Information Security Risk Manager
Toronto
Equitable Bank
At Equitable Bank, we specialize in providing branchless financial services that meet the unique needs of all Canadians. Our range of mortgages, savings accounts and investment options are designed to offer the right solutions to match any...Being a traditional bank just isn’t our thing. We are big believers in innovating the banking experience because we believe Canadians deserve better options, and we challenge ourselves and our teams to creatively transform what’s possible in banking. Our team is made up of inquisitive and agile minds that find smarter ways of doing things. If you’re not afraid of taking on big challenges and redefining the future, you belong at EQB. You’ll get to work with people who will encourage you to reach new heights. We like to keep things fun, ask questions and learn together. We’re proud to be a certified Great Place to Work since 2020 for Professional Development, Financial Services and Best Workplace. Our EQ Bank platform has been named #1 Bank in Canada on the Forbes World's Best Banks 2021 and 2022! We foster an inclusive environment that makes it easy for people to be themselves and bring their personalities to work. We would love to tell you more about what it’s like to work here.
Purpose of Job The Information Security Risk Manager will work closely with the technology teams and line of business teams to mitigate the risk of security attacks while enabling the business to grow the bank and serve our customers efficiently and securely.
Main Activities
- Manage end-to-end vulnerability management process and reporting.
- Normalize vulnerabilities severity.
- Establish a scoring system for assets.
- Visualize vulnerabilities statistics per portfolio and/or product.
- Design and implement meaningful dashboards and reports.
- Manage security risks for assigned portfolio to ensure that action/mitigation plans are defined and actioned in-time.
- Escalate outstanding risks as required.
- Manage and maintain scanning tools.
- Update and mature security processes.
Knowledge/Skill Requirements
- A college diploma or university degree is required. Higher accreditation (e.g. Bachelor of Computer Science) is preferred.
- At least five (5) years of information security and information risk experience.
- Experience of setting up and running scanning tools for IT infrastructure and/or applications security testing is required.
- Experience with application development
- Experience with cloud concepts
- Experience in reporting tools such as Power BI and/or Tableau is required
- Understanding of CI/CD pipeline and approaches to automate security testing is an asset
- The following certifications are preferred: CCSP, CCSK, CISM, CISSP, or CRISC.
- Understanding and experience with PCI DSS, MITRE ATT&CK, BSIMM, NIST, ISO 27K series is an asset.
- Experience working in a banking or financial services environment is an asset.
What EQ Bank offers:
- Named “Best Workplaces in Financial Services & Insurance 2021”
- An inclusive and collaborative working environment that encourages curiosity, creativity and innovation.
- An experience to work and learn from diverse industry leaders.
- A continuous improvement journey using the latest technologies.
- An opportunity for innovation, continuous learning and career progression.
- A competitive total benefit package that includes a base salary, a performance bonus, company matching programs, vacation, personal & sick days, maternity/paternity leave, medical, vision and dental benefits and much more.
What we offer [For full-time permanent roles] 💰 Competitive discretionary bonus ✨ Market leading RRSP match program🩺 Medical, dental, vision, life, and disability benefits📝 Employee Share Purchase Plan👶🏽 Maternity/Parental top-up while you care for your little one🏝 Generous vacation policy, personal days and even a moving day 🖥 Virtual events to connect with your fellow colleagues🎓 Annual professional development allowance and a comprehensive Career Development program💛 A fulfilling opportunity to join one of the top FinTechs and help create a new kind of banking experience
Equitable Bank is deeply committed to inclusion. Our organization is stronger and our employees thrive when we honour and celebrate everyone’s diverse experiences and perspectives. In tandem with that commitment, we support and encourage our staff to grow not just in their career path, but personally as well.
We commit to providing a barrier-free recruitment process and work environment for all applicants. Please let us know of any accommodations needed so that you can bring your best self to the application process and beyond. All candidates considered for hire must successfully pass a criminal background check and credit check to qualify for hire. While we appreciate your interest in applying, an Equitable recruiter will only contact leading candidates whose skills and qualifications closely match the requirements of the position. We can’t wait to get to know you!
Tags: Agile Banking BSIMM CCSP CI/CD CISM CISSP Cloud Computer Science CRISC ISO 27000 IT infrastructure MITRE ATT&CK NIST PCI DSS Vulnerabilities Vulnerability management
Perks/benefits: Career development Competitive pay Equity Health care Insurance Medical leave Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs