Director, Information Security

Teranet Inc.Toronto, ON

About The Position

Teranet is seeking a visionary Director of Information Security who is accountable for leading and evolving the Security Operations, Application Security, and Identity and Access Management (IAM) programs while seamlessly integrating on-premises, cloud, and security practices into an enhanced, frictionless end-user experience. Reporting directly to the CISO, this role is responsible for developing and implementing operationally sustainable security and compliance roadmaps, processes, and controls aligned with organizational goals.

Requirements

  • College diploma or university degree in Computer Science, Computer Engineering, or a related discipline
  • Minimum of 8 years of progressive IT security experience, including 3–5 years in a leadership or management role overseeing security operations, application security, or IAM functions.
  • Experience working in complex hybrid environments (cloud and on-prem) within a mid-to-large organization.
  • Deep knowledge of security technologies including next-generation firewalls, vulnerability management, malware management, IAM platforms, and SIEM solutions.
  • Experience in designing and implementing secure development lifecycle practices and guiding application security programs.
  • Proficiency in using Excel for risk tracking and reporting.
  • Familiarity with project management and documentation tools to track progress and report outcomes effectively.
  • Working knowledge of networking, operating systems, cloud platforms, and best practices for securing these environments.
  • Familiarity with regulatory frameworks and security standards, including PCI DSS, ISO 27001/27002, and NIST.
  • Understanding of threat intelligence, incident response processes, and vulnerability management practices.
  • Knowledge of SAFe Agile methodologies (Scrum, Kanban) and how to embed security into Agile delivery pipelines.
  • CompTIA Security+, GIAC Information Security Fundamentals, CISSP, CISM, CISA, or equivalent.

Nice To Haves

  • Strategic thinker able to align security practices with business objectives while enabling technology innovation.
  • Creative problem-solver who can assess evolving threats and design practical, sustainable security solutions.
  • Advanced communication skills to translate complex security and technical concepts into clear business focused language for executives and stakeholders.
  • Collaboration and influence skills to drive alignment across IT, business units, and executive teams.
  • Strong prioritization and decision-making abilities in high-pressure, time-sensitive environments.
  • Team leadership and talent development skills to build, mentor, and lead high-performing security teams.
  • Ability to handle confidential information and exercise sound judgement in risk-based decision-making.

Responsibilities

  • Develop and deliver security and compliance strategic roadmaps that mature security operations, application security, and identity management programs.
  • Implement sustainable security controls and processes that align with organizational objectives while enabling secure business operations.
  • Partner with business units and technology teams to ensure security requirements are integrated into business processes and technology solutions from inception.
  • Communicate complex security concepts and risks to diverse audiences including technical teams, business stakeholders, and executive leadership.
  • Oversee security programs across subsidiary organizations ensuring consistent security standards, coordinated incident response, and unified risk management across the enterprise.
  • Oversee 24/7 security monitoring, threat detections, and incident response processes to ensure timely identification, containment, and mitigation of security threats.
  • Coordinate investigations of security incidents and ensure effective management with minimal business disruption.
  • Continuously improve incident response capabilities through tabletop exercises, playbook updates, and cross-functional coordination to maintain organizational readiness.
  • Develop and enforce secure software development lifecycle practices across projects and technology initiatives.
  • Work with software development teams to integrate security into application design, code reviews, and CI/CD pipelines.
  • Lead application vulnerability assessments and remediation efforts to reduce risk and support compliance requirements.
  • Design, implement, and oversee IAM programs, including access controls, user lifecycle management, and segregation of duties.
  • Evaluate and enhance IAM tools and processes to support least-privilege access and Zero Trust principles.
  • Collaborate with IT and business teams to align IAM practices with operational needs while maintaining a strong security posture and positive user experience.
  • Attract, retain, and develop high-performing security professionals across security operations, application security, and IAM functions.
  • Manage employees, contractors, and vendor resources to achieve operational and strategic objectives while optimizing budgets and resources.
  • Promote a culture of security awareness and accountability across the organization by acting as a trusted advisor and security champion.

Benefits

  • 100% Employer Paid Health Benefit Plan
  • Employer Matching Retirement Savings Plan
  • Paid Vacation, Floater Days & Sick Leaves
  • Maternity, Parental and/or Adoption Leave Top-Up Programs
  • Corporate Discounts & GoodLife Group Rate Membership
  • Employee Assistance Program – for you and your loved ones!
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service