Senior Manager, Information Security (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Senior Manager, Information Security (Cybersecurity): Architecting the security compliance program, risk register, and governance processes with an accent on PCI DSS, SOC 2, and AI governance. Focus on driving the multi-year security roadmap, managing a high-efficiency service queue, and translating operational data into strategic insights for the Board.
Location: Must be based in Canada (Remote)
Salary: CA$160,000 - CA$200,000 per year
Company
provides an all-in-one financial toolkit for small business owners to automate invoicing, expenses, payments, and payroll.
What you will do
- Own and execute the multi-year security strategy and roadmap with strict program discipline.
- Oversee PCI DSS and SOC 2 compliance programs and manage the enterprise risk register to guide remediation.
- Lead the cross-functional AI Governance Council and define review frameworks for emerging AI use cases.
- Optimize the security service queue and turn raw ticket data into strategic insights and improved SLAs.
- Develop and present security metrics and business-framed dashboards for the Senior Leadership Team and the Board.
- Manage, coach, and build the Information Security team, including staffing plans and vendor management.
Requirements
- 8+ years of experience in information security, with a focus on compliance, GRC, or program management.
- 3+ years of direct people management experience with a track record of developing talent.
- Hands-on expertise in navigating and owning PCI DSS and SOC 2 Type II audit cycles.
- Proven ability to operate an enterprise risk register and translate risks into prioritized technical roadmaps.
- Strong project management skills to drive accountability across Engineering, IT, Product, and Legal.
- Must be based in Canada to work remotely.
Nice to have
- Experience managing AI governance frameworks and emerging technology risks.
- Experience designing incident response tabletop exercises and security awareness programs.
- Professional certifications such as CISSP, CISM, or CRISC.
- Undergraduate degree in Computer Science, Cybersecurity, Business, or a related field.
Culture & Benefits
- Comprehensive health, dental, and wellness benefits, including fertility and gender-affirming support.
- Flexible vacation plan and retirement savings/pension matching.
- Stock options for every full-time employee.
- Home office credit for remote workers to set up their workspace.
- Accelerated growth through continuous coaching, training, and structured onboarding.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →