Head of Technology - Risk and Governance

Head of Technology - Risk and Governance

Waterloo, ON, Canada Req #2370 Tuesday, July 16, 2024

At Equitable, we realize that your work life is not just about performing a job; it's about being part of a workplace that helps you grow and reach your full potential. Within our friendly and collaborative work environment, we recognize that the key to our growth and success is a dedicated, motivated, and client-responsive staff. Join Equitable today.

Position Title : Head of Technology - Risk and Governance
Reports To : Executive Vice-President, Chief Information Officer

Work Arrangements : This is a hybrid role. You will work in our office in Waterloo, ON, a minimum of two (2) consecutive days every other week, plus one (1) additional day per month. You are welcome to work more than the minimum requirement, and some roles may require more in-office presence.

The Opportunity : Equitable is growing! We are looking for a Head of Technology - Risk and Governance to join our IT team!

The Head of Technology - Risk and Governance is an enterprise-wide technology leadership position responsible for information security, technology risk, and governance strategy and implementation across the organization.

Now is an exciting time to join one of the Waterloo Area's and Southwestern Ontario's Top Employers for 2024!

What you will be doing :

• Provide leadership and mentorship to teams responsible for information security, risk, and governance.
• Lead strategic initiatives in information security as part of digital modernization.
• Ensure robust information security controls are in place to safeguard enterprise assets and data platforms.
• Manage information risk by identifying threats and vulnerabilities and developing mitigation strategies.
• Lead business continuity and crisis management planning across the organization.
• Institutionalize governance for software development methodologies within the technology function.
• Oversee technology risk management, including cybersecurity, technology currency, debt, and execution.
• Manage information security incidents, ensuring swift and effective remediation.
• Provide clear risk mitigation recommendations based on synthesized information.
• Collaborate across teams to ensure a cohesive approach to information security.
• Inspire support and teamwork toward achieving security goals.
• Monitor and respond to cyber threats proactively.
• Stay updated on emerging threats and industry best practices.
• Report on the effectiveness of risk management efforts.
• Understand legal and ethical implications of security decisions.
• Promote a culture of collaboration, innovation, and agility.
• Develop and implement risk mitigation strategies to protect organizational assets.

What you will bring :

• Certifications: CISSP, CISM, CISA, CEH.
• Deep understanding of information security principles, technologies, and best practices.
• Experience in building risk frameworks and management plans.
• Ability to institutionalize governance for software development methodologies.
• Proficiency in creating policies and guidelines in collaboration with various functions.
• Knowledge of standards like ISO 27001, NIST, and emerging security trends.
• Skill in assessing and managing security risks, vulnerabilities, and impacts.
• Understanding of compliance and data protection laws (e.g., PIPEDA, Quebec's Act, OSFI Guidelines).
• Strong analytical, critical thinking, and decision-making skills.
• Experience with third-party vendor security assessments.
• Effective problem-solving, adaptability, and collaborative mindset.
• Ability to lead through crises and unexpected events.
• Proficiency in stakeholder engagement and communication.
• Skill in developing risk mitigation plans aligned with organizational objectives.
• Leadership skills including change management, mentorship, and motivation.
• Excellent strategic thinking and communication skills.
• Proactive in risk identification and mitigation.

What's in it for you :

• Work-life balance and employee wellness focus.
• Bonuses, vacation, and comprehensive benefits.
• Paid volunteer days and pension plan with employer matching.
• Supportive resource groups and tuition assistance.
• Onsite cafeteria and employee discounts.
• Company events promoting collaboration and culture.

As part of the recruitment process, you will be required to :

• Provide two professional references (including at least one supervisor).
• Undergo a criminal background check.
• Verify educational credentials.

We encourage you to explore our organization to learn more about Equitable.