We are hiring for this position out of our Vancouver and Toronto offices. Successful candidates who apply outside of these areas will be expected to relocate and reside in a location that is within a commutable distance.
About you:
You are a dynamic and entrepreneurial leader with experience managing and leading teams. You are a strategic thinker who enjoys formulating strategies and business plans to reach long-term objectives. You can analyze and monitor risks while ensuring that the appropriate IT and cybersecurity risk management protocols are in place and are working effectively.
As a people leader at Peoples Group, you are strength-based, engagement-focused and performance-oriented. People leaders understand themselves, their people, their subject matter, their outcomes and how their team's work contributes to the overall success of the organization.
This is a hands-on leadership role. You will own and operate core functions. You are expected to lead by doing: reviewing architecture, triaging critical incidents, getting into the tooling, and driving your team’s technical growth from the front.
About the role:
Security Operations Centre (SOC)
- Own the day-to-day operation of the SOC including 24/7 coverage model, tooling (SIEM, SOAR, EDR), alert triage workflows, and escalation playbooks
- Drive SOC maturity: detection engineering, use case development, and continuous improvement of mean time to detect and respond (MTTD/MTTR)
- Lead and participate in incident response for high-severity events
Risk & Compliance
- Own the cybersecurity risk register, risk treatment plans, and reporting cadence to senior leadership
- Ensure compliance with applicable regulatory and contractual requirements (e.g., PCI-DSS, ISO 27001) and alignment with recognized frameworks such as NIST CSF and CIS
- Coordinate with Audit, Finance, Legal, HR, and business unit leaders to align risk posture with organizational objectives
- Lead third-party and vendor risk assessments as part of procurement and ongoing oversight
Threat & Vulnerability Management (TVM)
- Lead the TVM program end-to-end: scanning cadence, CVSS-based prioritization, SLA enforcement, and remediation tracking across on-prem and cloud environments
- Integrate threat intelligence feeds into detection and prioritization workflows
- Own the penetration testing program — scoping, vendor management, and remediation follow-through
DevSecOps & Cloud Security
- Embed security into CI/CD pipelines — SAST, DAST, SCA, IaC scanning, container security, and secrets management
- Own cloud security posture management (CSPM) across the organization’s cloud environment; define and enforce cloud-native security controls and workload protection standards
- Partner with engineering and platform teams to build security as a shared practice, not a gate
- Drive developer security training and establish secure-by-default patterns across the software delivery lifecycle
Leadership & Operations
- Manage, mentor, and develop a multi-functional security team
- Own budget planning and headcount for the InfoSec function
- Regularly present security posture, risk status, and program updates to the CISO and senior management
Qualifications:
Required
- 10+ years of progressive experience in information security, with a demonstrated track record across security operations, risk, compliance, and technical security domains
- Minimum 5 years in a senior leadership role managing multi-disciplinary security teams
- Hands-on technical depth — you can review architecture, dig into tooling, triage incidents, and read a threat report critically
- Demonstrated cloud security experience: CSPM, cloud-native controls, IAM, workload protection — not just theoretical familiarity
- Experience in banking, fintech, or a regulated financial services environment is a strong advantage
- Bachelor’s degree in Computer Science, Engineering, or a related field; Master’s preferred
- Excellent written, verbal, and presentation skills, with demonstrated ability to communicate complex security concepts clearly to both technical and non-technical stakeholders across the organization.
Certifications (Highly Desirable)
- CISSP — broad security leadership and architecture depth
- CCSP or AWS Security Specialty / Azure Security Engineer — cloud security validation
- GCIH, GCIA, or GCFE — hands-on incident handling and detection
- CISM or CRISC — risk and compliance management
About us:
Peoples Group is a trusted financial services company for the innovators at the forefront of Canada’s economic future. With offices in Vancouver, Calgary, Toronto, and Montreal, we are driving change by working alongside challenger banks, fintechs, brokers, and merchants to foster a dynamic and competitive financial ecosystem.
Our culture is built on four core behaviors: Grit to Grow, Connect to Collaborate, Putting Clients First, and Owning the Outcome. We believe people do not simply choose a company to work for—they choose a company that makes a positive impact in the lives of Canadians. Above all, we value people, build meaningful relationships, focus on individual strengths, and approach our work with passion.
About the work environment:
Peoples Group offers a flexible and hybrid work environment. In this role you will work a combination of in-office and remotely from home. Typically, you'll be working regular business hours, Monday to Friday between 8:00am and 4:30pm with flexibility around start/end times.
We offer:
- A hybrid work environment, enabling you to balance your personal and professional life seamlessly.
- Competitive salaries, profit sharing, RRSP matching and benefits from day one.
- Generous paid time off to help achieve a healthy work-life balance.
- A strengths-based approach, ensuring we work together more effectively.
- A commitment to your well-being in five key areas: Financial, Physical, Social, Career, and Community.
Hiring process:
If your application is selected, you will be invited for a first interview with one of our Talent Acquisition Business Partners. Depending on the role, interviews may be conducted virtually or in-person. The hiring team will communicate any in-person requirements throughout the process.
Compensation:
The expected salary for this role is approximately $160,000.00 - $170,000.00 annually. Actual compensation may vary based on experience, skills, and qualifications.
NOTE: This job posting is for an existing vacancy. Peoples Group is an Equal Employment Opportunity employer. Please accept our utmost appreciation for your interest; however, only those applicants under consideration will be contacted.
We value and celebrate individuality while fostering an inclusive workplace for everyone. If there's any way we can support or accommodate you during the selection process, please don't hesitate to let us know.
