22 Data Protection jobs in Canada

Job Description

Who we are : Founded in 2001, Vivid Seats (NASDAQ: SEAT) is a leading online ticket marketplace committed to becoming the ultimate partner for connecting fans to the live events, artists, and teams they love. We believe in the power of experiences and are fiercely dedicated to building products that inspire human connections. Named as one of Built In's top places to work in 2025 , we believe that our People are our greatest competitive advantage. To support our People, we have built a company culture that empowers our employees to embrace challenges, encourages unity through collaboration, and seeks to constantly evolve by leveraging data and inspiring innovation.

We believe in harnessing emerging technology to power performance and unlock creativity. As part of our culture of innovation, we actively embrace the use of AI tools to enhance decision-making, improve workflows, and produce better outcomes for our customers.

The Opportunity:

The Manager, Information Security is responsible for leading the design and integration of information security into key areas of the Vivid Seats business. This role is critical in ensuring that security is baked in up front to ensure that information assets and associated information systems are adequately protected in the digital ecosystem in which Vivid Seats operates. This role partners with platform engineering teams to drive security practices and principles related to cloud-based infrastructure, software engineering teams to drive security practices and principles into a fast-paced Agile development cycle and product owners to understand business requirements and landscape.

In addition to bringing Information Security best practices, you will help develop a collaborative, cross-disciplinary and high-performing team while overseeing and improving organizational design, structure, priorities, management processes and reporting information systems. You will be responsible for coordinating project efforts, while building productive, value-added partnerships with vendors. You will also be integral in building an engaged Vivid Seats corporate security culture. "How" results are achieved will be as important as "what" is achieved.

How your role expectations will progress as a Manager, Information Security in the first 30, 90, and 180 days:

30 days in

• Acclimate to Vivid Seats' values and organizational goals to understand how your department drives initiatives forward.
• Understand the team' contributions and the needs of stakeholders that rely on your deliverables to bring business objectives to life.
• Partner with Director, Information Security, Engineering and Product leaders to align on technology vision and roadmap.
• Meet with and begin regular 1:1s with team members to understand their motivations, strengths, and areas you can support them with.

60 days in

• Align with team members to achieve personal and functional goals that correlate to department objectives.
• Develop and lead initiatives for the team that enhance process, drive innovation, and build on Vivid Seats values.
• Strategically drive the Information Security operational metrics by refining the technical roadmap and/or processes as required.
• Identify within the team how ways of working can be improved with the objective of increasing velocity and results.
• Build trust and relationships with team and key stakeholders including executives

90 days in

• Monitor and evolve team deliverables, individual goals, and overall performance to ensure alignment with broader initiatives of your department and the organization
• Collaborate with stakeholders to confirm accurate prioritization and refine processes for collaboration and best practices.
• Meaningfully contribute to department roadmap exercises that balance current needs with future strategic initiatives.
• Be a thought leader for Information Security within the company, supporting and influencing other verticals in the business.

What You'll Bring:

• 8+ years of combined experience in information security and technology with expertise in secure cloud and/or web applications in an e-commerce environment.
• 3 years of experience leading a team and people management.
• Extensive knowledge of current and emerging IT security technologies and techniques covering all levels of cloud and applications.
• Strong business acumen with the ability to drive information security initiatives with a business-first mindset, ensuring alignment with Vivid Seats' goals of connecting fans to live events and enhancing customer trust.
• Deep understanding of Cloud infrastructure (AWS, GCP, or Azure Cloud) concepts, services and related controls.
• Advanced knowledge of information security concepts and technologies such as SCA, SAST, DAST, IAM, vulnerability management, firewalls, IPS/IDS, network analyzers, proxies, SEIM, SOAR, encryption, cloud-based security control services, WAF, bot mitigation.
• Knowledge of and hands-on experience with multiple architectures and technology elements such as MySQL, n-tier, J2EE, Web Services, React, Browser, Android, iOS, React Native, Node.js, Next.js, JAMstack, AWS, K8s, Microservices / Service Mesh.
• Experience writing and/or testing code and scripts with one or more languages such as Java/JavaScript, Python/Perl/bash/python.
• Experience with two or more (or preferably full-stack technology experience) operating systems, infrastructure & cloud infrastructure, software engineering, technology product or service ownership.
• Deep knowledge of multiple cyber security governance and compliance frameworks such as FISMA, NIST CSF, ISO 27000, PCI, SOX, SOC2.
• Experience delivering training to technology SMEs in other areas.
• Ability to lead large internal security technology projects and security remediation projects with significant dependencies on external IT and product teams.

Location : Toronto, ON

101-30 Duncan St.
Toronto, Ontario M5V 2C3

We believe in a hybrid 3 days/week in-office working model, which provides employees the flexibility to take advantage of in-person and remote collaboration.

Our Commitment:
We are an equal opportunity employer that values the critical importance of a diverse workforce and sense of belonging. Many of our roles have flexible requirements and we encourage you to apply regardless of whether you meet every qualification.

Job Description

Founded in 1974, CMiC today delivers comprehensive and advanced enterprise and field operations solutions, purpose-built for construction and capital projects companies. CMiC’s powerful software transforms how firms optimize productivity, minimize risk and drive growth by planning and managing all financials, projects, resources, and content assets - all from a single database platform.

In the past several years, the construction industry has experienced unprecedented changes driven by new technologies - including integration with multi-dimensional modeling, an explosion of cloud-based offerings and the demand for robust mobile capabilities. CMiC has kept pace by constantly upgrading and enhancing our advanced platform to reflect the changing needs of the industry, leading to significant growth as a company.

Job Overview/Position Summary

The Manager, Information Security will assist the Chief Information Security Officer (CISO) to develop and implement cybersecurity strategies that protect our organization's information assets and those of our customers’. This role requires a good understanding of cybersecurity principles, strong leadership skills, and the ability to collaborate across departments to achieve security goals

Primary Responsibilities:

• Assist in the development, implementation, and management of the organization's cybersecurity strategy.
• Monitor and analyze security threats, vulnerabilities, and incidents to identify risks and mitigate them effectively.
• Assist in the design and enforcement of security policies, standards, and procedures.
• Oversee implementation and evidence collection of the SOC 1 & 2 and ISO 27001 audits
• Collaborate with IT, legal, and other internal stakeholders to ensure alignment with security protocols and regulatory requirements.
• Provide technical and operational guidance in the development and implementation of information security programs.
• Manage security incidents and coordinate incident response efforts, including root cause analysis and remediation.
• Stay current with emerging security trends, technologies, and regulatory changes.
• Report on security metrics and provide updates to senior management and the Information and Privacy Governance Committee.

Other responsibilities

• Responsible for the development and maintenance of disaster recovery and business continuity plans and table top exercises.
• Responsible for regular security reviews and risk assessments to identify and address potential security weaknesses.

Requirements

Education and Experience:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Certified Information Systems Security Professional (CISSP) or other relevant certifications.
• Minimum of 3 years of experience in information security management or a related role.

Skills and Competencies:

• A solid understanding of cybersecurity principles, network security, encryption, and vulnerability management
• Strong understanding of risk management framework and ability to identify, assess, and mitigate risks to the organization's information assets.
• Ability to develop and implement long-term security strategies that align with the organization's goals.

Preferred Qualifications (Optional)

• Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, AICPA Trust Services Criteria) and regulatory requirements.
• Be a self-starter and take ownership of initiatives.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to non-technical stakeholders.
• Proven leadership abilities and experience in managing security team.
• Having IT Operational experience is a bonus.

Work Environment (Optional)

• CMiC has a hybrid work environment. Successful candidate is expected to be in the office one to two days a week.

Benefits

• Competitive benefits Package (including Health & Dental benefits)
• Paid vacation and personal days
• Townhall meetings where all employees are encouraged to participate in open discussions
• Located on York University’s campus, easily accessible by transit (TTC, GO, etc.), walking distance to shopping and restaurants
• Outdoor lunch space, including picnic tables
• An active Social Events Committee (past events include annual seasonal parties, pool and bowling tournaments, karaoke nights, Game nights, BBQs, and more)
• Health and Wellness focus including virtual yoga classes and wellness webinars
• RRSP Matching Program after 2 years of employment
• Experience in a rapidly growing, socially responsible corporation

CMiC is an Equal Opportunity Employer. In accordance with the Accessibility for Ontarians with Disabilities Act, 2005 and the Ontario Human Rights Code, CMiC will provide accommodation to applicants with disabilities throughout the recruitment, selection and/or assessment process. If selected to participate in the recruitment, selection and/or assessment process, please inform Human Resources staff of the nature of any accommodation(s) that you may require.

Job Description

Salary:

Career Opportunity

GeoSpectrum is hiring an Information Security Manager to lead the tactical execution of our Information Security Management System (ISMS), with a strong focus on cyber defense, compliance, and team development. This role is instrumental in shifting the organization toward a proactive security posture, ensuring alignment with CMMC, ISO 27001, and audit standards. The successful candidate will oversee cybersecurity initiatives, implement technical controls, and serve as the primary liaison with external partners and internal stakeholders. This is a high-impact leadership opportunity to build and mentor a growing cyber team while shaping the future of our security operations.

Explore GeoSpectrums Story

GeoSpectrum Technologies is a rapidly growing company that designs and manufactures state of the art underwater acoustic components, transducers and integrated end-to-end systems for maritime surveillance and exploration. GeoSpectrum is known for its innovation and designing leading-edge products.

With clients across ocean science, defence, and oil and gas industries, were proud of delivering reliable, customized solutions that go above and beyond the requirements of our customers.

GeoSpectrum was founded in Dartmouth, Nova Scotia and continues to grow after three decades of engineering. Our companys core values are woven into the fabric of our work, commitment to employee engagement, and client service.

Responsibilities

• Cybersecurity Leadership
  • Serve as the tactical lead for all cybersecurity initiatives, reporting to the VP Operations.
  • Translate strategic security goals into actionable implementation plans.
  • Act as the primary liaison with external partners (e.g., CDW, our parent company) on cybersecurity matters.
  • Represent the organization in ISMC (Information Security Management Committee) meetings and audits.
    
• ISMS Implementation & Governance
  • Maintain and evolve the ISMS documentation, including the Risk Register, Statement of Applicability, and Corrective Action Log.
  • Conduct and coordinate internal audits, risk assessments, and policy reviews.
  • Track and report on KPIs and team competencies to the ISMC.
• Technical Implementation
  • Lead implementation of technical controls such as MFA, network segmentation, privileged access, and endpoint protection.
  • Collaborate with IT and DevOps to ensure secure system architecture and deployment practices.
• Team Building & Mentorship
  • Build and lead a growing cyber team, including potential roles such as Security Analyst, GRC Specialist, and Security Architect.
  • Mentor junior staff and coordinate with IT and QA teams for cross-functional initiatives.
  • Define and evolve the cyber org structure in collaboration with IT leadership.

Qualifications

• Post-secondary education in Software Computer Science, Software Engineering, or related field.
• 10+ years in cybersecurity or information security management.
• Experience with ISO 27001, NIST, CMMC, or similar frameworks.
• Strong understanding of GRC, SOC operations, and audit readiness.
• Proven ability to lead cross-functional teams and manage external vendors.
• Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer are assets.
  

Security Requirements

All candidates must be eligible to apply for and maintain Canadian Controlled Goods and Canadian Government Security Clearances

Explore Our Culture and Benefits

Watch our company video to get to know us! Visit page.

At GeoSpectrum, we take pride in fostering a workplace that based on professional relationships, innovation and continuous improvement, and agile. Our employees work together in a collaborative, cross-functional approach. Enjoy having fun at work? Our social community is next to none! Our leadership team encourages our people to contribute their ideas, insight, and feedback for innovation, continuous improvement, quality management, and workplace safety.

We offer:

• Competitive salary based on experience
• Work-life balance with core hours
• Paid Time Off
• Employee-Family Assistance Program
• Group Plan Benefits
• Virtual Healthcare
• RRSP matching
• Corporate Discounts and perks
• Career development opportunities
• Monthly social activities
• Professional Development and training
• Free on-site parking

GeoSpectrum is committed to employment equity and building a diverse workforce where every employee can bring their best self to work. GeoSpectrum encourages applicants from all qualified individuals, including underrepresented individuals who identify as African Nova Scotian, racially visible, Aboriginal persons, LGBTQIA2S+, persons with disabilities, and women. GeoSpectrum will accommodate applicants' disability-related needs, up to the point of undue hardship, throughout all stages of the recruitment and selection process.If you are a member of one of an equity group, we encourage you to self-identify on either your application form, covering letter, or resume.

Apply Today

While we sincerely thank all applicants for taking the time to apply, however only those chosen for an interview will be contacted.

If you requirea disability-related accommodation in order to participate in the recruitment process, please contact the recruitment team by email