Sr. Consultant, Information Security - Open Banking
Hybrid · Toronto, Ontario, Canada
Job Summary
Sr. Consultant, Information Security - Open Banking: Assess projects for security risks and provide actionable recommendations; build and maintain policies and procedures to safeguard clients and enable risk management; lead cybersecurity risk assessments across banks, fintechs, third-party providers, and shared infrastructure; conduct threat modeling using STRIDE and MITRE ATT&CK; review requirements, architecture diagrams, and solution designs to determine security feasibility; coordinate penetration testing; evaluate API security, consumer consent, identity and authentication flows; communicate risk findings to executive management; mentor peers and drive improvements in security processes; role is hybrid with 1-3 days on-site at Toronto, ON; collaborate with Cyber and Third Party Risk teams.
Required Qualifications
- 8-12 years of experience in Information Security Risk Management, Threat-risk assessments, Vulnerability & Penetration testing, and Threat modelling
- Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Security, Engineering, or Information Systems
- familiarity with cloud computing platforms (Azure and AWS)
- security certifications such as CISSP, CISM, or CISA
- ability to communicate risks to executive management and translate technical risks into business context
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.