... leads cyber defense, regulatory and standards compliance, risk management, privacy alignment ... vendor audits, Payment Card Industry compliance, and business resilience, ensuring that security ...
... leads cyber defense, regulatory and standards compliance, risk management, privacy alignment ... vendor audits, Payment Card Industry compliance, and business resilience, ensuring that security ...
Our Cyber Risk and Data Protection team serves the cybersecurity and data protection related needs ... Managing client work and drive client communications with limited oversight from RSM Senior ...
Our Cyber Risk and Data Protection team serves the cybersecurity and data protection related needs ... Managing client work and drive client communications with limited oversight from RSM Senior ...
The Managing Director, Enterprise Risk plays a senior leadership role within the Enterprise Risk ... Lead independent oversight and challenge of technology, cyber, data, and operational risks.
The Managing Director, Enterprise Risk plays a senior leadership role within the Enterprise Risk ... Lead independent oversight and challenge of technology, cyber, data, and operational risks.
... Cyber Risks. Our vision is to build and deliver the best IT and risk practices, capabilities and solutions to effectively meet the needs of RBC's internal and external stakeholders. The Risk ...
... Cyber Risks. Our vision is to build and deliver the best IT and risk practices, capabilities and solutions to effectively meet the needs of RBC's internal and external stakeholders. The Risk ...
... Party Risk Management, Business Technology teams, Enterprise Delivery, Risk Management, and Quality Assurance for both local and enterprise organizational structures. Cyber Resilience Project ...
... Party Risk Management, Business Technology teams, Enterprise Delivery, Risk Management, and Quality Assurance for both local and enterprise organizational structures. Cyber Resilience Project ...
Risk Management & Compliance Own the regional cyber risk register and oversee risk identification, assessment, treatment, and acceptance. Lead regional security risk assessments for systems, products ...
Risk Management & Compliance Own the regional cyber risk register and oversee risk identification, assessment, treatment, and acceptance. Lead regional security risk assessments for systems, products ...
Collaborate with global shared service teams, cyber risk specialists, and other enabling functions ... management activities. * Help promote a culture of controls compliance within Global enabling ...
Collaborate with global shared service teams, cyber risk specialists, and other enabling functions ... management activities. * Help promote a culture of controls compliance within Global enabling ...
Lead the Cyber Risk Insights, Cyber Data Lake, and Cybersecurity Metrics & Analytics teams, while ... Build and lead a distributed analytics organization (managers and specialists); set strategy and ...
Lead the Cyber Risk Insights, Cyber Data Lake, and Cybersecurity Metrics & Analytics teams, while ... Build and lead a distributed analytics organization (managers and specialists); set strategy and ...
Translate complex data into actionable fraud and cyber risk insights for business stakeholders ... Experience in fraud analytics, cybersecurity, or risk management environments. * Exposure to high ...
Translate complex data into actionable fraud and cyber risk insights for business stakeholders ... Experience in fraud analytics, cybersecurity, or risk management environments. * Exposure to high ...
The Manager, Technology RCSA supports the execution of the Technology Risk & Control Self ... Foundational understanding of technology and cyber risks, strong analytical skills, and experience ...
The Manager, Technology RCSA supports the execution of the Technology Risk & Control Self ... Foundational understanding of technology and cyber risks, strong analytical skills, and experience ...
Identity & Access Management is foundational to RBC's cyber risk strategy and secure growth in an increasingly complex threat landscape. Regulatory requirements, evolving cyber threats, and the need ...
Identity & Access Management is foundational to RBC's cyber risk strategy and secure growth in an increasingly complex threat landscape. Regulatory requirements, evolving cyber threats, and the need ...
Manager, Operational Resilience - Technology and Data Resilience
Oakville, ON · Hybrid
CA$110K - CA$140K/yr
Strong understanding of Canadian regulatory expectations for operational resilience, including OSFI E-21 and related technology/cyber risk management expectations. * Strong technology background ...
Manager, Operational Resilience - Technology and Data Resilience
Oakville, ON · Hybrid
CA$110K - CA$140K/yr
Strong understanding of Canadian regulatory expectations for operational resilience, including OSFI E-21 and related technology/cyber risk management expectations. * Strong technology background ...
You demonstrate experience in Cyber, Third party risk assessment, GRC, Infosec and AI, You understand their key businesses and processes. Extensive knowledge of risk management, audit & regulatory ...
You demonstrate experience in Cyber, Third party risk assessment, GRC, Infosec and AI, You understand their key businesses and processes. Extensive knowledge of risk management, audit & regulatory ...
You demonstrate experience in Cyber, Third party risk assessment, GRC, Infosec and AI, You understand their key businesses and processes. Extensive knowledge of risk management, audit & regulatory ...
You demonstrate experience in Cyber, Third party risk assessment, GRC, Infosec and AI, You understand their key businesses and processes. Extensive knowledge of risk management, audit & regulatory ...
... cyber risk is understood and communicated. About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and ...
... cyber risk is understood and communicated. About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and ...
... a Manager level to join our team! As a member of KPMG Canada's cross-functional Cyber team, you ... risk/threat the client is facing; * Provide recommendations and advise on steps to mitigate the ...
... a Manager level to join our team! As a member of KPMG Canada's cross-functional Cyber team, you ... risk/threat the client is facing; * Provide recommendations and advise on steps to mitigate the ...
The successful candidate will work with the executive team to develop and evolve a range of tools and consulting services that are tailored to meet the Cyber and Management risk needs of our clients.
The successful candidate will work with the executive team to develop and evolve a range of tools and consulting services that are tailored to meet the Cyber and Management risk needs of our clients.
Sr. Systems Engineer
Toronto, ON · Hybrid
Deliver high-impact technical demonstrations and executive-level presentations focused on business value and cyber risk reduction * Design, manage, and execute proof-of-concepts (POCs) aligned to ...
Sr. Systems Engineer
Toronto, ON · Hybrid
Deliver high-impact technical demonstrations and executive-level presentations focused on business value and cyber risk reduction * Design, manage, and execute proof-of-concepts (POCs) aligned to ...
Vendor and Contract Management: - Owns primary commercial and operational relationships with ... cyber risk, data protection, business continuity, and disaster recovery - Accountable for ...
Vendor and Contract Management: - Owns primary commercial and operational relationships with ... cyber risk, data protection, business continuity, and disaster recovery - Accountable for ...
The successful candidate will work with the executive team to develop and evolve a range of tools and consulting services that are tailored to meet the Cyber and Management risk needs of our clients.
Quick apply
The successful candidate will work with the executive team to develop and evolve a range of tools and consulting services that are tailored to meet the Cyber and Management risk needs of our clients.
Cyber Risk Manager information
How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?
A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.
What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?
| Aspect | Cyber Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability testing |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security firms, corporate environments |
The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.
What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?
To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.
Can you make $500,000 a year in cyber security?
Cyber Risk Managers and senior cybersecurity professionals can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles such as Chief Information Security Officer (CISO). High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management. However, such compensation levels are typically reached after many years of experience and proven expertise in the field.
Is CISO a high paying job?
A Chief Information Security Officer (CISO) is typically a high-paying executive role in cybersecurity, with salaries often exceeding six figures depending on the organization size and industry. CISOs usually have extensive experience, leadership skills, and certifications like CISSP or CISM, which contribute to their compensation. The role involves strategic oversight of an organization's security posture and risk management.
What does a cyber risk manager do?
A cyber risk manager assesses and mitigates cybersecurity threats to an organization’s information systems. They identify vulnerabilities, develop risk management strategies, and implement security controls, often using tools like risk assessment frameworks and security software. The role requires strong analytical skills and relevant certifications such as CISSP or CISM.
What is the 80 20 rule in cyber security?
The 80/20 rule in cybersecurity suggests that approximately 80% of security issues are caused by 20% of vulnerabilities or threats. Cyber Risk Managers focus on identifying and mitigating these critical vulnerabilities to improve overall security posture efficiently.
What are popular job titles related to Cyber Risk Manager jobs in Toronto, ON? For Cyber Risk Manager jobs in Toronto, ON, the most frequently searched job titles are:
What job categories do people searching Cyber Risk Manager jobs in Toronto, ON look for? The top searched job categories for Cyber Risk Manager jobs in Toronto, ON are:
Full-time
Medical, Dental
Posted 29 days ago
Job description
Some of what you will do:
The Senior Director, Cybersecurity & Risk Management is responsible for designing, governing, and executing the enterprise-wide security and risk strategy that protects company assets, data, customers, and brand across business-to-business and business-to-customer lines of business. Operating as a senior leader within the Office of the Chief Information Officer, this role serves as the most senior security position in the enterprise, this role leads cyber defense, regulatory and standards compliance, risk management, privacy alignment, vendor audits, Payment Card Industry compliance, and business resilience, ensuring that security practices enable growth, support innovation, and meet contractual, regulatory, and customer expectations. The Senior Director partners closely with Technology, Legal/Privacy, Product, and Go-to-Market teams to embed "security-by-design" and "risk-aware" decision-making across the organization.
Specifically, You Will:
- Define and execute a multi-year cybersecurity and risk strategy aligned with business goals and regulatory requirements.
- Lead the enterprise risk program, including identification, assessment, and continuous monitoring of technology risks.
- Manage third-party/vendor risk through due diligence, contractual requirements, and ongoing oversight.
- Oversee audits, certifications, and compliance with regulatory obligations, including Payment Card Industry
- Direct security operations for threat monitoring, detection, and response.
- Coordinate incident response plans and act as executive lead during major events.
- Advance Development, Security, and Operations practices and enforce secure software development life cycle requirements.
- Deliver on cyber security and risk plans by actively driving initiatives with urgency and accountability; this role is more than building policies and frameworks
Some of what you need:
- Bachelor's degree in Computer Science, Information Security, Engineering, or related field; Master's degree preferred in Business Administration, Information Security
- Relevant certifications strongly preferred, such as Certified Information Systems Security Professional, Certified Information Security Manager, Certified Chief Information Security Officer, Certified Information Systems Auditor, Risk and Information Systems Control, or equivalent
- 10-12 years of progressive experience in cybersecurity, technology risk, or related fields; 5-7 years leading multi-disciplinary security teams.
- Proven track record establishing/maturing security programs and achieving external certifications/attestations.
- Experience supporting enterprise business-to-business consumer/ business-to-customer environments.
- Expertise in relevant cyber security standards (National Institute of Standard Technology) and applicable Canadian and Retail regulations (such as Payment Card Industry Data Security Standard, Personal Information Protection and Electronic Documents, Service Organization Control 2, International Organization for Standardization standards, Privacy legislation)
- Experience with Microsoft Active Directory and Identity and Access Management is a strong asset.
- Previously demonstrated experience in leading cybersecurity and risk management.
Physical demands/working conditions:
Office environment - Hybrid, 4 days a week in the Richmond Hill office, Monday to Thursday
Some of what you will get:
- Associate discount
- Health and Dental benefits
- RRSP/DPSP
- Performance bonuses
- Learning & Development programs
- And more...
We value transparency in our hiring processes. Please note, artificial intelligence may be used in certain stages to screen, assess, or select applicants, however, a human reviewer makes all final decisions. This posting is for an existing vacancy.
About the Team At Staples Canada we are dynamic, inspiring partners to our customers and the communities in which we live. As The Working and Learning Company, we inspire people to work smarter, learn more and grow every day. We're looking for curious, approachable, and passionate individuals who love finding solutions. If that's you, let's work, learn, and grow together.
Staples Canada is continuously working towards creating an inclusive and diverse work environment. We welcome, value and thrive on perspectives and contributions from backgrounds that vary by race, gender, sexual orientation, gender identity or expression, lifestyle, age, educational background, national origin, religion or physical ability. If you have a disability or special need that requires accommodation, please let us know.