AVP, Advanced Security Analytics and Automation

You are as unique as your background, experience and point of view. Here, you'll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do.

Discover how you can make a difference in the lives of individuals, families and communities around the world.

Sun Life is seeking a highly experienced and strategic leader to establish and direct a centralized function that addresses emerging and intersecting threats related to Cyber Security and Fraud. This newly created role will lead Information Security's data and forensic capabilities, transforming disparate security and transactional data into actionable intelligence that protects the organization's digital assets, financial integrity, and customer trust.

This position will establish a unified defense shield that enables proactive detection of fraud, internal/external threats, and risk mitigation through data, analytics, and Machine Learning (ML) / Artificial Intelligence (AI), directly impacting the bottom line by minimizing financial and reducing mean-time-to-detect and mean-time-to-respond metrics.

• Translate the overall Advanced Analytics, SIEM, and Account Take Over (ATO) / Fraud strategy into executable roadmaps and operational plans aligned with enterprise business goals
• Establish and operate an Operating Model supporting identification of security and fraud incidents with continuous feedback loops for faster detections
• Champion a multilayered functional and system architecture providing investigative and forensic insights in real-time environments
• Drive innovative thinking to add value through comprehensive understanding of fraud, internal/external threats, risk mitigation, and security incident management
• Create long-term plans to carry out functional and cross-functional objectives, developing budgets for multiple departments and forecasting organizational needs

• Define the strategic roadmap for advanced security analytics, focusing on ML model deployment for anomalous and malicious activity detection, User and Entity Behavior Analytics (UEBA), and predictive risk scoring
• Ensure stability, performance, and log source coverage of the SIEM platform, including data ingestion pipeline management and cost-optimization initiatives
• Manage reliability, completeness, and cost-effectiveness of log ingestion, prioritizing data quality and normalization
• Integrate planning of advanced analytics with various security and business fraud teams to deliver proactive and near real-time intelligence
• Strategize scalable platforms and integrate advanced analytics (AI/ML) into detection pipelines

• Establish and operate a best-in-class Global Fusion Center delivering peak efficiency with low Mean-Time-to-Detect (MTTD) and Mean-Time-to-Respond (MTTR)
• Integrate intelligence across cyber security, fraud, financial crime, third-party risk, insider threat, and geopolitical risk
• Own proactive identification processes and conduct regular tabletop exercises and post-mortem analysis for continuous refinement
• Ensure streamlined processes across security and business fraud teams for and loss reduction
• Maintain operational and capital budgets for all associated programs, ensuring optimal resource allocation for maximum ROI

• Integrate security and advanced analytics capabilities into enterprise-wide fraud prevention processes
• Shift focus toward near real-time detection of account takeover (ATO) and fraud
• Oversee performance and tuning of fraud detection models ( ML / AI ) for internal and external actors
• Provide oversight to identify new data sources and features that improve fraud catch rates without impacting legitimate customer transactions
• Directly mitigate risks including external cyber threats, financial frauds, insider threats, revenue loss, and fragmented reporting

• Directly lead, manage, and mentor leads of the Advanced Analytics, SIEM Engineering, and Global Fusion Center teams
• Foster a culture of continuous improvement, innovation, and cross-functional collaboration
• Develop enterprise leadership talent with expertise in Advanced Analytics, SIEM management, and Global Fusion Center operations
• Manage day-to-day work using digital enterprise agile methodology with agile teams

• Serve as central liaison for key internal stakeholders across Markets, Business Units (Canada GB, GRS, Advisors), Corporate Fraud Risk Management, HR, Security Risk and Crisis Management, Digital, DBTS, Risk, Legal, and Compliance
• Manage communications with senior leadership and…