Director, Information Security

Blue Cross Life Insurance Company of Canada

About The Position

As part of Blue Cross Life's continued investment in cybersecurity, risk management, and operational resilience, we are creating a new Director, Information Security role to lead and evolve our enterprise security program. This is a unique opportunity to shape security strategy, influence business decisions, and help strengthen the organization's cyber resilience. Reporting to the Chief Risk Officer, you will be responsible for shaping and executing the organization's cybersecurity strategy, security governance framework, cloud security oversight, and cyber risk management program. This is a highly visible leadership role that requires someone who can bridge the gap between technology and business, translating complex cybersecurity risks into meaningful insights, practical recommendations, and informed business decisions. We're looking for a leader who combines strong technical expertise with exceptional communication and stakeholder management skills, while building a security program that supports the organization's strategic objectives.

Requirements

  • 10+ years of progressive experience in cybersecurity, information security, IT risk management, or related technology leadership roles.
  • Experience leading cybersecurity teams and enterprise security programs.
  • Proven ability to translate complex technical risks and security concepts into actionable business insights and recommendations.
  • Ability to communicate complex security risks and technical concepts to executive leaders, Boards, and non-technical stakeholders.
  • Strong expertise in cybersecurity governance, risk management, operational resilience, and incident response.
  • Experience working within insurance, financial services, or another highly regulated industry.
  • Experience managing managed service providers (MSPs), security vendors, and third-party security relationships.

Nice To Haves

  • AWS cloud security experience is strongly preferred.

Responsibilities

  • Lead the development and execution of Blue Cross Life's cybersecurity strategy, roadmap, and governance framework.
  • Oversee the organization's cybersecurity risk management program and security architecture and control environments.
  • Serve as a trusted advisor to Executive Leadership and the Board by providing clear, actionable insights on cybersecurity risks, trends, and priorities.
  • Lead cloud security, vulnerability management, threat monitoring, cybersecurity incident response, and data protection initiatives.
  • Manage key security vendors and managed service providers, ensuring performance, accountability, and effective risk management.
  • Partner with business leaders, technology teams, risk and compliance teams, and external service providers to strengthen organizational resilience.
  • Lead and develop the Information Security team while promoting a culture of security awareness and continuous improvement.

Benefits

  • Base Pay range may vary depending on the successful candidate or other relevant job-related factors such as knowledge, skills, qualifications, experience and education/training.
  • Eligible Blue Cross Life employees may participate in various performance-based incentive programs.
  • Payments under these programs are discretionary and subject to both individual and organizational results.
  • Equal opportunity employer.
  • Culture of diversity, equity and inclusion (DEI).
  • Accommodations provided throughout the recruitment, selection and/or assessment process for applicants with disabilities.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service