Director of Information and Cyber Security

Financeit is a point-of-sale financing provider serving some of the largest home improvement and retail organizations in Canada.

Our platform helps businesses of any size close more sales by offering customers affordable monthly payment options for their next big home improvement, vehicle, or retail purchase. Financeit is small enough that you can make an impact within the company and large enough to make an impact in the market.

Financeit is a company where collaboration, inclusivity, fairness, and respect aren’t just ideas that get talked about, but are part of who we are. If such a workplace intrigues you, we hope you’ll join us.

About the role:

The Director of Information and Cyber Security will provide specialized expertise and guidance on assessing risks, monitoring risks, identifying potential gaps, and providing security solutions to mitigate risks and protect Financeit in Canada and in the US. The position actively interacts with business management, Legal and Compliance, Operations, Information Technology, other control functions, and regulators.

This position will report to the Chief Compliance Officer.

Work status: Hybrid

What you’ll do:

• Implementing and monitoring a comprehensive enterprise-wide information security risk management program
• Establishing annual and long-range security and compliance goals.
• Assessing the adequacy of, adherence to, and the effectiveness of Financeit’s information and data security framework
• Preparing monthly reporting to Senior Management, and quarterly updates to the Board of Directors on key items around privacy and security
• Conducting risk and control design assessments, required controls definition, control procedure appropriateness, vulnerability assessments and any other relevant areas
• Assessing the effectiveness of controls related to the availability, integrity and confidentiality of customer, business partner, employee, and business information
• Strategic thinking to assess developing security threats and help Senior Management and the Board identify and effectively manage potential security problems that might arise from Financeit’s current or proposed activities
• Understanding and interacting with the business to ensure the consistent application of policies and standards across all technology projects, systems, and services
• Monitoring remediation of information security, data security, and cyber security threats and assisting the Chief Compliance Officer reporting those threats to Senior Management and the Board
• Coordinating Financeit’s information and data security audit programs, including SOC2 Type 2 and PCI
• Keeping up to date on industry trends and continually evolving methods cybercriminals use to gain systems access
• Staying abreast of information, privacy, and cyber security issues and regulatory changes across Canada and the US
• Performing other duties as required by the Chief Compliance Officer

Requirements

What you’ll need to succeed:

• At least 6 years of deep working knowledge of IT technologies, security knowledge, security threats and information security risk management
• ISC2 SCCP Security Certification or other equivalent security credentials
• Good understanding of financial services/lending
• Ability to articulate IT security and technical issues in a clear and actionable manner to non-technical leadership
• Strong understanding of organization and technology controls, security, and risk issues
• Demonstrated ability to participate in complex projects
• Experience with the audit process and performing risk-based audits
• Interest and focus on the rapidly changing privacy regulatory landscape
• Strong knowledge in identity management, authentication, encryption, and PCI compliance

Benefits

Winner of Canada’s Most Admired Corporate Culture in 2018 and 2021, we offer more than just the basics. Take advantage of:

• An award-winning culture with a collaborative & inclusive team
• Competitive pay and performance based bonus
• Committed to flexible work arrangements, offering fully remote and hybrid workplace options, as well as a hybrid working allowance
• Comprehensive medical, dental and vision coverage + Lifestyle Account.
• RRSP Matching and Parental Leave Top Up Program
• Weekly virtual yoga classes, meditation & workout sessions
• Virtual events such as Lunch & Learns, company parties, fun team activities and charity initiatives
• Career learning and development programs

Next Steps:

For the women in tech interested in applying, we encourage you to do so! Even if you don’t match all of the requirements, we still we’d love to hear from you!

Financeit is committed to creating an inclusive employee experience for all FIT team members. We firmly believe that our work isn't at its best unless all of our employees, regardless of race, gender, religion, sexual orientation, age, or disability have equal opportunities to do great work.