Stay Connected. Get job postings, tech news, program updates and more straight to your inbox. Subscribe

Work In Tech

Find your next role at Canada's fastest-growing tech companies

Feature your company’s job posting Submit your job seeker talent profile Search Corporate roles
Search 
jobs
 5,820
Explore 
companies
 1,517
Talent
 network
My job alerts

Security Assurance, Lead

Interac

Interac

Toronto, ON, Canada
Posted on Dec 13, 2024
Apply now

Security Assurance, Lead

At Interac, we design and deliver products and solutions that give Canadians control over their money so they can get more out of life. But that’s not all. Whether we’re leading real-time money movement, driving innovative commerce solutions like open payments for transit systems, or making advancements in new areas like verification and open banking, we are playing a key role in shaping the future of the digital economy in Canada.

Want to make a lasting impact amongst a community of creative thinkers, problem solvers, technical virtuosos, and high-performance application developers? We want to hear from you.

The Security Assurance Lead is a key resource to ensuring Interac Corp. “Security First” principles are embedded in all environments. The successful candidate will have expert knowledge of assurance principles in security policies and standards and modern practices and a good understanding of security aspects of the various technologies. As a member a dedicated Information Security team, the Security Assurance Lead works closely with senior leadership, team members and staff across Risk, Audit, Vendor Management, Legal, IT Operations, and Infrastructure teams to ensure the organization is operating securely.

In this role, you are working with the various teams to maintain security posture of the organization. You will design and manage a Security Assurance and Program to ensure that our organization's people, process, and technology are secure and resilient against various threats. You want to know as much about the state of the environment as you can, and you can think outside the box when it comes to proposing solutions which will benefit the organization.

You'll be responsible for:

  • Implementation and ongoing management of a cyber security assurance testing program to ensure the effectiveness of security processes and procedures, compliance with organizational cyber security framework and industry best practices.

  • Conducting continuous security control testing exercises at defined intervals, collect evidence, and collaborate with business units to identify areas for improvement and resolution.

  • Developing a security requirements matrix mapped to organization’s policies and standards.

  • Examining and interpreting project requirement documents and architecture diagrams to determine security risks and ensure security requirements are embedded into projects.

  • Developing and maintaining security assurance KRI’s and KPI’s to report on and assess the effectiveness and adherence to security requirements and technical controls.

  • Experience managing risk throughout the risk lifecycle and effectively managing risk within organizational risk appetite.

  • Weighing business needs against security concerns to help guide the business to make practical and informed risk decisions to enhance the security posture of the organization products and services.

  • Participating and supporting security related engagements and serve as a key interface with external and internal auditors for security compliance related activities.

  • Expert knowledge of industry best practices, pertinent regulations and standards bodies such as ISO 27001/2, PCI DSS, CIS, and NIST Series.

You bring:

  • Excellent knowledge information security with Degree or Diploma in Information Technology and/or business, or combined relevant field experience and certifications CISSP, CISA, CRISC, CISM.

  • 7+ years of experience managing an Information Security Assurance Program within medium to large sized organizations.

  • Strong and proven leadership capabilities with communication, coaching, influence, negotiation and conflict resolution.

  • Experience working with GRC Security Tooling Capabilities.

  • Experience with Information Security practice and processes including threat and risk assessments.

  • Experience managing risk throughout the risk lifecycle.

  • Highly motivated, and results oriented with an ability to handle high pressure situations with key stakeholders.

  • Strong project management and service delivery orientation.

  • Excellent presentation and communication (written and verbal) skills and an ability to present complex information in a manner suitable for technical and non-technical audiences.

  • Excellent knowledge in several areas of information security (domain knowledge).

  • Eligibility to work for Interac Corp. in Canada in a full-time capacity.

Interac requires employees to complete a background check that is completed by one of our service providers. We use this service to complete the following checks:

  • Canadian criminal record check;
  • Public safety verification;
  • Canadian ID cross-check;
  • 5-year employment verification;
  • Education verification; and
  • If applicable, Credit Inquiry and Social Media Check

How we work
We know that exceptional people have great ideas and are passionate about their work. Our culture encourages excellence and actively rewards contributions with:

Connection: You’re surrounded by talented people every day who are driven by their passion of a common goal.

Core Values: They define us. Living them helps us be the best at what we do.

Compensation & Benefits: Pay is driven by individual and corporate performance and we provide a multitude of benefits and perks.

Education: To ensure you are the best at what you do we invest in you

Apply now
See more open positions at Interac
Privacy policyCookie policy