À TELUS Santé, nous donnons à chacun les moyens de vivre plus sainement. Guidés par notre vision, nous exploitons la puissance de notre technologie de pointe et misons sur l’unicité des personnes pour créer le futur de la santé. En tant que chef de file mondial des services de santé et de bien-être – englobant la santé physique, mentale et financière – TELUS Santé améliore les résultats en matière de santé pour les consommateurs, les patients, les professionnels de la santé, les employeurs et les employés.
Join Our Team and What We'll Accomplish Together
TELUS Health is on a mission to build a healthier future by combining technology, innovation, and compassion. The Retirement and Benefits Solutions team is transforming how organizations manage the financial well-being of their people—delivering secure, scalable, and user-focused administration platforms that support millions of members across North America.
In this role, you won't just manage a project—you'll lead a transformational compliance program that opens doors. You'll guide a large-scale pension and benefits administration platform through NIST 800-53 Moderate compliance, positioning TELUS Health to serve federal agencies and secure government contracts. This is strategic work that directly impacts the organization's growth trajectory and our ability to serve new markets.
You'll work at the intersection of security, technology, and compliance—translating complex regulatory frameworks (NIST 800-53, FedRAMP, ISO 27001, CSA STAR) into clear, actionable implementation plans. You'll partner with Engineering, Security, DevSecOps, and Compliance teams to build a compliant cloud environment from the ground up. Your leadership will ensure that security controls aren't just checked boxes—they're embedded into our architecture, our processes, and our culture.
This is hands-on strategic leadership where your expertise shapes both the technical direction and the organizational capability we build to compete in regulated markets.
Your week will move between big-picture strategy and hands-on execution. Here's what a typical engagement looks like:
NIST 800-53 Compliance Leadership
You'll own the NIST 800-53 Moderate program from initial gap assessment through remediation and into continuous monitoring. You'll coordinate cross-functional teams—Engineering, DevSecOps, Security, and Compliance—to implement NIST 800-53 controls. You'll oversee the creation and maintenance of System Security Plans (SSPs), Plans of Actions & Milestones (POA&Ms), and supporting documentation. As the primary liaison with Third Party Assessment Organizations (3PAOs) and federal sponsor agencies, you'll manage remediation efforts based on audit findings and establish continuous monitoring (ConMon) practices that stick.
Multi-Framework Certification Management
You'll lead project planning, execution, and reporting across multiple cybersecurity frameworks—with NIST 800-53 Moderate as the primary focus. You'll develop and maintain schedules, milestones, deliverables, and dependencies that keep the team aligned. You'll coordinate with internal teams to ensure controls are documented, tested, and evidenced per relevant frameworks. You'll manage documentation creation (Security Assessment Reports, incident response plans, vulnerability management records) and oversee continuous monitoring programs and periodic compliance reviews.
Technical Architecture & Implementation
You'll partner closely with Engineering to ensure technical architecture and security control implementations are aligned with NIST 800-53 baselines. You'll lead the design and validation of identity management, data flows, and API integrations. You'll champion vulnerability management and incident response frameworks, ensuring alignment of data protection mechanisms across the technology stack.
Stakeholder Management & Communication
You'll communicate progress, risks, and dependencies to executive leadership and client stakeholders regularly. You'll prepare status reports, dashboards, and presentations for senior leadership. You'll facilitate executive steering committees and governance forums. You'll liaise with external auditors, cloud service providers, and regulatory bodies. And you'll provide technical mentorship and leadership for compliance best practices across the organization.
Must-Haves
10+ years in IT project management or solution architecture for enterprise or government platforms
Direct hands-on experience managing cybersecurity compliance — OR equivalent regulatory/assurance programs (DoD SRG, ISO 27001, SOC 2, GxP). You know NIST 800-53 documentation, continuous monitoring, 3PAO engagement, SSP and POA&M development inside and out.
PMP or equivalent project management certification
Deep working knowledge of cloud environments (AWS, Azure, GCP) including security control implementation, cloud network/security architecture, identity & access management, encryption, and logging
Strong knowledge of NIST 800-53 controls and continuous monitoring operations
Experience working with Third Party Assessment Organizations, federal compliance bodies, and cloud providers
Excellent communication skills — ability to simplify complex technical and compliance concepts for both technical teams and executive stakeholders
Strategic and hands-on leadership — you're comfortable both setting direction and rolling up your sleeves
Collaborative and adaptable — you thrive in cross-functional environments and can navigate competing priorities
Nice-to-Haves
Master's degree in Computer Science, Information Systems, or Engineering
Cloud certification such as Azure Solutions Architect Expert
CISSP, CISM, CISA, or NIST CSF certification
Experience with CSA STAR, the Cloud Security Alliance's CCM, or other related trust & assurance cloud frameworks
Familiarity with security/privacy/regulatory requirements in pensions, benefits administration, or financial services (PIPEDA, HIPAA, GLBA, state data breach laws, US federal or state agency standards)
Background in pension administration, benefits management, or financial services technology
Experience with GRC tools and conformity reporting
Salary Range: $120,000 - $160,000
Actual total compensation will be determined based on factors such as knowledge, skills, performance and experience. We encourage all qualified candidates to apply, even if the posted salary range doesn't match your expectations. We're open to discussing competitive compensation packages tailored to your experience level and expertise.
TELUS Health offers rewarding benefits, which may vary per job function, such as:
Comprehensive total rewards package highlighting competitive salary and bonus structures, minimum 3 weeks of vacation, and flexible benefits plan to meet the needs of you and your family
Flexibility to work in-office, virtually or a combination of both
Generous company matched pension
Opportunity to give back to communities in which we work, live and serve
Career growth and learning & development opportunities to develop your skills
And much more…
Job Type: This is for a current vacancy.
Purpose-Driven Impact — Work with a team that's genuinely focused on innovation in health and financial well-being. Your work shapes secure benefits administration for millions of North Americans.
Strategic Career Opportunity — Lead a mission-critical compliance program that positions TELUS Health in new markets. This is the kind of transformational work that accelerates your career trajectory.
Collaborate with Experts — Partner with industry-leading Engineering, Security, and Compliance teams who are invested in doing this right.
Competitive Total Rewards — Competitive compensation, comprehensive benefits, and clear career growth opportunities for leaders who drive results.
Mission-Aligned Work — TELUS Health's commitment to compassion and innovation means you're building solutions that genuinely improve people's lives.
À propos de nous
Nous sommes une équipe axée sur les personnes, les clients et les objectifs, qui collabore, innove et crée des retombées positives au quotidien. Nous améliorons des vies grâce à nos solutions technologiques. Nous favorisons une culture d’innovation qui permet aux membres de l’équipe de résoudre des problèmes complexes et de produire des résultats exceptionnels sur le plan humain dans un monde numérique.
À TELUS, nous sommes fiers de notre culture qui encourage la diversité. Nous croyons foncièrement à l’importance d’adopter des pratiques équitables en matière d’emploi. Ainsi, le dossier de tous les candidats qualifiés est étudié. Pendant tout le processus de recrutement, nous tenons compte des besoins particuliers des candidats handicapés, au besoin.
Avertissement : Conformément à la Politique de sécurité des centres de données de TELUS Santé, tout membre de l’équipe susceptible de travailler dans un centre de données ou d’avoir accès à des renseignements détaillés sur les technologies de service client peut faire l’objet d’une enquête de sécurité auprès du gouvernement du Canada.
Remarque aux candidats du Québec : si la connaissance de l’anglais est requise, c’est parce que le/la membre d'équipe qui occupera ce poste sera appelé(e), sur une base régulière, à interagir en anglais avec des parties externes ou internes ou encore à travailler dans un environnement informatique anglais dans le cadre de ses tâches.
En déposant votre candidature pour ce rôle, vous comprenez et acceptez que vos informations seront partagées avec l'(les) équipe(s) d'acquisition de talents du groupe de sociétés TELUS et/ou tout gestionnaire impliqué dans le processus de sélection.