Provide support to Sun Life Business Group through conducting information security risk assessments
Review contracts to ensure inclusion of security requirements
Perform supplier/third-party risk assessments
Advise on security best practices
Assess initiatives/projects to ensure implementation controls aligns with Sun Life Information Security policies and directive requirements
Provide security consulting to ensure appropriate security controls are in place to safeguard and protect Sun Life confidential information
Provide reporting to management team on status of information security risk assessments, identified risks, and current work activities
Track and manage open information security risks
Work with respective business and/or technology risk owner to ensure risk remediation

Minimum of at least 3+ years experience in Information Security and Information Technology (IT)
In-depth knowledge of information security and IT principles, protocols, practices, and industry standards
Experience conducting information security risk assessments, including of cloud-based (SaaS) technologies, e.g. AWS and Azure
Strong understanding of existing and emerging information security technologies
Familiarity with contract wording and interpretation of security clauses
University degree or college diploma in Computer Science, Engineering, Information Technology, Information Security and Risk Management or comparable professional education/training in a field relevant to IT Security management
Professional designation relating to Information Security preferred. (e.g., CISSP, CCSP, CISM, CISA)

Wellness programs that support the three pillars of your health – mental, physical, and financial
The opportunity to move along a variety of career paths with amazing networking potential
Flexible work arrangements as a hybrid organization
Professional development
2025 Best Workplaces in Ontario by Great Place to Work® Canada recognition

Information Security Advisor

Key skills