Senior Director, Cybersecurity

National Consultants Professionals Ltd • Full-time • Toronto, ON, CA • C$ 190k - C$ 250k / year • 11h ago

Senior Director, Cybersecurity

Together, we’re a team of progressive thinkers and agile doers operating within a fast-paced culture of collaboration and respect. We believe in bringing smart and capable people together to create, solve and grow with a clear shared vision and values of integrity, inclusivity, ingenuity, and impact.

Our culture is intentionally welcoming and purposefully rooted in equity, diversity, inclusion, and reconciliation (EDIR). We believe diverse teams, perspectives, and lived experiences contribute to better decisions and a better workplace.

THE ROLE

We are seeking a motivated Cybersecurity leader with solid cybersecurity experience and acumen and a proven background of driving the adoption of a robust and scalable strategy for security. The ideal candidate will have the ability to “roll up the sleeves” to get the job done and is known as a great communicator and team player.

Reporting directly to the Managing Director, Data & Technology, the Senior Director, Cybersecurity will be responsible for establishing, implementing, and overseeing a comprehensive cybersecurity program designed to protect the organization's data and systems from evolving threats. This includes conducting cybersecurity gap analysis, prioritizing additional controls, and defining a roadmap for continuous improvement of the organization’s security posture. The successful candidate will ensure the organization maintains a resilient operational environment by proactively identifying, assessing, and mitigating risks.

This is a fantastic opportunity for an experienced IT professional to join a team of high-performing individuals and make a great impact in a scale up organization.

Hybrid Work Model which allows staff the flexibility to work remotely with the opportunity to work in person at the office ~2 days a week. Our office is located in downtown Toronto.

KEY RESPONSIBILITIES:

The Senior Director, Cybersecurity will be responsible for a variety of duties, including but not limited to the following:

Lead and execute the evolution of the cybersecurity strategy to align with UPP's strategic vision and risk management framework, ensuring it adapts to the changing security landscape.
Advise senior management on cybersecurity matters and provide regular reports on the organization’s cybersecurity posture, performance and threat landscape.
Develop and execute the annual cybersecurity program, leveraging strategic vendor partnerships to optimize resource allocation and deliver on key security objectives.
Oversee the design, implementation, and maintenance of information security policies, standards, and procedures.
Set and enforce cybersecurity targets and objectives. Regularly review performance against these targets, identify gaps, and implement corrective actions to ensure goals are met.
Conduct regular risk assessments and vulnerability assessments using leading industry frameworks and strategies to identify and mitigate potential threats.
Elevate incident response planning and execution, ensuring timely and effective response to security events.
Oversee and optimize UPP SOC capabilities with emphasis on prevention to meet UPP's dynamic cybersecurity needs and the evolving threat landscape.
Architect and implement a strong security awareness culture within the organization through training and education.
Develop and mentor a high-performing cybersecurity team.
Collaborate with Technology teams, UPP business teams and vendors to ensure security risks are mitigated and security is integrated into all business processes.
Partner and collaborate with UPP Enterprise Risk and technology risk teams to assess, quantify and monitor cybersecurity risks within the overall risk management framework.
Ensure compliance with relevant UPP data protection and privacy regulations.
Represent UPP in industry forums and events to enhance the organization's cybersecurity reputation.
Build and maintain strong partnerships within the cyber community to share and learn leading practices and stay informed about emerging threats.

QUALIFICATIONS & EXPERIENCE:

Minimum 10 years of senior level cybersecurity experience and a proven track record as a CISO or equivalent role in a similar-sized organization.
Bachelor’s degree in Information Technology, Computer Science, Information Systems, or a related field, or equivalent work experience.
Deep understanding of information security frameworks and standards (e.g., NIST, ISO 27001, PIPEDA, PHIPA).
Strong knowledge of cybersecurity technologies, including network security, endpoint protection, data loss prevention, and identity and access management.
Excellent leadership, communication, and interpersonal skills.
Proven ability to build strong relationships with stakeholders at all levels of the organization.
Proven track record in managing and optimizing vendor relationships within a cybersecurity program, including performance measurement and KPI development.
Strong analytical and problem-solving skills.
Relevant industry certifications (e.g., CISSP, CISM, CISA) preferred.
Ability to build and maintain strong relationships with industry peers and partners.
Experience with security controls for workloads hosted on Google Cloud Platform (GCP) and MS 365/Azure cloud platforms

ATTRIBUTES:

Exceptional communication skills, with an emphasis on the ability to discuss technical issues with both technical and non-technical stakeholders.
Strong leadership and decision-making skills to inspire confidence and respect while motivating team members in a creative and effective manner.
Excellent problem-solving skills with a strategic mindset, capable of identifying and managing complex issues proactively and comprehensively.
Ability to foster a collaborative environment and work effectively with cross-functional teams to achieve cybersecurity objectives and organizational goals.
High level of adaptability and flexibility to navigate the changing landscape of cybersecurity threats and technologies.
High emotional intelligence to manage stress effectively, resolve conflicts, and improve team morale. Self-motivated with a hands-on attitude
Ability to effectively identify emerging technologies, trends, threats, standards, and products that have a strong potential to improve the organization’s security posture

Grow every day. You’ll have the opportunity to work on unique, once-in-a-career projects that maximize your skill set and probably teach you some new ones—at any stage in your career.

Prioritize wellness. Ultimately, it’s about ensuring our people are cared for in the ways that matter to them. Check out some highlights of our inclusive employee-focused benefits program, including: