Director of Information Security

Loopio is looking for an experienced Director, Information Security who will be the subject matter expert and leadership for all information security related matters. This role will lead, maintain, and evolve Loopio’s existing security controls, procedures, and policies. As a B2B software company selling to the world’s leading enterprises, our customers hold us to the highest standards to keep their data secure.

As an established trusted advisor and the owner of information security for Loopio, your role will span across operational, tactical, and strategic levels of the business and plays a key role in the success of Loopio by ensuring our processes, data, and employees meet the best practices in security. In this role, you will partner with key stakeholders across the business including IT, engineering, legal, and finance.

What You’ll be Doing:

• Evolve and strengthen Loopio’s information security governance structure to align with business priorities and industry best practices.
• Plan, execute, and oversee information security control risk assessments, including the development, reporting, and monitoring of risk treatment plans.
• Lead and mentor members of the Information Security Team, acting as a subject matter expert (SME) to guide professional development, foster collaboration, and build organizational expertise in security.
• Evaluate and enhance internal security controls and policies for compliance with applicable information security laws, regulations, and frameworks, recommending improvements where needed.
• Deliver regular reporting on the information security risk program to the Information Security Management Committee and other senior stakeholders.
• Lead responses to security assessments, questionnaires, and audits from prospects, customers, and third-party partners using the Loopio Platform.
• Partner with internal teams and external consultants on information security risk assessments, third-party audits, and certification efforts.
• Foster a strong culture of security across the organization by managing the information security awareness training program, defining and tracking effectiveness metrics, and driving continuous improvement.
• Bring expertise in AI security and risk management, including assessing emerging threats, advising on secure adoption of AI technologies, and ensuring compliance with evolving regulations and industry standards.

What You’ll Bring to the Team:

• 8+ years of progressive experience in information security and/or risk management, with at least 5 years in a SaaS environment.
• Deep knowledge of SaaS security trends and threats, with a demonstrated passion for staying ahead of the evolving security landscape.
• Experience with AI-related security risks and controls, including governance, compliance considerations, and secure adoption of AI technologies in SaaS environments.
• Proficiency across core information security domains, including risk and control assessments, policy and standards development, secure systems development lifecycle (SDLC), regulatory compliance, access controls, technology resiliency, governance and metrics, incident response, vulnerability management, and data protection.
• Hands-on experience with security, compliance, and regulatory frameworks (e.g., NIST, ISO 27001, GDPR, SOC 2) and associated risk methodologies as they apply to cloud services.
• Practical expertise in security operations processes, including monitoring, vulnerability assessment, intrusion detection/prevention, data loss prevention, and endpoint/malware protection.
• Proven ability to lead and deliver projects to successful completion, from planning through execution and closure.
• Strong customer-facing experience, including presenting to and building trust with customers/prospects, senior leadership and other external stakeholders.
• Exceptional communication skills (written and verbal), with the ability to distill complex concepts into clear, compelling messages for both technical and non-technical audiences.
• Bachelor’s degree in Computer Science, Information Systems, or a related field (or equivalent work experience).
• Relevant professional certifications (e.g., CISSP, CISA, CISM, CDPSE).

Where You’ll Work

• We are currently only looking for candidates who reside in or around the Greater Toronto Area and can access our co-working space in Downtown Toronto for the occasional Corporate Service Team get-together.
• Loopio is a remote-first workplace because we recognize the advantages of working flexibly. We are HQ’d in Canada, with established hub regions around the world where we hire from.
• Our employees (or Loopers, as we call ourselves!) live and work in Canada (British Columbia and Ontario), London, and India (specifically in Gujarat, Maharashtra, and Bengaluru).
• The majority of our team is based in ON and BC, which means these employees live and work remotely within a 300km radius of Toronto (within Ontario) and Vancouver (Within BC).
• We offer flexible co-working locations available to Loopers in ON and BC. Those based in ON have the option of working out of our convenient co-working space located in the heart of Downtown Toronto and a 12-minute walk from Union Station. BC Loopers have the option to work centrally in Vancouver. It is whatever works best for you!
• You’ll collaborate with your teams virtually across the UK, India, and North America (we’re just a Zoom call and Slack message away!) with core sync hours and focus time for headsdown work during the workday
• We encourage asynchronous collaboration to effectively work as a global #OneTeam!

Why You’ll Working at Loopio

• Your manager supports your development by providing ongoing feedback and regular 1-on-1s, we leverage Lattice for our 1:1s and performance conversations
• You will have the opportunity to elevate your craft and the opportunity to explore your creativity, with a dedicated professional mastery allowance for more learning support! We encourage experimentation and innovative thinking to drive business impact.
• We offer a wide range of health and wellness benefits to support your physical and mental well-being, starting day with Loopio.
• We’ll set you up to work remotely with a MacBook laptop , a monthly phone and internet subsidy, and a work-from-home budget to help get your home office all set up.
• You’ll be joining a supportive culture that has thoughtfully built out opportunities for connections in a remote first environment.
• Participate in townhalls, AMA (Ask-Me-Anything), and quarterly celebrations to celebrate the big wins and milestones as #oneteam!
• Our four active Employee Resource Groups offer opportunities for employees to learn and connect year-round.
• You’ll be a part of an award-winning workplace with an opportunity to make a big impact on the business.