1

Cyber Security Risk Management Jobs in Toronto, ON

We are seeking a Senior Cyber Security Risk Analyst to join our Toronto client's team. In this ... Oversee and manage the cyber risk reporting queue, ensuring the delivery of high-quality, executive ...

... risk management, governance, security architecture oversight, and regulatory compliance while ... QuadReal's cybersecurity capabilities and operational discipline.The role is focused on ...

... risk management, governance, security architecture oversight, and regulatory compliance while ... Leads the ongoing evolution of QuadReal's cybersecurity strategy, operating model, roadmap, and ...

Serve as a trusted advisor to senior client stakeholders (CISO, CRO, CIO) on cybersecurity strategy, governance, risk management, and regulatory expectations. * Lead complex consulting engagements ...

next page

Showing results 1-20

Cyber Security Risk Management information

See Toronto, ON salary details

$26.7K

$112.6K

$163.2K

How much do cyber security risk management jobs pay per year?

As of Jul 15, 2026, the average yearly pay for cyber security risk management in Toronto, ON is $112,640.00, according to ZipRecruiter salary data. Most workers in this role earn between $93,048.00 and $134,084.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Cyber Security Risk Management professional, and why are they important?

To thrive in Cyber Security Risk Management, you need a solid understanding of risk assessment methodologies, information security frameworks (such as ISO 27001 or NIST), and often a relevant degree or certification like CISSP or CISM. Familiarity with security tools, vulnerability assessment platforms, and risk management software is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying threats and conveying risk to stakeholders. These skills ensure that organizations can proactively manage and mitigate cyber threats, safeguarding critical assets and maintaining compliance.

What is cyber security risk management?

Cyber security risk management is the process of identifying, assessing, and prioritizing risks to an organization's information systems and data. It involves evaluating potential threats and vulnerabilities, determining the likelihood and impact of these risks, and implementing measures to mitigate or manage them. Effective risk management helps organizations protect sensitive data, ensure regulatory compliance, and minimize the impact of cyber attacks. This process is ongoing and adapts to new threats and changes in technology.

What is the difference between Cyber Security Risk Management vs Cyber Security Analyst?

AspectCyber Security Risk ManagementCyber Security Analyst
CertificationsCompTIA Security+, CISSP, CISMCompTIA Security+, CEH, CISSP (preferred)
Work EnvironmentPolicy development, risk assessment, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageOrganizations focusing on risk mitigation and complianceOrganizations implementing and maintaining security measures

Cyber Security Risk Management professionals focus on identifying, assessing, and mitigating security risks at an organizational level, often involved in policy and strategy. Cyber Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require similar certifications and work within the same industry, their core responsibilities differ: risk managers develop strategies, whereas analysts execute security measures and respond to threats.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks in a dynamic environment.

What are some typical challenges faced by professionals in Cyber Security Risk Management, and how can they be addressed?

Professionals in Cyber Security Risk Management often encounter challenges such as staying updated with rapidly evolving threats, balancing security needs with business objectives, and ensuring compliance with various regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and the implementation of robust risk assessment frameworks. Collaboration with IT, legal, and business teams is essential to develop practical security policies that protect assets without hindering operations.

Can you make $500,000 a year in cyber security?

Cyber security risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.

Can I make $200,000 a year in cyber security?

Cyber Security Risk Management professionals can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in high-demand sectors or leadership positions. Salaries vary based on location, company size, and individual expertise, but high-level cybersecurity roles often reach or exceed this income level.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating potential threats to an organization’s information systems. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM, and offers strong job growth and demand across various industries.
What are popular job titles related to Cyber Security Risk Management jobs in Toronto, ON? For Cyber Security Risk Management jobs in Toronto, ON, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Management jobs in Toronto, ON look for? The top searched job categories for Cyber Security Risk Management jobs in Toronto, ON are:
What cities near Toronto, ON are hiring for Cyber Security Risk Management jobs? Cities near Toronto, ON with the most Cyber Security Risk Management job openings:

Cyber Security Risk Director

Fidelity International

Toronto, ON • Hybrid

Full-time

Re-posted 5 days ago


Job description

Job Description

Current work authorization for Canada is required for all openings

This is a regular, full-time role

You will be working on a flexible hybrid schedule as part of Fidelity's dynamic working arrangement

The work location for this role is 483 Bay Street in Toronto until approximately late 2026 when the work location will change to the new Mississauga office at 3 Robert Speck Parkway.

Who We Are

At Fidelity, we've been helping Canadian investors build better financial futures for over 35 years. We offer individuals and institutions a range of trusted investment portfolios and services - and we're constantly seeking to find new and better ways to help our clients. As a privately owned company, we boldly embrace innovation in all areas as we continue to grow our business into the future.

Working with us means you'll be part of a diverse and dedicated group of people who make a real difference for our clients and communities every day. You'll have a wide range of opportunities to grow and develop your career in an inclusive environment where you'll feel valued and supported to be your best - both personally and expertly.

What You Will Do

The Cyber Security Risk Director is a leadership position responsible for leading the development of Fidelity Canada's cyber security risk posture as part of the second line of defense. This role ensures that cyber security risks are effectively identified, assessed, mitigated, and monitored across Fidelity Canada (Fidelity Clearing Canada (FCC), Fidelity Investments Canada (FIC) and Fidelity Canada Institutional Management (FCIM)). The Director will be a certified subject matter expert in cyber security risk who provides strategic advisory support in the development and maintenance of a comprehensive cyber security risk framework and will work closely with key stakeholders to enhance the organization's resilience against emerging threats.

The Director will collaborate with key stakeholders in Information Security, Enterprise Risk, Technology Risk, and other relevant functional stakeholders across Fidelity Canada, Fidelity International Limited (FIL) and Fidelity Management & Research Company (FMR) to ensure cohesive and effective cyber security risk management. This role is responsible for advancing and safeguarding Fidelity Canada's reputation and operational effectiveness through the continuous enhancement of its cyber security risk posture.

Key responsibilities include:

  • Oversight and accountability of the cyber security risk framework and methodologies, conducting both planned and ad-hoc technical risk reviews, evaluating technology and business initiatives with cyber security implications

  • Represent Fidelity Canada on FIL cyber governance committees

  • Lead the development of Fidelity Canada's Cyber Risk Oversight Program

  • Design, implement, and maintain a comprehensive cybersecurity risk oversight program supported by well-defined policies that align with enterprise risk appetite, regulatory requirements, and industry standards

  • Identify and assess cybersecurity risks and advise business units and Information Security stakeholders on risk issues to ensure awareness and accountability for cybersecurity risks.

  • Monitor external trends and evaluate potential impacts to business strategy; provide documented analytical insights of the risk profile, while ensuring a sound operational control environment through establishment of effective internal controls.

  • Perform review and challenge of first line of defense cyber risk management processes (e.g. risk assessments, control evaluations, risk metrics, mitigation plans, risk acceptances etc.) and communicate risk opinions at various levels of management.

  • Advise on remediation strategies of any inconsistencies and gaps identified through independent assessments of key cybersecurity processes.

  • Provides second line of defense leadership and subject matter expertise during response to major cyber incidents including cyber-security related privacy events and coordinate second line of defense engagement and response.

  • Develop and provide regular reporting to senior management committees across Fidelity .

  • Responsible for ownership of relationships with external cyber security risk experts

  • Ensure all activities and deliverables achieve their timeliness, quality, and accuracy service levels.

What We Are Looking For

  • Completed University Degree or equivalent experience

  • 7+ years of related work experience, in which a subset is practical experience in multiple areas of cyber risk and 5+ years of experience at the management level

  • Experience with developing and implementing cybersecurity risk oversight programs in the financial services sector, preferably in a 2nd or 3rd line of defense

  • Knowledge of current and evolving regulatory requirements, current trends in cyber threats/vulnerabilities

  • Advanced knowledge of cyber risk management best practices and how to implement them

  • Experience with risk frameworks and standards such as NIST CSF and ISO 27001

  • Experience in Cybersecurity risk consulting in the financial services sector, Cyber security audit or in a similar second line of defense role is an asset

  • Proficiency with the COBIT risk framework is considered advantageous

  • Professional Certifications in Cybersecurity, such as CRISC (ISACA), CISM (ISACA), CISA (ISACA), CISSP (ISC), and CCSP (ISC)

The Skills You Bring

  • Demonstrated leadership skills and ability to lead oversight activities across different teams

  • A keen sense of risk anticipation with attention to details and ability to challenge status quo

  • Ability to build relationships, influencing and negotiating across diverse stakeholders across the lines of defense, including senior management

  • Excellent written and oral communication skills

  • Understanding of systems architecture

  • Excellent analytical, organizational and project management skills.

  • Strong risk, process, and control validation and/or assessment skills

This posting represents an existing vacancy within our organization-an opportunity to step into a role where your talents will make a meaningful difference.

We use AI-enabled LinkedIn Hiring Assistant to support parts of our sourcing process. Every hiring decision is reviewed and finalized by our recruiters. If you choose to ask questions to the LinkedIn HR Hiring Assistant, please be mindful that the responses are not official and must be confirmed for accuracy and completeness by Fidelity. If you are selected for an interview, the recruiter who contacts you can best answer your questions.

Fidelity Canada is an equal opportunity employer

Fidelity Canada is committed to fostering a diverse and inclusive workplace. We will consider all qualified applicants for employment regardless of race, color, religion, sex, sexual orientation, gender identity or expression, national or ethnic origin, age, disability, family status, protected veterans' status, Aboriginal/Native American status or any other legally-protected ground.

Accommodation during the application process

Fidelity Canada welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in the selection process. If you require an accommodation, please email us at FidelityCanadaStaffing@fidelity.ca.

No telephone inquiries or agencies please. We thank all applicants for their interest, please be advised that only those selected for an interview will be contacted.

Why Work at Fidelity?

We are proud to be recipients of the following:

Awards

Canada's Top 100 Employers
o Greater Toronto's Top Employers
o Canada's Top Family-Friendly Employers
o Canada's Top Employers for Young People
Great Place To Work Certified
o Best Workplaces for Inclusion
o Best Workplaces for Mental Wellness
o Best Workplaces for Today's Youth
o Best Workplaces for Women
o Best Workplaces in Financial Services & Insurance
o Best Workplaces in Ontario
o Best Workplaces with Most Trusted Executive Teams

LinkedIn Top Companies in Canada
Human Resource Director (HRD) - Best Place To Work
o HRD - 5-Star Benefit Program
o HRD - 5-Star Diversity & Inclusion Employer

Designations
Canadian Compassionate Companies - Certified
Benefits Canada's Workplace Benefits Award - Future of Work Strategy
TalentEgg National Recruitment Excellence Award - Special Award for Diversity & Inclusion in Recruiting
Canadian HR Reporter's Most Innovative HR Team