×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Associate Vice-President, Information Security

Job in Toronto, Ontario, M5A, Canada
Listing for: Wellington-Altus
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below

Associate Vice-President, Information Security

Location: This position will be based out of our Toronto or Winnipeg office.

Our organization
:

Founded in 2017, Wellington-Altus Financial (Wellington-Altus) is the parent company to Wellington-Altus Private Counsel Inc., Wellington-Altus USA Inc., Wellington-Altus Insurance Inc., Wellington-Altus Group Solutions Inc., Independent Advisor Solutions Inc., and Wellington-Altus Private Wealth Inc.—the top-rated
* investment dealer in Canada and one of Canada’s Best Managed Companies. With nearly $40 billion in assets under administration and offices across the country, Wellington-Altus identifies with successful, entrepreneurial advisors and portfolio managers and their high-net-worth clients.

* Investment Executive 2025 Brokerage Report Card.

The opportunity:

Reporting to the Vice-President, Technology Services, the Associate Vice-President, Information Security will be responsible to create organizational awareness about cyber security and privacy, ensure that our technology stacks and data are secure by design and are adequately protected from cyber-attacks. It is also to ensure that procedures and processes are in place to guide action should an attack take place and work with the CISO and Incidence Response Commander as well as the Chief Privacy Officer.

Responsible for the development and maintenance of appropriate IT security and information privacy standards, procedures, corporate and departmental policies, and architectures. This position serves as the single point of contact with other departments, corporations and vendors for all information security and privacy requests. Manage Identity Access Management policies, procedures, and reviews processes. This individual will work with peers on the IT Leadership Team and be accountable for creating a Cyber Security & Privacy Program for the organization.

The ideal candidate will have experience in implementing and assessing processes and best practices around Cyber Security. Ability to effectively define, implement, promote, educate, assess, report, and facilitate third party audits on Information Security and IT management best practices, both internally and at third party service providers. A keen sense of balance between business and security risks is essential. This involves collaborating with business users, vendors, and technology teams to understand problems and opportunities and recommend solutions that enable the organization to meet its goals.

Key responsibilities include:

  • Develop an Information Security and Privacy roadmap for the next 3 years to ensure Wellington-Altus has a robust and comprehensive information security strategy.
  • Implement a framework for information security risk governance and control that integrates a consistent methodology to identify, assess information security risks and ensures a process to address those risks.
  • Identify the total Information Security needs and oversee the security posture across a large Enterprise by managing the full life cycle of Cybersecurity.
  • Establish, implement, enforce, and monitor information security standards enterprise-wide.
  • Supports the leadership team in educating the Executive Committee on current and evolving Cyber security technologies, best practices and threats.
  • Provide support to the procurement and legal teams regarding information security and privacy with respect to agreements and contracts.
  • Leads the ongoing security, privacy and threat risk assessments and security evaluations to verify operational compliance, identify and evaluate gaps and manage exceptions to policy.
  • Track security related risks and correlating action plans to ensure issues are resolved.
  • Responsible to work with third party teams, internal digital and data development teams to interpret and review results from penetration tests, vulnerability scans, and code reviews as required.
  • Maintain organizations Security Risk Register for effective risk management and operational compliance functions.
  • Proficient security frameworks including NIST and SOC 2, Type 2.
  • Provide support for compliance and audit activities liaising with internal staff and external auditors.
  • Conduct…
    • Position Requirements
    10+ Years work experience
    Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search