Full Job Description
As the Manager, Information Security Risk, you will lead the assessment, governance, and oversight of information security risks across enterprise technology initiatives, with a primary focus on the secure adoption and enablement of Artificial Intelligence (AI) solutions.
This role is accountable for leading Threat Risk Assessments, AI security reviews, vendor and solution risk assessments, and architecture risk reviews to ensure technology initiatives are designed and implemented in alignment with FCT’s security standards, privacy obligations, regulatory requirements, and risk appetite.
You will serve as a key Information Security advisor to business leaders, technology teams, Legal, Privacy, Compliance, Enterprise Architecture, and project delivery teams. The role will help establish practical guardrails, control expectations, and governance processes that enable responsible AI adoption while protecting FCT’s data, systems, customers, employees, and business operations.
Working closely with the Director, Information Security & IT Risk, this role will support the continued maturation of FCT’s information security risk management program, including AI security governance, emerging technology risk assessment, regulatory alignment, security policy development, and enterprise risk reporting.
HERE’S HOW YOU’LL CONTRIBUTE:
• Lead Threat Risk Assessments for enterprise technology initiatives, including AI, Generative AI, machine learning, cloud, SaaS, and third-party technology solutions.
• Serve as the Information Security lead for AI-related initiatives, assessing risks related to data exposure, prompt injection, model misuse, third-party AI providers, data residency, retention, intellectual property, and regulatory obligations.
• Develop and maintain AI security standards, assessment methodologies, risk review processes, and practical guardrails to support responsible AI adoption across the organization.
• Review solution architectures, data flows, access models, and integration patterns to identify security risks and recommend appropriate control requirements.
• Partner with Legal, Privacy, Compliance, Enterprise Architecture, Procurement, Technology, and business stakeholders to assess and manage information security risks throughout the solution lifecycle.
• Track security findings and risk treatment activities through remediation, ensuring clear ownership, risk acceptance, escalation, and reporting where required.
• Monitor emerging AI, cyber, regulatory, and technology risk trends and provide recommendations to strengthen FCT’s security governance, policies, and control environment.
Total Direct Compensation:
$124,500 to $152,300
Any pay range is in $CAD. The stated pay range reflects the total expected compensation for this role (e.g., base pay plus any expected incentives or allowances, where applicable)
HERE’S WHAT SETS US APART:
Through mentoring, innovative tools, and a variety of programs that engage and reward, we empower each employee to be great and drive results.
• Comprehensive benefits that include Employee and Family Assistance Program (EFAP) and Wellness Essentials
• Group retirement savings plan with company match
• Paid holidays and generous paid time off
• Hybrid work arrangements
• Paid volunteer opportunities and charitable donation matching
• Employee recognition programs that include referral incentives
• Potential for performance-based incentives
• The opportunity to participate in our stock purchase plan
• And more!
*As per terms of the employment agreement