Cyber Security Risk Director

Location:
Toronto, ON, Hybrid (Flexible)

Language:
Excellent written and verbal communication skills in English are required.

Background Check Requirement:
Must be legally authorized to work in Canada.

About the Opportunity
Are you passionate about strengthening cyber resilience and influencing enterprise risk strategy? We are seeking an experienced Cyber Security Risk Director to lead the evolution of a mature cyber risk oversight program within a highly regulated financial services environment. This is an opportunity to shape governance, influence executive decision-making, and help safeguard critical business operations against an evolving threat landscape.

Working alongside senior leaders across technology, information security, enterprise risk, and business functions, you will play a key role in enhancing cyber risk practices, strengthening organizational resilience, and fostering a culture of proactive risk management.

What’s In It for You
• Join an organization that values innovation, collaboration, and continuous improvement.
• Partner with experienced leaders on high-impact strategic initiatives.
• Influence enterprise-wide cyber security and risk management practices.
• Grow your leadership profile within a supportive, people-first culture that encourages professional development and knowledge sharing.

Your Responsibilities
• You'll lead the development and ongoing enhancement of the organization's cyber risk oversight program and supporting governance framework.
• You'll provide independent oversight and challenge of first line cyber risk assessments, controls, mitigation plans, and risk acceptance activities.
• You'll advise senior stakeholders on emerging cyber risks, regulatory developments, and effective remediation strategies.
• You'll oversee technical risk reviews for technology and business initiatives with cyber security implications.
• You'll contribute second line leadership during significant cyber incidents and cyber-related privacy events.
• You'll prepare executive reporting and present cyber risk insights to senior leadership and governance committees.
• You'll build and maintain relationships with internal stakeholders and external cyber security experts to strengthen organizational resilience.

Skills and Qualifications
• 7+ years of progressive cyber security risk experience, including 5+ years in a leadership or management capacity.
• Experience designing and implementing cyber risk oversight programs within financial services, ideally in a second or third line of defense environment.
• Strong knowledge of cyber risk management frameworks including NIST CSF and ISO 27001, with COBIT experience considered an asset.
• Professional certifications such as CISSP, CISM, CISA, CRISC, CCSP, or equivalent.
• Strong understanding of cyber threats, regulatory requirements, systems architecture, and operational risk management.
• Demonstrated ability to influence senior stakeholders, lead cross-functional initiatives, and communicate complex technical risks clearly.
• Excellent analytical, organizational, project management, and relationship-building skills.

Note from the Hiring Manager
"We're looking for someone who brings both strategic thinking and practical experience in cyber risk. If you enjoy partnering with leaders, challenging the status quo, and helping organizations stay ahead of emerging threats, you'll find meaningful opportunities to make an impact in this role."

Why Partner with Altis
If you’ve never worked with a staffing agency before, we make it easy. We work with top employers across Canada who have great jobs to fill, each vetted and verified by our team. When you apply for a job with Altis, we get to know you as a candidate and learn what your strengths are. Then, if you’re a solid match, we handle all the logistics, advocating for you as a candidate for the role, providing access to coaching and connecting you directly with the hiring manager. And rest assured, all our services are free of cost for candidates.

We appreciate the time and effort all applicants invest in their submissions. Please note that only candidates shortlisted for this role will be contacted directly. However, your profile will remain under consideration for future opportunities that align with your experience and career goals. All qualified applicants will receive fair consideration for employment. We welcome individuals of all backgrounds, experiences, and identities including those who identify as women, members of racialized groups, Indigenous Peoples, persons with disabilities, and 2SLGBTQIA+ communities. If you require an accommodation, please review our accessibility policy and reach out to our accessibility officer with any questions. Our human recruiters review all applications and always make the final hiring decision. On occasion, we also use AI-assisted tools to help review applications.