Senior Manager - CISO Governance and Oversight (Global Security), Toronto

What is the Opportunity? The Sr. Manager, CISO Governance will play a critical role in supporting ongoing Cyber and Risk governance maturity and transformation initiatives across the Office of the CISO and Cyber operations. This role will strengthen governance routines, enhance risk and control visibility, and drive consistency in Cyber and Risk management practices across Cyber Security domains. The ideal candidate will combine strategic thinking with execution capability, and have experience building scalable governance models that aggregate views, promote actionable reporting, and align with evolving business expectations.

What will you do?

Design, implement, and continuously enhance governance activities for CISO and Cyber operations.

Ensure alignment with enterprise Cyber risk management and governance requirements.

Drive consistency in governance routines, adherence to risk and control framework requirements, and issue‑management practices across the organization.

Establish governance mechanisms to deliver comprehensive, aggregated insights across applicable Cyber domains with clear reporting and oversight.

Identify systemic risks, emerging trends, and concentration risks to inform leadership decision‑making.

Develop and deliver clear, concise, and actionable reporting tailored for senior management, risk and technology committees, and other stakeholders.

Review, challenge, track and report key performance for Cyber operations and service delivery requirements such as IGAs.

Facilitate governance forums and drive executive‑level discussions.

Monitor emerging threats and trends within the technology landscape, including cybersecurity, operational and third‑party risks.

What do you need to succeed? Must have

Minimum 7 years in Technology Risk Management, Audit, Cybersecurity, or Governance roles with a strong focus on risk mitigation and remediation.

Proven experience delivering enterprise‑level reporting and aggregate risk insights.

Strong analytical, communication, and stakeholder‑management skills.

Deep understanding of risk management frameworks and standards across the US or Canada (e.g., regulatory compliance, enterprise risk, internal controls, SOX, ITGC) with beneficial expertise in UK and APAC regulators.

Exceptional relationship‑building skills and ability to collaborate across diverse functions and levels.

Strong analytical and problem‑solving skills, and the ability to create scalable, repeatable processes that simplify risk management in IT operations.

Industry framework knowledge, such as NIST, COBIT, FedRAMP, and FFIEC.

Nice to have

Industry certifications such as CRISC, CISA, CISM, or CISSP.

What’s in it for you?

A comprehensive Total Rewards Program including bonuses, flexible benefits, competitive compensation, commissions, and stock where applicable.

Leadership that supports your development through coaching and career opportunities.

Opportunities to make a lasting impact and contribute to a dynamic, collaborative, high‑performing team.

Chance to work on challenging, meaningful projects.

Job Skills Data Gathering; Analysis; Effectiveness Measurement; Ethical Business; Internal Controls; Key Performance Indicators; Key Risk Indicators; Long‑Term Planning; Process Management; Results‑Oriented; Risk Management; Security Risk; Strategic Thinking

#J-18808-Ljbffr