Why FirstOntario?

• Competitive compensation packages
• Top-tier health and wellness benefits, including comprehensive benefits packages, a yearly health spending account and personal spending account
• Enhanced mental health benefits through SunLife and TELUS Health
• Exclusive banking benefits
• Up to $1000 per year towards professional development
• Pension Plan
• Flex-work environment
• Company-wide Employee Volunteer program (Blue Wave Program)
• Employee and Family Assistance Program

Job Overview

TheVP, Chief Information Security Officeris a senior executive position responsible for defining and managing the enterprise-wide information security program, ensuring the confidentiality, integrity, and availability of all information assets, and maintaining strict regulatory compliance.

Role

The VP CISO acts as a strategic partner to the business, translating complex technical risks into business terms for senior management and the Board of Directors.

-Strategic Leadership and Program Management: Develop, implement, and monitor a comprehensive information security strategy and roadmap aligned with business objectives. This includes establishing an information security management framework based on the ISO27001 industry standards. -Risk Management: Identify, evaluate, and report on information security risks, developing strategies and controls to mitigate them effectively. This involves managing the risk assessment process and defining acceptable levels of risk in collaboration with stakeholders. -Governance and Compliance: Ensure compliance with all applicable laws, regulations, and industry standards specific to the financial sector (e.g., FSRA, PCI, etc.). The CISO serves as the primary liaison for government security regulatory agencies and external auditors. -Security Operations and Incident Response: Oversee the design, implementation, and management of security controls, technologies (e.g., SIEM, IDS/IPS, DLP, encryption), and processes. The CISO leads the incident response program, coordinating efforts to detect, respond to, and recover from security incidents or breaches and performing forensic investigations when necessary. -People Management and Awareness: Build, develop, and mentor a high-performing cybersecurity team. The role also involves creating and managing security awareness and training programs for all employees to foster a "culture of security". -Vendor and Third-Party Risk Management: Ensure the security practices of third-party vendors and service providers align with organizational standards and mitigate supply chain vulnerabilities. -Budgeting and Financial Stewardship: Develop, administer, and manage the information security budget, ensuring effective and efficient allocation of financial resources to address security objectives. -Other duties as assigned.

Required Skills

• A Bachelor's or Master's degree in Information Systems Management, Computer Science, or a related field.
• A minimum of 10 years of progressive experience in information security, with several years in a senior leadership or management role. Experience within the financial services industry is preferred.
• Must possess at least one industry-recognized certifications such as CISSP, CISM, CISA, or CRISC.
• Exceptional leadership, communication, and interpersonal skills, with the ability to influence stakeholders at all levels, from technical teams to the Board of Directors.
• Strong analytical and problem-solving abilities to identify risks and make sound, risk-based decisions under pressure.
• Deep understanding of security architecture, network security, vulnerability management, and cloud security in modern environments.
• Knowledge of current legal and regulatory landscape related to data privacy and protection

This position is hybrid in Stoney Creek, ON.

This posting is for an existing vacancy.

Salary Range: $169,238 to $211,548

Compensation for this role reflects a combination of skills, experience, and internal equity. Those whose experience more closely aligns the role's requirements may be placed higher within the salary range. You will learn more about FirstOntario Credit Union's total rewards package during the interview process.

Our inclusive work environment welcomes diversity and supports accessibility. If you require accommodation at any time during the recruitment process, please let us know.