resources and developing mechanisms towards optimal testing and assurance of security controls.
Develop and maintain a robust cybersecurity governance framework, aligning with emerging technologies, regulatory requirements, and industry best practices.
Collaborate with internal teams to address security issues and inquiries and streamline responses to regulatory bodies, internal and external audit, and business partners.
Coordinate enterprise-wide maturity assessments and independent assurance on Technology and Cyber.
Maintain and enhance the enterprise repository of security issues and ensure proper assignment, tracking and closure in a timeline manner.
Lead and execute a security awareness program, enhancing organizational culture and engagement in cybersecurity practices.
Prepare and present regular reports to senior management on cybersecurity performance.
Ensure the team has the expertise and resources to support the Tech and Cyber mission.

Bachelor’s degree in computer science, or any combination of equivalent education and experience
Minimum of ten (10) years of experience in information technology, including at least three (3) years managing technical teams in Security
Strong knowledge of information security management principles and practices, as well as regulatory and cyber frameworks such as NIST CSF, OSFI B-13, OSC 52-109 and SOX
Experience in managing Compliance Programs
Experience in managing Awareness Programs in large organizations
Initiative, creativity, and autonomy: you pro-actively seek resources and information for informed decisions, manage expectations and articulate problems while looking at continuous improvement
Strong ethical principles and understanding of business and information security ethics
One of these certifications would be a considerable asset: CISSP, CISA, CISM, CGEIT, CRISC
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English speaking colleagues across the country.
No Canadian work experience required however must be eligible to work in Canada.
GSEC, GISP.

A financial rewards program that recognizes your success
An industry leading Employee Share Purchase Plan; we match 50% of net shares purchased
An extensive flex pension and benefits package, with access to virtual healthcare
Flexible work arrangements
Possibility to purchase up to 5 extra days off per year
An annual wellness account that promotes an active and healthy lifestyle
Access to tools and resources to support physical and mental health, embracing change and connecting with colleagues
A dynamic workplace learning ecosystem complete with learning journeys, interactive online content, and inspiring programs
Inclusive employee-led networks to educate, inspire, amplify voices, build relationships and provide development opportunities
Inspiring leaders and colleagues who will lift you up and help you grow
A Community Impact program, because what you care about is a part of what makes you different.