Director, Information Security
D2L
D2L is a cloud company that is modernizing education and building the Future of Work. The old models of teaching and learning are in the midst of the largest transformation in history, and D2L is at the heart of that fundamental shift.
New models of teaching and learning enable a personalized, student-centric experience – and deliver improved retention, engagement, satisfaction, and results for learners of all ages – in schools, campuses, and companies.
D2L is disrupting the way the world learns, by providing the next generation learning environment and solutions to engage and inspire learners. And most importantly, by giving customers a platform that is easy, flexible, and smart. No other company provides a solution as robust and innovative as D2L.
D2L has had a singular mission for 25 years and is dedicated to that same mission in the years ahead: to transform the way the world learns – and by doing so, we will help improve human potential globally.
A member of our Talent Acquisition team reviews ALL of our applications - yes a real person reviews resumes! They are excited to read more about what amazing things you could add to D2L.
JOB SUMMARY:
As the Information Security Leader, you are a key leader in establishing, refining and executing on D2L's security and compliance programs with the mandate to improve the security posture of D2L.
HOW WILL I MAKE AN IMPACT?
- Be the central point of contact for all things Information Security related at D2L.
- Together with your team, provide Security services to the rest of D2L to enable and empower them in maintaining and improving D2L’s collective Security Posture.
- Assist in refining and delivering D2L's Security program and ensuring close alignment between D2L's compliance and risk program.
- Promote a culture of security awareness through general advocacy, training and knowledge campaigns across the organization.
- Manage the performance and efficacy of the security team through active coaching and investment in individual skills and career development.
- We work daily to enhance our defenses and actively anticipate potential threats to ensure we are protecting the confidentiality, integrity and availability of D2L services and data.
- Our solutions are heavily focused on the native AWS and Azure technology stacks while also making use of a variety of supporting technologies such as Terraform, Cloud Formation, and Jenkins.
- We continually experiment and deploy improvements to our tooling, processes and people to improve our security posture.
- Our current compliance coverage and road map includes ISO27001/17/18; CSAE 3416/SSAE16; SOC1/2/3; NIST
WHAT IS D2L LOOKING FOR FROM ME?
- Competencies:
- You have a passion for exploring modern technologies and patterns to maintain the confidentiality, integrity and availability of our services and data and protect D2L's intellectual property.
- You are excited at the prospect of rolling up your sleeves and getting your hands dirty.
- You have excellent written and verbal communication skills, including demonstrated ability to communicate with senior management.
- Quickly adapts to evolving security threats and compliance requirements
- Applies strong analytical and problem-solving skills to address security challenges.
- Takes a strategic approach to security planning, aligning initiatives with organizational objectives.
- Skills
- You have a broad and up-to-date understanding of the latest security threats, trends and technologies.
- Implements automated security measures to enhance efficiency and effectiveness.
- Demonstrated skill in responding to security incidents in a cloud environment.
- You have experience building, managing and securing large enterprise, web scale and serverless environments.
- You have an understanding of AWS and Azure services including the compliance, management and security related services.
Suggested Qualifications/Experience:
- In-depth knowledge of ISO27001/17/18, CSAE 3416/SSAE16, SOC1/2/3 and NIST.
- Extensive experience with AWS and expertise in native AWS security features.
- Commitment to enhancing security processes, tooling, and personnel.
- Proven ability to anticipate and proactively address potential security threats.
The expected base salary range for a new hire in this role is listed below. The annualized base salary offered is determined by each candidate’s relevant knowledge, skills, education, training and experience. It is aligned to ensure both internal and external competitiveness using market data for the geographic location and industry. As part of the total compensation at D2L the role may be eligible for additional benefits including a Wellness Subsidy, Equity Grants, Variable Incentive, and more.
Don’t meet every single requirement? We strongly encourage you to still apply! At D2L, we are committed to creating a diverse and inclusive environment. We encourage your application even if you don't believe you meet every single qualification outlined, because we love to help our people grow and develop!
Why we're awesome:
At D2L, we are dedicated to providing you with the tools to do the best work of your life. While some of our perks and benefits may vary depending on location or employment type, we are proud to provide employees with the following through #LifeAtD2L:
- Impactful work transforming the way the world learns
- Flexible work arrangements
- Learning and Growth opportunities
- Tuition reimbursement of up to $4,000 CAD for continuing education through our Catch the Wave Program
- 2 Paid Days off for Catch the Wave related activities like exams or final assignments
- Employee wellbeing (Access to mental health services, EFAP program, financial planning and more)
- Retirement planning
- 2 Paid Volunteer Days
- Competitive Benefits Package
- Home Internet Reimbursements
- Employee Referral Program
- Wellness Reimbursement
- Employee Recognition
- Social Events
- Dog Friendly Offices at our HQ in Kitchener, Winnipeg, Vancouver and Melbourne.
