Risk and Compliance Team Lead
New
CanadaFull-TimeLead
SalaryCompetitive salary range of $100,000–$120,000 per year, based on experience.
Apply NowOpens the employer's application page
Job Details
- Experience
- 6+ years
- Required Skills
- CybersecurityComplianceRisk Management
Requirements
- 6+ years of experience in privacy, cybersecurity, compliance, or risk management roles within a technical or SaaS environment.
- Proven experience leading a team or functional area, with responsibility for coaching, prioritization, and performance management.
- Strong understanding of Canadian privacy laws and international data protection regulations (e.g., PIPEDA, GDPR).
- Experience with security and compliance frameworks such as SOC 2, PCI DSS, and related audit processes.
- Ability to operate in both strategic and hands-on capacities, balancing leadership with direct execution.
- Strong analytical and problem-solving skills with the ability to assess and improve complex systems and processes.
- Excellent communication and stakeholder management skills, including the ability to present to technical and non-technical audiences.
- Experience working across engineering, product, and operations teams to drive alignment and implementation.
- Familiarity with IT systems, Microsoft 365, and modern SaaS environments.
- Relevant certifications such as CIPP/C, CIPM, PMP, or cybersecurity credentials are considered a strong advantage.
Responsibilities
- Lead the risk and compliance function by setting direction, priorities, and structure to ensure effective execution of all related initiatives.
- Identify, assess, and mitigate operational, technical, and data privacy risks in collaboration with cross-functional teams.
- Build, maintain, and continuously improve compliance frameworks, policies, and processes aligned with regulatory requirements such as PIPEDA, GDPR, COPPA, SOC 2, and PCI DSS.
- Oversee and support security and compliance audits, including coordination of third-party assessments and internal evaluations.
- Manage incident response activities, including investigation, documentation, communication, and remediation efforts.
- Collaborate with engineering, product, and operational teams to strengthen security controls and ensure compliance is embedded into workflows.
- Prepare and deliver clear reporting on risk posture, compliance status, and audit outcomes to internal and external stakeholders.
- Lead training and awareness initiatives to build a strong culture of security, privacy, and compliance across the organization.
- Provide leadership, mentorship, and development support to team members while fostering accountability and high performance.
- Act as a key point of contact for clients, auditors, and vendors regarding security and compliance requirements.
View Full Description & ApplyYou'll be redirected to the employer's site