Vice President, Enterprise Information Security

Job Description

We are seeking a Vice President, Enterprise Information Security to join our team in Toronto or Winnipeg. Reporting to the Chief Information Officer, this senior leadership role supports enterprise, solution, security, data, and infrastructure architecture domains. You will lead the planning, development, and operation of an innovative, trusted, and reliable information security program to ensure the confidentiality and integrity of systems, assets, and data of People Corp. You will also lead the security team, including staff responsible for identity and access management, risk, and security operations.

The Vice President, Enterprise Information Security will:

• Establish the information security governance structure, chair the security steering committee, and implement a hierarchical governance program.
• Develop, implement, and monitor a comprehensive enterprise information security and IT risk management program, including enhancing cybersecurity awareness training for all stakeholders.
• Create and improve an information security management framework to mitigate organizational risks during operations and transformation projects.
• Collaborate with business units to conduct risk assessments, facilitate risk management processes, and empower teams to understand and manage their risks.
• Develop, socialize, and oversee the approval and implementation of security policies, reporting progress to stakeholders and ensuring consistent application across all projects and systems.
• Coordinate with vendor management to include security requirements in contracts.
• Build external networks with industry peers, partners, vendors, and relevant parties to address cybersecurity trends and risks.
• Liaise with external agencies such as law enforcement to maintain a strong security posture.
• Align security with enterprise architecture to ensure security is integrated into design and architecture.
• Monitor emerging threats and advise stakeholders on appropriate actions.
• Lead and motivate the security team to achieve strategic and tactical goals.

Qualifications for success:

• Leadership skills to motivate teams in high-pressure environments and build skills within the team.
• Resilience to manage competing priorities and take initiative with minimal oversight.
• Strategic planning skills to break down big picture goals into manageable steps and align business and cyber risk strategies.
• Ability to analyze data to identify trends and communicate effectively with senior leadership.
• A protective mindset to understand and manage cyber threats and risks.
• Ability to influence and educate the business on cyber risk management.
• High personal integrity, confidentiality, judgment, and maturity, with a commitment to ethics, compliance, and security standards.

Ideal candidates will have:

• At least 8 years of experience in Information Security, with a strong background in Technology and Risk Management.
• Minimum 5 years in a senior management role leading security teams.
• Experience with frameworks like ISO/IEC 27001 and NIST.
• A degree in business or a technology-related field, or equivalent experience.
• Preferred certifications include CISSP, CISM, CISA, CRISC, or similar.

What’s in it for you:

• Learning opportunities with experts.
• Health, dental, and wellness benefits.
• Retirement plan with company contributions.
• Mental health support and other wellness programs.
• Support for industry designations.
• Competitive compensation.

People Corporation is committed to diversity and inclusion, providing an accessible environment where all employees and clients feel valued and supported. We aim to reflect the communities we serve and help every employee reach their potential.