Description
The work location for this role is 483 Bay Street in Toronto until approximately late 2026 when the work location will change to the new Mississauga office at 3 Robert Speck Parkway.
Who We Are
At Fidelity, we’ve been helping Canadian investors build better financial futures for over 35 years. We offer individuals and institutions a range of trusted investment portfolios and services - and we’re constantly seeking to find new and better ways to help our clients. As a privately owned company, we boldly embrace innovation in all areas as we continue to grow our business into the future.
Working with us means you’ll be part of a diverse and dedicated group of people who make a real difference for our clients and communities every day. You’ll have a wide range of opportunities to grow and develop your career in an inclusive environment where you’ll feel valued and supported to be your best - both personally and expertly.
What You Will Do
The Cyber Security Risk Director is a leadership position responsible for leading the development of Fidelity Canada’s cyber security risk posture as part of the second line of defense. This role ensures that cyber security risks are effectively identified, assessed, mitigated, and monitored across Fidelity Canada (Fidelity Clearing Canada (FCC), Fidelity Investments Canada (FIC) and Fidelity Canada Institutional Management (FCIM)). The Director will be a certified subject matter expert in cyber security risk who provides strategic advisory support in the development and maintenance of a comprehensive cyber security risk framework and will work closely with key stakeholders to enhance the organization’s resilience against emerging threats.
The Director will collaborate with key stakeholders in Information Security, Enterprise Risk, Technology Risk, and other relevant functional stakeholders across Fidelity Canada, Fidelity International Limited (FIL) and Fidelity Management & Research Company (FMR) to ensure cohesive and effective cyber security risk management. This role is responsible for advancing and safeguarding Fidelity Canada’s reputation and operational effectiveness through the continuous enhancement of its cyber security risk posture.
Key responsibilities include:
Oversight and accountability of the cyber security risk framework and methodologies, conducting both planned and ad-hoc technical risk reviews, evaluating technology and business initiatives with cyber security implications
Represent Fidelity Canada on FIL cyber governance committees
Lead the development of Fidelity Canada’s Cyber Risk Oversight Program
Design, implement, and maintain a comprehensive cybersecurity risk oversight program supported by well-defined policies that align with enterprise risk appetite, regulatory requirements, and industry standards
Identify and assess cybersecurity risks and advise business units and Information Security stakeholders on risk issues to ensure awareness and accountability for cybersecurity risks.
Monitor external trends and evaluate potential impacts to business strategy; provide documented analytical insights of the risk profile, while ensuring a sound operational control environment through establishment of effective internal controls.
Perform review and challenge of first line of defense cyber risk management processes (e.g. risk assessments, control evaluations, risk metrics, mitigation plans, risk acceptances etc.) and communicate risk opinions at various levels of management.
Advise on remediation strategies of any inconsistencies and gaps identified through independent assessments of key cybersecurity processes.
Provides second line of defense leadership and subject matter expertise during response to major cyber incidents including cyber-security related privacy events and coordinate second line of defense engagement and response.
Develop and provide regular reporting to senior management committees across Fidelity .
Responsible for ownership of relationships with external cyber security risk experts
Ensure all activities and deliverables achieve their timeliness, quality, and accuracy service levels.
What We Are Looking For
Completed University Degree or equivalent experience
7+ years of related work experience, in which a subset is practical experience in multiple areas of cyber risk and 5+ years of experience at the management level
Experience with developing and implementing cybersecurity risk oversight programs in the financial services sector, preferably in a 2nd or 3rd line of defense
Knowledge of current and evolving regulatory requirements, current trends in cyber threats/vulnerabilities
Advanced knowledge of cyber risk management best practices and how to implement them
Experience with risk frameworks and standards such as NIST CSF and ISO 27001
Experience in Cybersecurity risk consulting in the financial services sector, Cyber security audit or in a similar second line of defense role is an asset
Proficiency with the COBIT risk framework is considered advantageous
Professional Certifications in Cybersecurity, such as CRISC (ISACA), CISM (ISACA), CISA (ISACA), CISSP (ISC²), and CCSP (ISC²)
The Skills You Bring
Demonstrated leadership skills and ability to lead oversight activities across different teams
A keen sense of risk anticipation with attention to details and ability to challenge status quo
Ability to build relationships, influencing and negotiating across diverse stakeholders across the lines of defense, including senior management
Excellent written and oral communication skills
Understanding of systems architecture
Excellent analytical, organizational and project management skills.
Strong risk, process, and control validation and/or assessment skills
This posting represents an existing vacancy within our organization—an opportunity to step into a role where your talents will make a meaningful difference.
We use AI-enabled LinkedIn Hiring Assistant to support parts of our sourcing process. Every hiring decision is reviewed and finalized by our recruiters. If you choose to ask questions to the LinkedIn HR Hiring Assistant, please be mindful that the responses are not official and must be confirmed for accuracy and completeness by Fidelity. If you are selected for an interview, the recruiter who contacts you can best answer your questions.
Cyber Security Risk Director • Toronto
Financeit is a point-of-sale financing provider serving some of the largest home improvement and retail organizations in Canada.Our platform helps businesses close more sales by offering customers ... Show more
Capco seeks a Senior Leader in Cyber Risk Management to innovate and grow our services in the financial sector.Engage with top executives to drive effective governance and risk management.This role... Show more
Lead cybersecurity initiatives as a Cyber Security Lead, reinforcing defenses across critical platforms.Your expertise is vital in enhancing security within cloud environments and E-commerce system... Show more
Drive cybersecurity excellence for Enercare as a Senior Manager of Cybersecurity and Enterprise Security in Markham, ON.Focus on risk management while leading the organization’s security integrity.... Show more
Our Company Background & Culture.UPP is the first pension plan of its kind in Ontario’s university sector, proudly serving over 44,000 members across six universities and eighteen sector organizati... Show more
A leading consulting firm is seeking a Cyber Risk and Data Protection professional to oversee diverse engagements and manage client accounts.The ideal candidate will have 5-8 years of experience in... Show more
Wayfair seeks a Cyber Security Risk Management Engineer to drive technical risk analysis and remediation.Contribute your expertise in a supportive and innovative environment.This position is center... Show more
Senior Manager, Security Governance, Risk, and Compliance (GRC).Toronto, ON (Hybrid – in-office collaboration with remote flexibility).This leadership role is accountable for overseeing governance,... Show more
Some of what you will do The Senior Director, Cybersecurity & Risk Management is responsible for designing, governing, and executing the enterprise-wide security and risk strategy that protects com... Show more
Lead the Cyber Security Operations Center as Director, overseeing the integration of subsidiary SOCs for enhanced operational efficiency.This role requires a strategic mindset and exceptional leade... Show more
We are seeking a talented individual to lead our Business Unit Security Officers (BUSOs), Business Continuity Officers, Disaster Recovery officers and onboarding Managers as a key pillar in the Cyb... Show more
Elevate cybersecurity strategies as the CIAM Director at Accenture Security.Focus on identity management and forming robust client relationships to drive company growth.In this key role, you will l... Show more
Join Tridel: Building Communities, Growing Careers.Our strength, innovation and growth are the result of talented individuals who come together as a team to build sustainable and award‑winning home... Show more
Job DescriptionCurrent work authorization for Canada is required for all openingsThis is a regular, full-time roleYou will be working on a flexible hybrid schedule as part of Fidelity’s dynamic wor... Show more
Elevate your career with the Associate Director, Cyber and Technology Risk role in Toronto, Canada.Leverage your expertise to shape risk management strategies and insights within a leading group.In... Show more
CarltonOne is a global B2B technology leader, and part of the Goldman Sachs portfolio, helping organizations around the world reward and inspire exceptional people.Our solutions empower employees t... Show more
Join GreenShield as the Cybersecurity Operations Director, overseeing security strategies to protect digital assets and drive operational excellence in a 24/7 environment.In this high-impact role, ... Show more
A leading financial institution in Toronto is seeking a Director of Integrated Security Operations Centre to oversee the integration and operational management of multiple subsidiary Security Opera... Show more
Job Description Cyber Security Risk Director – Full‑time, flexible hybrid schedule.Current work authorization for Canada required.The work location is 483 Bay Street in Toronto until approximately ... Show more
Tata Consultancy Services (TCS) is an equal opportunity employer, and embraces diversity in race, nationality, ethnicity, gender, age, physical ability, neurodiversity, and sexual orientation, to c... Show more
){kind=logo}
