More jobs:
Job Description & How to Apply Below
Join a Challenger. Being a traditional bank just isn’t our thing, so we challenge ourselves to get creative in providing innovative banking solutions for Canadians.
How do we get there? With a talented team of inquisitive and agile challengers that break through the status quo. So, if you’re passionate about redefining the future of banking—while having fun—this could be your next big opportunity.
Our company continues to grow, and today we serve more than 670,000 people across Canada through Equitable Bank, Canada's Challenger Bank™ and have been around for more than 50 years. Equitable Bank's wholly‑owned subsidiary, Concentra Bank, supports credit unions across Canada that serve more than six million members. Together we have over $125 billion in combined assets under management and administration, with a clear mandate to drive change in Canadian banking to enrich people's lives.
Our customers have named our EQ Bank digital platform () one of the top banks in Canada on the Forbes World's Best Banks list since 2021.
The Work
The Lead, Cybersecurity Insider Risk Management is a senior‑level individual contributor role responsible for shaping and advancing the organization’s insider risk strategy. This position is dedicated to protecting sensitive data and critical assets by leading the design, implementation, and continuous enhancement of insider risk capabilities. The role is exclusively focused on cyber‑related threats and does not involve financial fraud or AML investigations.
While it currently does not include people management, a clear pathway to future leadership is available. Success in this role requires deep technical expertise, strategic vision, and the ability to influence and collaborate across cybersecurity, legal, HR, and business teams to strengthen organizational resilience.
The Core Responsibilities
Own and lead the insider risk program strategy, governance framework, and roadmap
Define policies, standards, and procedures for insider risk management aligned with regulatory and organizational requirements
Develop and report on KPIs and metrics to measure program effectiveness and maturity
Lead the selection, assessment, and proof‑of‑concept for insider risk management tools (e.g., DLP, UEBA, SIM, CASB)
Architect and implement advanced insider risk detection and response capabilities leveraging behavioral analytics, machine learning, and automation
Leverage AI‑driven tools and automation to enhance efficiency, accuracy, and scalability of the insider risk management program
Integrate insider risk monitoring with broader cybersecurity platforms and threat intelligence feeds
Oversee day‑to‑day insider risk operations, ensuring timely detection, triage, and resolution of alerts
Define and maintain high‑risk user groups, implementing automation for dynamic updates
Direct investigations into suspicious activities, ensuring proper documentation, evidence handling, and escalation
Monitor insider risk users through IRM alerts, DLP alerts, UEBA alerts, and database activity monitoring (DAM) alerts
Detect anomalous queries, unauthorized schema changes, or mass data exports, correlating database activity with user behavior analytics (UEBA)
Deploy DAM tools to track queries, changes, and access patterns; set alerts for suspicious activities like bulk data extraction or unusual query patterns
Integrate DAM logs with SIEM for centralized monitoring
Let's Talk About You
Bachelor in Computer Science or related field
At least seven (7) years of information security and information risk experience
Expertise in insider risk platforms and technologies: DLP, IRM, UEBA, SIEM, CASB, EDR
Strong knowledge of database security principles, encryption, and DAM tools
Proficiency in scripting and automation (Python, Power Shell) for alert enrichment and remediation workflows
CISSP or similar certification is preferred
Ability to work in a fast‑paced environment with minimal guidance and supervision
Ability to adapt to constantly changing technical, regulatory, and compliance environments
Good verbal and written communication skills are important for interacting with all employees,…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×