Director of IT Security (Remote Canada)
WFA Digital Insight
The demand for skilled IT security professionals has surged in recent years, with the global cybersecurity market projected to reach $300 billion by 2025. Directive, a leading B2B marketing agency, is seeking a seasoned Director of IT Security to spearhead its cybersecurity efforts. As a key player in this role, you will develop and execute the company's information security strategy, ensuring the protection of sensitive data and business operations. With the rise of remote work, cybersecurity has become a top priority for companies, and this role offers a unique opportunity to make a significant impact. Before applying, candidates should be aware of the evolving cyber threats and the importance of staying ahead of the curve in this field.
Job Description
About the Role
The Director of IT Security role at Directive is a critical position that requires a seasoned professional with expertise in cybersecurity, risk management, and compliance. As the leader of the IT security team, you will be responsible for developing and executing the company's information security strategy, ensuring the protection of sensitive data and business operations. You will work closely with the leadership team to embed security into every aspect of the business, enabling continued growth and innovation.The ideal candidate will have a deep understanding of cybersecurity threats, risk management, and compliance initiatives. You will be responsible for conducting ongoing enterprise-wide cybersecurity risk assessments, building and maintaining the organization's cybersecurity risk register, and leading vulnerability management efforts. You will also partner with department leaders to ensure security is integrated into business operations and decision-making.
Directive is a fully remote company, operating in the United States, Canada, Mexico, and the United Kingdom. As the Director of IT Security, you will be responsible for leading the company's information security strategy across these regions, protecting the people, client data, business operations, and technology ecosystem from evolving cyber threats.
What You Will Do
- Develop and execute the company's information security strategy and scalable security roadmap
- Establish and maintain enterprise security policies, standards, and governance frameworks
- Present cybersecurity risks, recommendations, and security metrics to executive leadership
- Partner with department leaders to ensure security is integrated into business operations and decision-making
- Conduct ongoing enterprise-wide cybersecurity risk assessments across infrastructure, endpoints, applications, and business processes
- Build and maintain the organization's cybersecurity risk register and remediation roadmap
- Lead vulnerability management efforts and prioritize remediation based on business risk
- Perform third-party vendor security assessments and ongoing vendor risk management
- Configure and enforce data governance policies across distributed tools to prevent data silos
- Manage device security policies using MDM software to protect company assets
What We Are Looking For
- 8+ years of experience in IT security, with a focus on cybersecurity, risk management, and compliance
- Proven track record of developing and executing information security strategies
- Strong understanding of cybersecurity threats, risk management, and compliance initiatives
- Experience with security frameworks, such as NIST, ISO 27001, and SOC 2
- Strong leadership and communication skills, with the ability to partner with department leaders and executive leadership
- Experience with vulnerability management, penetration testing, and incident response
- Strong analytical and problem-solving skills, with the ability to think critically and outside the box
- Experience with cloud-based security solutions, such as AWS, Azure, or Google Cloud
Nice to Have
- Experience with Salesforce security and compliance
- Certification in IT security, such as CISSP, CISM, or CEH
- Experience with artificial intelligence and machine learning-based security solutions
- Knowledge of Canadian data protection regulations, such as PIPEDA
Benefits and Perks
- Competitive salary and benefits package
- Opportunity to work with a leading B2B marketing agency
- Fully remote work environment, with the ability to work from anywhere
- Professional development opportunities, with a focus on IT security and cybersecurity
- Access to cutting-edge security tools and technologies
- Collaborative and dynamic work environment, with a team of experienced IT security professionals
How to Stand Out
- Ensure you have a strong understanding of cybersecurity threats, risk management, and compliance initiatives before applying for this role.
- Develop a comprehensive portfolio that showcases your experience in IT security, including any relevant certifications or training.
- Be prepared to discuss your experience with security frameworks, such as NIST, ISO 27001, and SOC 2, and how you have applied them in previous roles.
- Highlight your leadership and communication skills, and provide examples of how you have partnered with department leaders and executive leadership in previous roles.
- Research Directive's company culture and values, and be prepared to discuss how you align with them.
- Consider obtaining certifications, such as CISSP, CISM, or CEH, to demonstrate your expertise in IT security and increase your chances of standing out as a candidate.
This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.