Our Security team is looking for a Director of Cybersecurity Strategy and Enablement!

Reporting to the VP, Chief Information Security Officer (CISO), you will be responsible to lead our cybersecurity initiatives and ensure the safeguarding of our digital assets is in alignment to the 3-year strategic roadmaps, regulatory requirements, and internal Intact business objectives.

• Work with the VP CISO and other IT executives to develop and execute a comprehensive cyber strategy that aligns with the company’s business objectives, regulatory requirements, and adapt/document changes as necessary due to the dynamic nature of information security.
• Lead a team of managers and cybersecurity professionals, fostering a culture of continuous improvement and innovation.
• Collaborate with cross-functional teams to integrate cybersecurity measures across all business operations and distribute the accountability and responsibility for execution to teams outside of your direct control.
• Fostering a culture of security awareness and accountability at all levels is crucial to the success of this role.
• Coordinate and collect responses for regulatory inquiries and performing gap analysis on emerging regulatory requirements against current IT practices, tracking to completion.
• Coordinate the collection of metrics and creation of material based on the metrics for executive briefings, risk committee meetings and board level submissions.
• Track operational and project expenses for the information security program as a whole and report on deviations and plans to ensure top line commitments are met.
• Oversee information security project and program management, ensuring shared services are deployed appropriately to address known and emerging risks.
• Oversee work intake processes for the information security team, designing workflows/intake processes that look at capacity and demand across teams holistically and ensuring visibility to the VP CISO on potential resource bottle necks based on internal and external demands.
• Stay updated with the latest trends and developments in cybersecurity and adjust the strategy accordingly.

• Bachelor’s degree in computer science or other relevant field or any combination of equivalent education and experience.
• Minimum 7 years of experience managing large technical teams.
• Proven experience in managing high-performing teams.
• Expertise in cybersecurity risk management and incident response.
• Experience with security technologies and architecture, including encryption, cloud security tools, intrusion detection, and firewalls.
• Strong leadership and strategic thinking skills.
• Excellent communication skills, both verbal and written. For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis.
• Certifications such as CISSP, CISM, or CISA are preferred.
• No Canadian work experience required however must be eligible to work in Canada.