×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Lead, Cybersecurity Insider Risk Management

Job in Toronto, Ontario, C6A, Canada
Listing for: Queer Tech
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Job Description & How to Apply Below
Join a Challenger
Being a traditional bank just isn’t our thing, so we challenge ourselves to get creative in providing innovative banking solutions for Canadians.

How do we get there? With a talented team of inquisitive and agile challengers that break through the status quo. So, if you’re passionate about redefining the future of banking—while having fun—this could be your next big opportunity.

Our company continues to grow, and today we serve more than 670,000 people across

Canada through Equitable Bank,Canada'sChallenger Bank™, and have been around for more than 50 years. Equitable Bank's wholly-owned subsidiary, Concentra Bank, supports credit unions across

Canada that serve more than six million members. Together we have over $125 billionin combined assets under management and administration, with a clear mandate to drive change in Canadian banking to enrich people's lives.

Our customers have named our EQ Bank digital platform  one of the top banks in Canada on the Forbes World's Best Banks list since 2021.

The Work
The Lead, Cybersecurity Insider Risk Management is a senior-level individual contributor role responsible for shaping and advancing the organization’s insider risk strategy. This position is dedicated to protecting sensitive data and critical assets by leading the design, implementation, and continuous enhancement of insider risk capabilities. This role is exclusively focused on cyber-related threats and does not involve financial fraud or AML investigations.

While it does not currently include people management responsibilities, it offers a clear pathway to future leadership opportunities. Success in this role requires deep technical expertise, strategic vision, and the ability to influence and collaborate across cybersecurity, legal, HR, and business teams to strengthen organizational resilience.

The Core Responsibilities!

Own and lead the insider risk program strategy, governance framework, and roadmap.

Define policies, standards, and procedures for insider risk management aligned with regulatory and organizational requirements.

Develop and report on KPIs and metrics to measure program effectiveness and maturity.

Lead the selection, assessment, and proof-of-concept (POC) for insider risk management tools (e.g., DLP, UEBA, SIM, CASB).

Architect and implement advanced insider risk detection and response capabilities leveraging behavioral analytics, machine learning, and automation.

Leverage AI-driven tools and automation to enhance efficiency, accuracy, and scalability of the insider risk management program.

Integrate insider risk monitoring with broader cybersecurity platforms and threat intelligence feeds.

Oversee day-to-day insider risk operations, ensuring timely detection, triage, and resolution of alerts.

Define and maintain high-risk user groups, implementing automation for dynamic updates.

Direct investigations into suspicious activities, ensuring proper documentation, evidence handling, and escalation.

Monitor insider risk users through IRM alerts, DLP alerts, UEBA alerts, and database activity monitoring (DAM) alerts.

Detect anomalous queries, unauthorized schema changes, or mass data exports, correlating database activity with user behavior analytics (UEBA).

Deploy DAM tools to track queries, changes, and access patterns; set alerts for suspicious activities like bulk data extraction or unusual query patterns.

Integrate DAM logs with SIEM for centralized monitoring.

Let’s Talk About You!

Bachelor in Computer Science or related field.

At least seven (7) years of information security and information risk experience.

Expertise in insider risk platforms and technologies: DLP, IRM, UEBA, SIEM, CASB, EDR

Strong knowledge of database security principles, encryption, and DAM tools

Proficiency in scripting and automation (Python, Power Shell) for alert enrichment and remediation workflows.

CISSP or similar certification is preferred.

Ability to work in a fast-paced environment with minimal guidance and supervision.

Ability to adapt to constantly changing technical, regulatory, and compliance environments.

The incumbent is expected to interact with all employees including executives and thus good verbal…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search