Logo
Peoples Group

AVP, Corporate Information Security

Peoples Group, Vancouver, BC


About us:

Peoples Group is a boutique financial institution with offices located in Vancouver, Calgary, Toronto, and Montreal that has been in the Canadian marketplace for over 35 years. Our mission is to exceed our customers' expectations by providing exceptional customer service backed by extensive product knowledge and experience.

Our culture here at Peoples Group is formed by our values: Trustworthy, Creative, Willing. We believe people don't choose a company to work for, they choose a company to join. We prioritize risk-based practices and procedures in order to remain risk intelligent and compliant. We value people, building relationships, and focusing on strengths; we execute with passion.

About the work environment:

Peoples Group offers a flexible and hybrid work environment. In this role, you will work a combination of in-office and remotely from home. Typically, you'll work regular business hours, Monday through Friday, between 8:00 a.m. and 4:30 p.m., with flexibility around start/end times.

We are hiring for this position out of our Vancouver and Calgary offices. Successful candidates who apply outside of these areas will be expected to relocate and reside in a location that is within a commutable distance.

The role requires the candidate to participate in on-call, acting as an escalation path in the event of a severe incident.

About you:

You are a dynamic and entrepreneurial leader with experience managing and leading teams. You are a strategic thinker who enjoys formulating strategies and business plans to reach long-term objectives. You can analyze and monitor risks while ensuring that the appropriate IT and cybersecurity risk management protocols are in place and are working effectively.

As a people leader at Peoples Group, you are strength-based, engagement-focused and performance-oriented. People leaders understand themselves, their people, their subject matter, their outcomes and how their team's work contributes to the overall success of the organization.

About the day-to-day:

  • Manage, motivate and develop direct reports through ongoing performance development.
  • Develop and direct the cybersecurity strategy and operations, integrating advanced threat intelligence and risk management practices across the organization.
  • Lead the response to cybersecurity incidents, ensuring rapid recovery and mitigation of security threats.
  • Manage and enhance security protocols and measures, including Identity & Access Management (IAM) and Data Safeguarding.
  • Collaborate with IT and business units to embed cybersecurity awareness and practices within the organization's culture and operations.
  • Oversee the selection and management of external cybersecurity partners and vendors to align with organizational goals and security benchmarks.
  • Lead due diligence and risk assessment for third-party service providers and technology partners.
  • Ensure compliance with international and national standards and regulations such as ISO 27001, NIST, PCI-DSS, and CIS frameworks.
  • Regularly report to senior management and the board on security posture, policy updates, and strategic security enhancements.
  • Work with all members of the Technology team to maintain and update all IT controls, standard procedures, policies, and enforcement of processes to enable compliance and regulatory requirements.
  • Create internal partnerships with key stakeholders, such as audit services, business services, finance, human resources, and legal services, to influence and align business-area actions that are needed to achieve program objectives.
  • Lead the organization's efforts to comply with applicable cybersecurity regulations and standards.
  • Regularly engage with stakeholders across the organization to communicate security risks and the status of security initiatives.
  • Coordinate with internal and external auditors to complete security audits and ensure continuous compliance with all regulatory requirements.
  • Manage other duties including budgeting, IT Operations.


About the qualifications:

  • Bachelor's degree in engineering, Computer Science, or a related field; a Master's degree is preferred.
  • Minimum of 10+ years of experience in progressing cybersecurity roles, with a demonstrated track record in security operations and strategic leadership.
  • At least five years of related experience in a Senior Management role.
  • Professional security management certifications, such as CISSP, GCIH, GCIA, or similar, are highly desirable.
  • Extensive experience with cybersecurity program management, including risk management, incident response, threat intelligence, security operations, and compliance.
  • Demonstrated ability to communicate complex security concepts to a broad range of technical and non-technical stakeholders.
  • Strong leadership skills with the ability to mentor and develop a high-performing security team.
  • Experience in banking or a regulated environment, a strong advantage.
  • Excellent verbal, written, and presentation skills, capable of conveying important information across diverse audiences.


Compensation:

Peoples Group is pleased to offer employees a competitive annual salary plus a discretionary profit share opportunity. The salary for this position will vary between $145,000 and $165,000 per year depending on the knowledge, skills, abilities, and experience that the chosen candidate possess. As part of our recruiting process, shortlisted candidates will be asked their salary expectations for this position.

Help us get to know you better by answering our application questions! Your participation is expected as an essential part of our selection process.

NOTE: Peoples Group is an Equal Employment Opportunity employer. Please accept our utmost appreciation for your interest; however, only those applicants under consideration will be contacted.