Leader, Governance, Risk & Compliance

Who We Are:

Every transaction matters. Every Canadian matters. At Interac we protect both driving trust security and inclusion so our digital economy thrives.

Founded in 1984 Interac connects Canadians through secure digital payments advanced identity verification and industry-leading fraud protection. Connecting banks businesses and individuals Interac enables millions to send receive and manage money safely and effortlessly every day across both digital and physical environments.

As the backbone of Canadas financial ecosystem Interac facilitates over 20 million transactions daily supported by trusted partnerships with government and financial institutions. Consistently ranked as Canadas most reputable financial technology brand Interac is deeply embedded in the daily lives of Canadians.

Who You Will Work With:

The vacant role will report to the Head Information Security & CISO. Leader Governance Risk and Compliance (GRC) will be responsible for establishing the GRC mandate and goals for Interac Corp. and will collaborate closely with key stakeholders and business units on security risk and compliance initiatives and effective risk management practices across the organization. The Leader will business units embed a security risk management culture into production delivery support and operations that enables business objectives.

The Leader will be responsible for strengthening controls in IT environments ensuring that risks are clearly understood controls are implemented to mitigate those risks and continuous monitoring is established to measure control effectiveness.

The Leader will lead a team in operating and maintaining an Information Security Management System (ISMS) to help Interac Corp. meet and comply with applicable frameworks data protection laws regulations Interac cybersecurity standards and contractual obligations.

What You Will Do:

• Review corporate policies identify additional policies and develop policies to enhance existing controls and alignment with ISO 27000 series NIST and PCI standards and frameworks.

• Socialize policies and standards and provide guidance to employees on adherence to the policies.

• Coordinate and guide the Information Security Risk Management process risk owners to ensure that risk treatments are effective.

• Support the internal IT audit function and external auditors and established organizational security certifications.

• Assist in the development training and tracking of the internal control environment associated with the various standards (e.g. SOC 2 ISO27001/2).

• Conduct compliance activities to ensure adherence with relevant policies standards regulations and applicable laws

• Manage internal auditors and external auditors and activities.

• Regularly update and review risk portfolio for changes in the environment. Provide regular reporting of significant risks and the risk portfolio to pertinent Management Committees.

• Drive improvements in the organization arising from the identification of risk and control gaps that balance risk with business operations.

• Act as a key point of contact when identifying risk to raise awareness with security management and business unit leads on a risk reduction plan.

• Maintain a registry of risk remediation supported by a governance lifecycle and the implementation of management tools that are technology enabled.

• Stay abreast in incident response cases and track occurrence and resolution with strict documentation and reporting.

• Provide leadership for disaster recovery and business continuity as they relate to security and framework and organization standards.

• Leverage industry best practices to implement and mature an adaptive Governance Risk and Compliance (GRC) program

• Developing and implement reporting metrics key performance indicators (KPIs) to measure the effectiveness of Information Security Risk Management practice.

• Work in tandem with other security leadership for annual strategic and budgetary directives

• Coaching mentoring and managing a team to obtain the best possible results from team members

• Collaborate with business unit stakeholders including Internal Audit Legal Enterprise Risk Data Governance Privacy and Vendor Management to ensure a strong security posture.

What You Bring:

• Have a degree/diploma or combined relevant work experience and certifications (8-10 years) in Information Systems law or policy management.

• Progressive leadership experience with a focus on information security Governance Risk and Compliance.

• Security certifications such as CISM CISA and CRISC.

• Experience with implementing an Information Security Management System (ISMS) and ISO 27001 certification a benefit

• Strong understanding of technology risk regulatory and industry best practice (ISO 27000 Series NIST PCI)

• Proven ability to identify analyze and translate risk in the context of what it means to achieving business objectives

• A continuous improvement mindset.

• Sound and practical business minded approach to implementation of a GRC program.

• Experienced in the ability to influence and guide others across the organization to solve challenging problems.

• Experience with leading GRC platforms technologies and solutions is an asset

• Build and foster strong relationships through collaboration influencing change and building consensus

• You bring your real self to work and you live our values trust teamwork open communication and accountability.

• Strong communication skills including technical and business writing

• Strong problem-solving skills

• Ability to acquire secret clearance (Canadian Citizen for at least 5 years)

• Eligibility to work for Interac Canada in a full-time capacity.

What Were Offering:

The hiring range for this position is 113000 $180000 and you will also be eligible for our short-term incentive plan. The exact amount will depend on factors such as skills experience and job-related knowledge but Interacs commitment goes beyond compensation. Our Total Rewards package is designed to support your well-being and future and includes:

• Generous vacation and wellness days to help you recharge

• Comprehensive employer-paid benefits coverage for peace of mind

• Market-leading employer-funded RRSP program to invest in your future

• Flexible hybrid work model for better work-life balance

• Access to a free and confidential 24/7 employee & family assistance program to offer support for you and your immediate family

• Pregnancy and parental leave top-up to support growing families

• Charitable donation matching with United Way to amplify your impact

Why Join Us

At Interac the impact we make and the people who drive it is profound. When you become part of our team youre joining a purpose-driven organization thats shaping the future of digital finance in Canada. Heres what you can expect:

• Investing in the Future Help us unlock digital prosperity for all Canadians.

• Innovative Thinking Collaborate on products practices and platforms that redefine whats possible.

• Inclusive Culture Be empowered to bring your whole self to work and realize your full potential.

• Inspiring Community Work in an ecosystem where we lift each other up and rise together.

• Intentional Support Enjoy flexible supportive offerings that prioritize your total wellness.

Additional Pre-Employment Requirements:

To ensure the integrity of our organization successful candidates will be required to complete background checks which may include Canadian Criminal Credit Check Canadian ID Cross-Check Public Safety Verification 5-year Employment Verification Education Verification Credit Check and Social Media Check.

Equal Opportunity Employer

Interac is also an equal opportunity employer committed to fostering a diverse and inclusive workplace. We believe that innovation thrives when people from different backgrounds experiences and perspectives come together. Thats why we are committed to providing fair and equitable employment opportunities for all individuals without discrimination based on race color ancestry ethnic origin place of origin citizenship creed sex sexual orientation gender identity or expression age marital or family status disability or any other characteristic protected by applicable law.

If you require accommodation during any stage of the application or recruitment process please contact us at We will work with you to meet your needs.

Please be aware that certain individuals are misusing Interac Corp.s name and logo to promote fictitious employment opportunities. Interac Corp. never requests solicits or accepts any form of payment in exchange for employment. Any such offers are fraudulent and should be disregarded. Interac Corp. assumes no liability for any claims losses damages expenses or inconveniences arising from or related to these fraudulent activities. Such communications do not constitute an offer or representation by Interac Corp. or its subsidiaries and affiliates.