Director, Information Security

Aecon • Toronto, Ontario, Canada • Posted March 19, 2026

Location Toronto, Ontario

Job Type Full-time

Category Computer Occupations

Posted March 19, 2026

What is the Opportunity?
The Director, Information Security is responsible for managing the Governance, Risk & Compliance (GRC) and Information Security Architecture and Operations functions. This role ensures alignment to overall strategy, drives operational excellence, and constantly advances enterprise security maturity. This role reports to the VP, Information Security and influences senior stakeholders across IT, Legal, Privacy, and other business units.
What You’ll Do Here:

Governance, Risk & Compliance
Own enterprise security policy framework and risk management program aligned to NIST CSF and ISO 27001.

Oversee audits, regulatory assessments, and third-party risk management.

Ensures organizational compliance with CMMC 2.0 (US), CPCSC (Canada) and all other relevant security frameworks/regulations.

Oversee multiple external /internal IT audits including SOC 2, SOC 1, ITGC and Swift....
            

Interested in this role?

Click the button below to start your application.

Apply Now