Director, Information Security & Security Programs (Remote)

Select how often (in days) to receive an alert:

Location:

Toronto, ON, CA Burnaby, BC, CA Vancouver, BC, CA Calgary, AB, CA Edmonton, AB, CA Ottawa, ON, CA Montréal, QC, CA

Jobs by Category: Security & Automation

Job Function: Cybersecurity

Status: Full Time

Schedule: Regular

We live in and work in a fully digital world where security risk management and cyber resilience are critical. As one of Canada’s preeminent owners and operators of critical infrastructure, evolving geopolitical threats and new regulatory regimes are the new business reality. Protecting information and ensuring the resiliency of networks and services is paramount. At TELUS, we aspire to the highest standards in staying ahead of the adversary, tackling the toughest security challenges head-on with top talent and leading with our expertise in cybersecurity risk management.

The Information Security & Security Programs team is committed to providing excellence in the programs that secure our internal and customers’ data and systems. Our Secure-by-Design approach identifies cybersecurity risks up front and works with stakeholders to implement controls early in the technology lifecycle, improving our overall cybersecurity posture. We partner across TELUS to communicate regulatory obligations, contractual commitments, share best practices and extend our cybersecurity framework to newly acquired companies, third parties and other stakeholders.

What you’ll do

As the Director, Information Security & Security Programs you will:

• Inspire and empower a team of security and technology professionals, working internationally across many teams (Secure-by-Design, Governance/Risk Management/Compliance, Culture of Security, Vulnerability Assessment and Testing, Third party Security Risk and Acquisition Security) with your vision, strategy and program execution management
• Partner closely with multiple internal and external stakeholders to understand and assess their business requirements, security risks and threats, and design and deliver secure-by-design solutions
• Aggregate and communicate overall security risk, in the business context, to executive leaders
• Continuously strengthen the TELUS brand as trustworthy, reliable and innovative through strategic vision and leadership encompassing legal and regulatory obligations, contractual security obligations, voluntary security frameworks, governance, policies and programs
• Partner closely with business teams to ensure compliance with internationally recognized cybersecurity frameworks, standards (NIST, PCI, SOC2, etc) and the contractual physical, personnel and cybersecurity requirements of federal and provincial governments, and other regulated sectors.
• Assess and test TELUS and third-party networks and systems to identify and remediate security vulnerabilities, while evolving automation and re-use capabilities.
• Foster high team member engagement and collaboration by practicing our culture of embracing diverse perspectives and experiences, and supporting development
• Attract talent from a domestic and global pool of cybersecurity professionals

• Strong program management and financial management capabilities
• Expert knowledge of both security technologies and the security of technologies including generative artificial intelligence, post-quantum cryptography, blockchain, 5G and private wireless networks, cloud and network security, large scale identity and authentication systems, SaaS platforms, team member device security, Governance, Risk and Compliance (GRC) / security awareness platforms, and security data analytics / security incident and event management platforms
• Expert knowledge of the Canadian cybersecurity regulatory landscape, security in contracting and third party risk management frameworks, programs and tools
• Experience in the cybersecurity and cyber resilience of critical infrastructures
• Ability to communicate complex/technical topics, data insights, and stories that areclear and easily understood by a diverse range of audiences including executives
• 10 or more years of experience leading cross-functional security teams
• Degree in Engineering, Computer Science or related technology discipline
• Must possess or be eligible to obtain the Government of Canada Secret Level security clearance or higher

Great-to-haves

• Extensive leadership experience in a CSO/CISO or public sector cybersecurity organization
• Broad knowledge of security laws, regulations, frameworks, standards, controls and technologies across multiple domains
• Both government and private sector experience
• Master’s degree in Engineering, Computer Science, or Business Administration
• GICSP and CISSP or equivalent certification
• Fluency in English & French

Advanced knowledge of English is required because you will most of the time interact in English with external parties (clients, suppliers, candidates, external partners, etc.); interact in English with internal parties (colleagues, internal partners, stakeholders, etc.); and work with IT tools whose interface is only accessible in English as part of this position's main responsibilities given its national scope.

Salary Range: $126,000-$190,000

Performance Bonus or Sales Incentive Plan: 30%

Actual total compensation will be determined based on factors such as knowledge, skills, performance and experience.

We’re a people-focused, customer-first, purpose-driven team who works together every day to innovate and do good. We improve lives through our technology solutions and foster a culture of innovation that empowers team members to solve complex problems and create remarkable human outcomes in a digital world.

You’ll find our engaging, high-performance culture personally fulfilling, professionally challenging, and financially rewarding. We’re committed to diversity and equitable access to employment opportunities based on ability. Your unique contributions and talents will be valued and respected here. When you join our team, you’re helping us make the future friendly.

Note for Quebec candidates: if knowledge of English is required for this position, it is because the team memberwill be asked, on a regular basis, to interact in English with external or internal parties or to use English applications or software as part of their tasks.

We're passionate about driving cyber resilience and rapidly adapting to the evolving cyber threat landscape. If you've ever envisioned what the future of enterprise security looks like, visualized cutting-edge strategies to better protect emerging technologies (including AI) and enjoy driving programs that reduce cyber risk as part of a highly engaged Canadian cybersecurity team, we want you to be part of the organization that makes it happen.

We are honoured to be recognized

1.4M
Days volunteered in our communities

$1.3
Billion contributed to charitable and community organizations since 2000

15.2
Million customer connections

TELUS is proud to foster an inclusive culture that embraces diversity. We are committed to fair employment practices and all qualified applicants will receive consideration for employment.

We offer accommodation for applicants with disabilities, as required, during the recruitment process.