Canada’s banking sector is highly regulated, technologically advanced, and central to the national economy. Cybersecurity leadership is critical for safeguarding customer assets, securing digital banking platforms, and ensuring regulatory compliance. The following leaders play pivotal roles in advancing security programs, managing enterprise-wide risk, and driving innovation across some of Canada’s largest financial institutions.
Stephen Sparkes — Chief Information Security Officer, TD Bank Group
Stephen Sparkes is a senior technology executive with deep experience in cybersecurity, risk management, global trading systems, and capital markets technology. At TD Bank, he oversees enterprise technology risk, CISO teams, regulatory relations, and global technology control programs. Stephen has managed a $1.5 billion infrastructure budget and 3,000+ staff while leading an 850-person cyber security development team. He has previously served as CIO for the Americas, CTO for investment banking, and head of technology risk. Stephen is recognised for delivering innovative cyber solutions, communicating effectively with Boards and regulators, and driving organisational transformation across complex financial services environments.
Joseph Tso — Director of Cybersecurity and Technology Risk Officer, Scotiabank
Joseph Tso brings over 20 years of experience in IT and cybersecurity, specialising in Cyber/IT Risk Management, Data Governance, Security Governance, Incident Response, and Privacy Management. He has implemented frameworks including NIST, COBIT, and ISO 27001, and navigated regulations such as NYS DFS, EU GDPR, and HIPAA. His career spans multiple sectors including finance, insurance, e-commerce, entertainment, and aerospace. Joseph holds CISSP and CISM certifications, a Master of Science in Information Security and Assurance with distinction, and a B.S. in Computer Forensics. He is recognised for establishing robust, regulatory-aligned cybersecurity programs and for thought leadership in cyber law and governance.
Sri Dronamraju — Senior Vice President & Chief Information Security Officer, BMO Financial Group
Sri Dronamraju serves as Enterprise CISO at BMO Financial Group, where he leads security strategy and operations across the organisation. Joining BMO in 2018, he previously served over nine years as Chief Information Risk and Security Officer at MassMutual Financial Group. Sri is known for values-driven leadership, overseeing large teams and delivering security outcomes that exceed expectations. His approach emphasises operational excellence, risk management, and building strong security cultures. Under his guidance, BMO has strengthened enterprise resilience, improved security maturity, and implemented programs that safeguard critical banking systems and customer data.
Joe LoBianco — Senior Vice President & Chief Information Security Officer, CIBC
Joe LoBianco leads CIBC’s cybersecurity efforts with a focus on protecting clients, employees, and systems. With 14 years at CIBC, he has developed high-performing teams that deliver innovative security solutions aligned to the bank’s evolving digital transformation. Joe prioritises trust, culture, and talent development, ensuring the right people are in critical roles. His leadership emphasises proactive risk management, operational efficiency, and resilience against emerging threats. Through his guidance, CIBC has strengthened its cybersecurity posture, ensuring client confidence and secure banking operations across its retail, commercial, and digital services.
André Boucher — Chief Technology Officer & Chief Information Security Officer, National Bank of Canada
André Boucher leads National Bank of Canada’s enterprise architecture and information security programs, overseeing technology and cybersecurity strategy. He joined National Bank as CISO in 2021 and transitioned to CTO in 2026 while retaining a security focus. Prior to National Bank, André held senior roles at the Communications Security Establishment Canada, Department of National Defence, and NORAD/US Northern Command. His experience spans cyber capability development, network operations, and mission-critical technology programs. André is recognised for blending technical expertise with enterprise security leadership, ensuring National Bank’s systems remain resilient, secure, and aligned with regulatory requirements.
Hriday Balachandran — Chief Information Security Officer & Vice President of Technology, Digital Commerce Bank
Hriday Balachandran leads technology and cybersecurity at Digital Commerce Bank, overseeing product launches, infrastructure, compliance, and operational resilience. He has delivered scalable banking systems on Azure and on-premises data centers, implemented world-class monitoring operations, and managed PCI compliance. Hriday also established DevOps pipelines, vendor management frameworks, and internal productivity tools. With two decades of experience across fintech, aviation, education, cloud, and e-commerce, he excels in building high-performing teams and delivering complex, high-visibility projects on time and within budget. His leadership ensures Digital Commerce Bank provides secure, reliable, and innovative banking services.
Safeguarding Canada’s Financial Services through Cyber Leadership
Canada’s banking industry relies on robust cybersecurity leadership to protect vast amounts of sensitive data, ensure operational continuity, and maintain trust with millions of customers. The CISOs highlighted here combine technical expertise, regulatory knowledge, and leadership acumen to drive innovation and security at the enterprise level. Their work underpins secure digital banking, risk mitigation, and resilience across some of Canada’s most influential financial institutions.