AVP, Security Strategy and Research
Apply NowCompany: Annex Consulting Group
Location: London, ON N5W 6H3
Description:
We are looking for an AVP, Security Strategy and Research
In today's rapidly evolving digital landscape, a robust security strategy is vital for protecting business operations, enabling innovation, and staying ahead of emerging threats. The AVP, Security Strategy and Research plays a key leadership role in crafting and evangelising a comprehensive information security strategy that aligns with the business strategy and technology objectives.
Reporting to the VP, Business Information Security Officer, you will leverage the industry research to shape our security trajectory, balancing visionary thinking and practical execution. You will act as both a strategic guide and inspiring spokesperson, effectively articulating our evolving security journey to stakeholders across the company and the industry at large.
What you will do
Develop and communicate a comprehensive information security and technology risk strategy that aligns with business strategy, technology objectives and industry advancements
Craft and maintain a strategic security roadmap in partnership with the Security and Tech Risk leadership team, ensuring alignment with the enterprise reference architecture, business priorities and emerging threats
Collaborate with Enterprise Architecture and security leaders to recommend actionable security insights into strategic business and technology initiatives
Enable a culture of continuous learning and improvement within the security and tech risk function by providing actionable industry insights and thought leadership to advance security capabilities
Evangelize our security journey, translating complex security concepts into compelling narratives that inspire adoption, drive alignment, and demonstrate business value
Lead security research efforts on emerging threats, industry trends, and innovations, ensuring the organization is well-positioned for the future
Manage and utilize industry research subscriptions and partnerships to aggregate and disseminate relevant content for technical and business audiences
Stay ahead of emerging threats, technologies, and regulatory changes to provide strategic insights and innovative solutions
Evaluate emerging security technologies and framework, providing recommendations for adoption
Create executive-level presentations, whitepapers, and briefings to communicate security strategies effectively
Represent Company in industry forums, conferences, and working groups, sharing thought leadership and influencing security best practices
Build and lead a high-performing strategy and research team, providing mentorship and fostering continuous learning and improvement
`
What you will bring
Advanced degree in Information Security, Computer Science, or a related field preferred
10+ years of experience in cybersecurity, technology risk, or related fields, with strong track record of crafting security strategy in large, complex organization
Relevant certifications such as CISSP, CISM, TOGAF, SABSA or equivalent
In-depth knowledge of security frameworks, emerging threats, and risk mitigation strategies
Familiarity with regulatory and compliance requirements in financial services
Deep understanding of emerging security technologies and paradigm shifts such as cloud security, Zero Trust, AI security, quantum computing risks, and other evolving technologies
Excellent communication and advocacy skills, with the ability to translate complex security concepts into compelling narratives for technical and executive audiences
Excellent written and verbal communication skills across all organizational levels
Experience representing an organization in industry forums, speaking at conferences, or contributing to publications
Strong analytical skills to assess the viability of emerging technologies and frameworks
Proven ability to conduct security research and translate findings into strategic recommendations
Ability to work effectively with diverse teams and personalities, adapting management styles to achieve mutually beneficial outcomes
In today's rapidly evolving digital landscape, a robust security strategy is vital for protecting business operations, enabling innovation, and staying ahead of emerging threats. The AVP, Security Strategy and Research plays a key leadership role in crafting and evangelising a comprehensive information security strategy that aligns with the business strategy and technology objectives.
Reporting to the VP, Business Information Security Officer, you will leverage the industry research to shape our security trajectory, balancing visionary thinking and practical execution. You will act as both a strategic guide and inspiring spokesperson, effectively articulating our evolving security journey to stakeholders across the company and the industry at large.
What you will do
Develop and communicate a comprehensive information security and technology risk strategy that aligns with business strategy, technology objectives and industry advancements
Craft and maintain a strategic security roadmap in partnership with the Security and Tech Risk leadership team, ensuring alignment with the enterprise reference architecture, business priorities and emerging threats
Collaborate with Enterprise Architecture and security leaders to recommend actionable security insights into strategic business and technology initiatives
Enable a culture of continuous learning and improvement within the security and tech risk function by providing actionable industry insights and thought leadership to advance security capabilities
Evangelize our security journey, translating complex security concepts into compelling narratives that inspire adoption, drive alignment, and demonstrate business value
Lead security research efforts on emerging threats, industry trends, and innovations, ensuring the organization is well-positioned for the future
Manage and utilize industry research subscriptions and partnerships to aggregate and disseminate relevant content for technical and business audiences
Stay ahead of emerging threats, technologies, and regulatory changes to provide strategic insights and innovative solutions
Evaluate emerging security technologies and framework, providing recommendations for adoption
Create executive-level presentations, whitepapers, and briefings to communicate security strategies effectively
Represent Company in industry forums, conferences, and working groups, sharing thought leadership and influencing security best practices
Build and lead a high-performing strategy and research team, providing mentorship and fostering continuous learning and improvement
`
What you will bring
Advanced degree in Information Security, Computer Science, or a related field preferred
10+ years of experience in cybersecurity, technology risk, or related fields, with strong track record of crafting security strategy in large, complex organization
Relevant certifications such as CISSP, CISM, TOGAF, SABSA or equivalent
In-depth knowledge of security frameworks, emerging threats, and risk mitigation strategies
Familiarity with regulatory and compliance requirements in financial services
Deep understanding of emerging security technologies and paradigm shifts such as cloud security, Zero Trust, AI security, quantum computing risks, and other evolving technologies
Excellent communication and advocacy skills, with the ability to translate complex security concepts into compelling narratives for technical and executive audiences
Excellent written and verbal communication skills across all organizational levels
Experience representing an organization in industry forums, speaking at conferences, or contributing to publications
Strong analytical skills to assess the viability of emerging technologies and frameworks
Proven ability to conduct security research and translate findings into strategic recommendations
Ability to work effectively with diverse teams and personalities, adapting management styles to achieve mutually beneficial outcomes