Data Security Advisor - Data Strategy

Our leading financial services client is looking for a permanent resource to join their team as a Data Security Manager (Data Security Strategy Advisor). This will be a hybrid role reporting to their Toronto office.

• Develop, implement, and enhance the enterprise-wide Data Security Program.
• Educate business and IT teams on security best practices and data protection controls.
• Work cross-functionally to embed data security principles into everyday operations.
• Create and maintain data security policies and procedures, including data classification standards.
• Support assessments like Privacy Impact Assessments and Transfer Impact Assessments.
• Collaborate with Privacy, IT, and Security teams to align on sensitive data protection strategies.
• Stay informed on legal and regulatory data security requirements and ensure compliance.
• Identify and map data sources, including structured and unstructured data repositories.
• Collaborate with business units to classify data and ensure adequate controls are in place.
• Monitor classification processes and provide metrics and reporting to leadership.
• Support and deliver training on data classification and protection best practices.
• Design and implement technical and process-based data protection controls.
• Ensure protection of data at rest, in use, and in transit through security technologies.
• Oversee tools related to data loss prevention and perform periodic control reviews.
• Maintain compliance through regular assessments and tool optimization.

• Bachelor's degree in Computer Science, IT Management, or a related field (graduate degree preferred).
• Previously technical leadership experience, presenting and translating technical to non-technical stakeholders.
• 6+ years of experience in Information Security Management, particularly in data protection.
• Strategy focus and experience working and presenting to stakeholders.
• Relevant certifications such as CDPSE, CISSP, ISO27001, CISM, or CISA are preferred.
• Hands-on experience developing and maintaining security frameworks and controls, especially within financial services.

• Deep understanding of ISO 27001, NIST CSF, and data lifecycle protection standards.
• Strong communication and stakeholder engagement skills.
• Proven ability to lead complex projects and cross-functional initiatives.
• Proficiency with reporting tools, presentations, and Excel.
• MS Purview experience is an asset.

• Seniority level : Associate
• Employment type : Full-time
• Job function : Information Technology