Senior Specialist, Cyber Security Policy
Location: Toronto, ON
Employment Type: Full-Time
About the Role
We are seeking a Senior Specialist, Cyber Security Policy to lead the development, maintenance, and enforcement of cybersecurity policies that align with retail and banking industry frameworks, including PCI DSS and NIST. This role acts as a strategic bridge between Engineering, IT, and Security teams, ensuring that system configurations and change management processes are accurately reflected in policy updates and compliance efforts.
Key Responsibilities
- Develop, update, and maintain cybersecurity policies, standards, and procedures aligned with PCI DSS, NIST CSF, and banking regulations.
- Collaborate with Engineering and IT teams to document system configurations and change management workflows for policy integration.
- Ensure policy adherence across the organisation, working closely with embedded security teams, compliance officers, and senior leadership.
- Conduct periodic reviews of cybersecurity policies to reflect evolving threats, regulatory changes, and industry best practices.
- Serve as the subject matter expert on cybersecurity policy, governance, and risk management.
- Support internal and external audits by ensuring policy documentation meets compliance and evidence requirements.
- Promote awareness of cybersecurity policies and contribute to training initiatives that reinforce compliance.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
- CISSP certification preferred; other relevant certifications (e.g., CISM, CISA, CAP, PCI Professional) are a plus.
- Proven experience in developing and managing cybersecurity policies in retail and banking environments.
- Deep understanding of PCI DSS requirements and their application across business and IT domains.
- Familiarity with NIST CSF, OSFI B-13, and other regulatory frameworks relevant to financial services.
- Strong analytical, communication, and stakeholder engagement skills.
- Experience supporting audits and managing evidence for compliance reporting (e.g., RoC, SAQ).
Why Join Us?
- Be part of a mission-driven team shaping cybersecurity policy in a dynamic financial environment.
- Work cross-functionally with engineering, IT, and compliance leaders.
- Influence strategic decisions and contribute to a culture of security and resilience
The pay range that the employer reasonably expects to pay for this position is between CA$106.00 and CA$85,000
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures