Information Protection Advisor

We welcome applications from all qualified job seekers. Should you require any accommodations, including alternative interview formats, assistance with online assessments, or an ASL interpreter, throughout the application or hiring process, please email your request to accessibility_services@icbc.com – we are committed to ensuring an accessible experience for all candidates.

At ICBC, we strive to build diverse teams which reflect the communities we serve. To support this, we’ve created two talent communities for Indigenous Peoples and People with Disabilities.  By joining one of these communities, you’ll connect with our recruitment team who will guide you through the application process and help you explore opportunities at ICBC. Of course, you’re welcome to apply for jobs at ICBC whether or not you join a talent community.

We look forward to hearing from you!

Position Highlights :

ICBC has an exciting opportunity for an experienced Information Protection Advisor to work in our Information Risk Management Department.  As part of this team you will gather electronic evidence to support investigations. You will provide information security governance and compliance services to corporate and divisional projects, conduct risk assessments and penetration tests, and present findings to business risk owners. You will also develop security policies and standards.

To make an immediate contribution, you will draw on your demonstrated experience:

• Gathering electronic evidence to support investigations, including extracting and interpreting systems log files and conducting computer forensics and mobile device forensics.
• Analyzing threats and assessing information security exposures to ICBC's information and ICBC's information technology systems.
• Performing regular pen tests and security tests on ICBC Systems, as well as engaging third parties to perform regular pentests.
• Developing electronic investigation processes and procedures.
• Developing proactive monitoring rules, triaging alerts, and handling incidents.
• Recommending, creating, and updating corporate principles, policies, standards, and procedures related to information security.
• Consulting on corporate and divisional projects as an Information Security Lead, identifying information security risks,communicating with the business owners to establish impact, recommending treatment plans to remain within business risk tolerance, and tracking treatment plans through implementation;
• Collect information security metrics to monitor and enhance the information security program at ICBC.
• Creating information security awareness media, including posters, online communications, blog articles, audio and video recordings, and other media.

Position Requirements :

Key to your success in this role requires you to bring knowledge related to:

• Principles, standards, practices, and tools pertaining to information systems security.
• The ISO/IEC 27000 framework for building Information Security Management Systems.
• BC’s Freedom of Information and Protection of Privacy Act (FIPPA); and e-Discovery and Legal Hold trends and legislation.
• Strong understanding of distributed systems and how they work.
• Incident handling processes and procedures.
• Trends and developments in the information and technology security field.
• Familiarity with SOC and SIEM tools.
• Familiarity with third party audit reports such as SSAE 16, SOC 2
• 3 years of penetration testing experience and a recognized penetration testing certification such as OSCP, CREST or GIAC.

Due to the nature of this position, the successful candidate must meet the Canadian Border Service security clearance requirements of the Enhanced Driver License Program.

It would be considered an asset if your experience is supported by a business or technology degree and if you have industry recognized certifications such as a Certified Information Systems Security Professional (CISSP) and/or a Certified Information Systems Auditor (CISA) and/or a Certified Information Security Management (CISM) designation.

Position Information :

• ICBC provides comprehensive and flexible benefit coverage to all eligible employees including a defined benefit pension plan.
• Three options of health and dental coverage. Two of those options fully paid by ICBC and with access to Flex credits.
• 100% employer paid life insurance, long term disability and travel insurance.
• Sick leave plan – 100% of pay for a period of a maximum of 8 weeks plus 85% of your pay for a subsequent period of up to 9 weeks.
• Additional optional insurance coverages.
• Only candidates legally entitled to work in Canada will be considered for this position.

About us: 

At ICBC, it’s our job to make sure the car insurance system works for all British Columbians, today and in the future. Check out our ICBC Year in Review 2025  to learn more about what we've accomplished! If you want to make the most of your skills and expertise while growing your career, we want you. A career at ICBC is an opportunity to be part of a talented, diverse and inclusive team that is driven to serve its customers and community. You can expect a competitive salary, comprehensive benefits and a collaborative work environment. If you are reliable and dependable, contact us today to be part of our talented and diverse team as we work together to create an insurance system we can all be proud of.

 Our values guide how we interact with customers, partners, and each other. They shape our decisions and create a culture where employees feel inspired and empowered to do their best work.

• Collaborative: We include different perspectives to reach our common goals.
• Supportive: We seek to understand to meet diverse and evolving needs.
• Straightforward: We simplify the complex to make things easier.
• Knowledgeable: We gain knowledge through experience and learning to make informed decisions.

Work arrangements defined: 

• Resident – you will work at your primary in-office headquarters on all scheduled work days.
• Hybrid 8 – you will work a minimum of 8 days in a 4-week period at your primary office headquarters (typically 2 days per week). The remaining days will be remote within British Columbia. 
• Hybrid 10 – you will work a minimum of 10 days in a 4-week period at your primary office headquarters (typically one week in/one week out or up to 3 days per week). The remaining days will be remote within British Columbia. 
• Mobile – you will work a significant amount of time in the field, in addition to working from an office and optionally working remotely within British Columbia. 
• Remote – you will work remotely from within British Columbia, with one required visit to your primary office per month.

#IND1