Director, Information Security

Teranet, Inc.

$120K — $150K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • College diploma or university degree in Computer Science or related field
  • Minimum of 8 years of progressive IT security experience, including 3-5 years in a leadership role
  • Experience in complex hybrid environments (cloud and on-prem) within mid-to-large organizations
  • Deep knowledge of security technologies (e.g., firewalls, vulnerability management, IAM platforms)
  • Experience in secure development lifecycle practices and application security programs
  • Familiarity with regulatory frameworks (e.g., PCI DSS, ISO 27001)
  • Proficiency in Excel for risk tracking and reporting

Responsibilities

  • Develop and deliver strategic roadmaps for security operations and compliance
  • Implement sustainable security controls aligned with organizational objectives
  • Ensure security requirements are integrated into business processes and technology solutions
  • Oversee 24/7 security monitoring and incident response processes
  • Manage investigations of security incidents with minimal disruption
  • Lead application security programs and vulnerability assessments
  • Design and implement Identity and Access Management programs

Benefits

  • 100% Employer Paid Health Benefit Plan
  • Employer Matching Retirement Savings Plan
  • Paid Vacation, Floater Days & Sick Leaves
  • Maternity, Parental and/or Adoption Leave Top-Up Programs
  • Corporate Discounts & GoodLife Group Rate Membership
  • Employee Assistance Program for employees and families
Full Job Description
About the Role

Teranet is seeking a visionary Director of Information Security who is accountable for leading and evolving the Security Operations, Application Security, and Identity and Access Management (IAM) programs while seamlessly integrating on-premises, cloud, and security practices into an enhanced, frictionless end-user experience. Reporting directly to the CISO, this role is responsible for developing and implementing operationally sustainable security and compliance roadmaps, processes, and controls aligned with organizational goals.

What You'll Be Doing

The Director of Information Security will enable the organization to achieve business objectives securely by assessing, designing, and overseeing security operations in a way that reduces risk while supporting technology innovation. Acting as a trusted advisor to the CISO, the Director will also partner across the Executive Team, working closely with the Director of GRC & Data Governance, the Security Architect, and key business stakeholders to highlight and address potential security risks, bringing a pragmatic and collaborative approach to securing the organization's data, systems, and services.

Influence and Support the Development/Execution of the Security Strategy (30%)
  • Develop and deliver security and compliance strategic roadmaps that mature security operations, application security, and identity management programs.
  • Implement sustainable security controls and processes that align with organizational objectives while enabling secure business operations.
  • Partner with business units and technology teams to ensure security requirements are integrated into business processes and technology solutions from inception.
  • Communicate complex security concepts and risks to diverse audiences including technical teams, business stakeholders, and executive leadership.
  • Oversee security programs across subsidiary organizations ensuring consistent security standards, coordinated incident response, and unified risk management across the enterprise.


Lead Security Operations and Incident Response (25%)
  • Oversee 24/7 security monitoring, threat detections, and incident response processes to ensure timely identification, containment, and mitigation of security threats.
  • Coordinate investigations of security incidents and ensure effective management with minimal business disruption.
  • Continuously improve incident response capabilities through tabletop exercises, playbook updates, and cross-functional coordination to maintain organizational readiness


Oversee Application Security Programs (20%)
  • Develop and enforce secure software development lifecycle practices across projects and technology initiatives.
  • Work with software development teams to integrate security into application design, code reviews, and CI/CD pipelines.
  • Lead application vulnerability assessments and remediation efforts to reduce risk and support compliance requirements.


Lead Identiy and Access Management (15%)
  • Design, implement, and oversee IAM programs, including access controls, user lifecycle management, and segregation of duties.
  • Evaluate and enhance IAM tools and processes to support least-privilege access and Zero Trust principles.
  • Collaborate with IT and business teams to align IAM practices with operational needs while maintaining a strong security posture and positive user experience


Build, Develop, and Lead Security Teams (10%)
  • Attract, retain, and develop high-performing security professionals across security operations, application security, and IAM functions.
  • Manage employees, contractors, and vendor resources to achieve operational and strategic objectives while optimizing budgets and resources.
  • Promote a culture of security awareness and accountability across the organization by acting as a trusted advisor and security champion.


What You Bring

  • College diploma or university degree in Computer Science, Computer Engineering, or a related discipline
  • Minimum of 8 years of progressive IT security experience, including 3-5 years in a leadership or
  • management role overseeing security operations, application security, or IAM functions.
  • Experience working in complex hybrid environments (cloud and on-prem) within a mid-to-large organization.
  • Deep knowledge of security technologies including next-generation firewalls, vulnerability management, malware management, IAM platforms, and SIEM solutions.
  • Experience in designing and implementing secure development lifecycle practices and guiding application security programs.
  • Proficiency in using Excel for risk tracking and reporting.
  • Familiarity with project management and documentation tools to track progress and report outcomes effectively.
  • Working knowledge of networking, operating systems, cloud platforms, and best practices for securing these environments.
  • Familiarity with regulatory frameworks and security standards, including PCI DSS, ISO 27001/27002, and NIST.
  • Understanding of threat intelligence, incident response processes, and vulnerability management practices.
  • Knowledge of SAFe Agile methodologies (Scrum, Kanban) and how to embed security into Agile delivery pipelines.
  • CompTIA Security+, GIAC Information Security Fundamentals, CISSP, CISM, CISA, or equivalent.


Professional Attributes and Core Competencies:
  • Strategic thinker able to align security practices with business objectives while enabling technology innovation.
  • Creative problem-solver who can assess evolving threats and design practical, sustainable security solutions.
  • Advanced communication skills to translate complex security and technical concepts into clear business focused language for executives and stakeholders.
  • Collaboration and influence skills to drive alignment across IT, business units, and executive teams.
  • Strong prioritization and decision-making abilities in high-pressure, time-sensitive environments.
  • Team leadership and talent development skills to build, mentor, and lead high-performing security teams.
  • Ability to handle confidential information and exercise sound judgement in risk-based decision-making.


What We Offer

  • 100% Employer Paid Health Benefit Plan
  • Employer Matching Retirement Savings Plan
  • Paid Vacation, Floater Days & Sick Leaves
  • Maternity, Parental and/or Adoption Leave Top-Up Programs
  • Corporate Discounts & GoodLife Group Rate Membership
  • Employee Assistance Program - for you and your loved ones!

Similar Jobs

More Jobs at Teranet, Inc.

  • Project Manager
    $126K — $143K *
    Toronto, ON M3C 0E3
    Business Services
    In-Person
  • Sr. HR Workday Analyst
    $110K — $130K *
    Toronto, ON M3C 0E3
    Business Services
    In-Person
  • Application Designer
    $104K — $115K *
    Toronto, ON M3C 0E3
    Information Technology
    In-Person

More Information Technology Jobs

Find similar Director, Information Security jobs: