Search jobs > Toronto, ON > Director security and

Director, Security Risk and Resilience

Robinhood
Toronto, ON
$67 an hour (estimated)
Full-time

Join a leading fintech company that’s democratizing finance for all.

Robinhood Markets was founded on a simple idea : that our financial markets should be accessible to all. With customers at the heart of our decisions, Robinhood and its subsidiaries and affiliates are lowering barriers and providing greater access to financial information.

Together, we are building products and services that help create a financial system everyone can participate in.

With growth as the top priority...

The business is seeking curious, growth-minded thinkers to help shape our vision, structures and systems; playing a key-role as we launch into our ambitious future.

If you’re invigorated by our mission, values, and drive to change the world we’d love to have you apply.

About the team + role

Robinhood’s Security, Privacy and Corporate Engineering organization is seeking an experienced Director of Security Risk Management and Enterprise Resilience to lead our efforts in overseeing security risk management and policy governance, ensuring regulatory compliance, and improving our enterprise resilience.

This pivotal leadership role will coordinate our strategic response to security challenges, lead all aspects of policy and exception management, and ensure robust business continuity and disaster recovery frameworks are in place and operationalized.

As a key member of the leadership team, this role will provide crucial insights surrounding the company’s security risk posture and reports directly to the CSO.

The role is located in the office location(s) listed on this job description which will align with our in-office working environment.

Please connect with your recruiter for more information regarding our in-office philosophy and expectations.

What you’ll do

Security Risk Management :

  • Establish and maintain a comprehensive risk management framework, leading from the front in risk assessment activities and mitigation strategy development.
  • Be responsible for the handling of high-stakes risk mitigation efforts, ensuring alignment with business objectives.
  • Elevate critical risks to the board and senior management, preparing detailed reports and strategic recommendations while leading key discussions.

Regulatory Response & Compliance :

  • Lead a team in developing and implementing the organization’s regulatory response strategy, actively participating in critical discussions and reviews to ensure compliance with legal and regulatory standards.
  • Facilitate cross-functional collaboration among legal, compliance, and operational teams to adapt to regulatory changes and audits efficiently.
  • Champion proactive compliance initiatives, stepping in to guide complex compliance issues and strategic planning sessions.

Policy and Exception Management :

  • Direct the creation and enforcement of security policies, actively engaging in the drafting, vetting, and rollout phases to ensure robustness and applicability.
  • Supervise the policy exception process, with decision making authority in high-risk or high-impact decisions to lead and mitigate potential threats effectively.
  • Cultivate a security-aware culture, providing leadership and direct involvement in training and awareness campaigns.

Enterprise Resilience :

  • Lead the development and continuous improvement of business continuity and disaster recovery plans, actively participating in simulations and drills.
  • Collaborate closely with various department heads to strengthen the resilience of operational and IT systems, directly troubleshooting and strategizing in critical areas.
  • Engage hands-on in the evaluation and enhancement of resilience measures to ensure they meet the evolving needs of the business.

Leadership & Team Management :

  • Lead an impactful risk and resilience team, setting clear goals and expectations while actively supporting their professional development and daily challenges.
  • Create an environment of shared knowledge and mutual support, stepping in to resolve conflicts and facilitate collaboration.
  • Demonstrate leadership through hands-on involvement in critical projects and pivotal initiatives, setting a standard for commitment and excellence.

Board Reporting & Stakeholder Engagement :

  • Develop high-impact security presentations for the board, personally driving the creation of content and essential messaging.
  • Serve as the primary liaison for security matters with internal and external partners, engaging directly in negotiations and critical communications.
  • Lead by example in external engagements, representing the organization in industry forums and regulatory discussions, and forging strong relationships with key partners.

These responsibilities emphasize a balance between strategic leadership and hands-on involvement, ensuring that the Director of Security Risk Management is not only a guiding force but also an active participant in critical activities

What you bring

  • A minimum of 10 years of experience in a senior security role with a strong focus on risk management, policy development, and enterprise resilience.
  • A minimum of 5 years of experience directly engaging with financial regulatory organizations
  • Demonstrated leadership experience with the ability to lead and inspire a team.
  • Consistent track record in developing and implementing comprehensive security risk management and governance programs.
  • Excellent communication and interpersonal skills, capable of working with executive-level stakeholders and board members.
  • Deep understanding of global security regulations, compliance frameworks, and industry standards.
  • Professional certifications such as CISSP, CISM, CRISC, or similar.
  • Experience in a highly regulated environment and / or public companies.
  • Experience with off-the-shelf GRC and program management tools (e.g., Jira)

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this to notify our team.

The form should only be completed if you need a specific accommodation.

Click to learn more about available Benefits, which vary by region and Robinhood entity.

We’re looking for more growth-minded and collaborative people to be a part of our journey in democratizing finance for all.

If you’re ready to give 100% in helping us achieve our mission we’d love to have you apply even if you feel unsure about whether you meet every single requirement in this posting.

At Robinhood, we're looking for people invigorated by our mission, values, and drive to change the world, not just those who simply check off all the boxes.

Robinhood embraces a diversity of backgrounds and experiences and provides equal opportunity for all applicants and employees.

We are dedicated to building a company that represents a variety of backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better our work (and work environment) will be for everyone.

Additionally, Robinhood provides reasonable accommodations for candidates on request and respects applicants' privacy rights.

Please review the specific applicable to the country where you are applying.

30+ days ago
Related jobs
Manulife
Toronto, Ontario

The team performs security assessments for new technologies and new projects, in addition to performing an assurance function to ensure ETS comply with company and regulatory security requirements. At least 10 years of working experience in the information security areas including cloud security, ne...

S.i. Systems
Toronto, Ontario

Conduct cyber risk assessments on new and existing technical solutions to identify security risks and control gaps. Collaborate with security and technical teams to ensure security requirements and risks, including potential mitigations, are understood. Experience with risk management and security c...

SSRG Scarlet Security & Risk Group
statewide, AB, CAN

Scarlet Security and Risk Group (SSRG) specializes in providing integrated security solutions to customers across Canada. We provide innovative and value-based security solutions to customers in several markets. Shifts are 12 hours long and include both day and night shifts. Valid Standard First Aid...

CPP Investments
Toronto, Ontario

Reporting directly to the Managing Director, Head of Information & Corporate Security, the Director, Information and Cyber Security Strategy & Operations, will work closely with the Information & Corporate Security Leadership (Technology & Cyber Risk, Security Operations, Security Architecture, Corp...

Control Risks
Toronto, Ontario

The Associate Director, being based in Toronto, will be expected to have a Canadian network and prioritize business development efforts, including developing new clients and expanding existing relationships, spotting client opportunities for the Business Intelligence North America (BINA) team and be...

Healthcare of Ontario Pension Plan
Toronto, Ontario

Reporting to the Senior Director, Model Validation and Risk Analytics the Director will be responsible for the oversight of valuation models that underpin market, credit and liquidity risk measurement with models covering all derivatives, credit, fixed income and equity instruments, as well as alter...

0000050007 Royal Bank of Canada
Toronto, Ontario

Our vision is to empower development, create efficiencies, and alleviate pressure, time and effort that would otherwise be spent on security and risk management by being the face between the enterprise and ventures technology teams in this space. Generate and manage risk reports and dashboards that ...

Scotiabank
Toronto, Ontario

As a Senior Audit Manager, you will support the Director, Emerging Risk & Cyber Security Audit by planning and executing risk-based technical audits, across Cyber Security, Technology Infrastructure, Cloud and Digital Banking (web and mobile applications), to provide opinions on the effectiveness of...

RBC - Royal Bank
Toronto, Ontario

Coordinate and perform all aspects of controls and processes related to the boundary between the Trading and Banking Book, which may include:Prescriptive and presumptive treatment of trading book instruments;Monitoring of Equity Investment in Funds (EIF);Reassignment of instruments between the Tradi...

KPMG-Canada
Toronto, Ontario

Sound knowledge of the Acts, Regulations, Rules, regulatory frameworks and standards, and relevant policy and procedures and ability to interpret and apply to justice & security transformation considerations and initiatives. Hands on Justice & Security sector experience, with strong relationships wi...