We use cookies to improve your experience on our site. To find out more, read our privacy policy.

Our Ability Jobs

Job Information

Moneris Senior Manager, Security GRC in Toronto, Canada

Your Moneris Career - The Opportunity

Senior Manager, Security Governance, Risk, and Compliance (GRC) is a leadership role responsible for overseeing the organization's security governance, risk management, compliance, and awareness programs. Reporting directly to the VP, Information Security, this role plays a critical part in ensuring that security initiatives align with business objectives and regulatory requirements. The successful candidate will lead efforts to assess and manage risks, develop security metrics, ensure regulatory compliance, and drive security awareness across the organization. . This role ensures that the organization's security posture is robust and aligned with regulatory requirements, industry standards, and best practices.

Location: You will be based in our Toronto office and will work in a hybrid model.

Reporting Relationship : You will report to the VP, Information Security.

Your Moneris Career - What you'll do

  • Develop and lead the organization's security GRC strategy, ensuring alignment with business objectives and regulatory requirements and serves as key advisor to CISO and other senior executives on security GRC initiatives

  • Build, mentor, manage, and lead a high-performing security GRC team, fostering a culture of continuous learning and professional development. Management includes the team’s performance, ensuring organizational goals and constantly tracking OKRs defined for security GRC vertical.

  • Establish and maintain security policies, standards, and frameworks that align with industry best practices (e.g., ISO 27001, NIST, GDPR, PCI-DSS), that includes providing guidance and oversight to business partners ensuring Moneris’s application and products are adhering to applicable policies and standards.

  • Chair the Security Governance Committee to ensure ongoing oversight and governance of security risks

  • Take the ownership to develop and maintain the enterprise-wide security risk register, ensuring risks are properly documented, prioritized, and mitigated.

  • Constant guidance and participate in risk assessments and threat modeling exercises to identify vulnerabilities across different products and oversee govern risk treatment plans.

  • Design the targeted security programs (including measuring the effectiveness), like phishing/ spear-phishing simulations to enhance the organization's security culture, mandatory data breach training, etc

  • Collaborate with the incident response team to manage security incidents and breaches, ensuring root cause analysis and corrective actions are completed

Your Moneris Career - What you bring

  • Bachelors in Computer Science, Information Security, Risk Management or Equivalent, (Masters preferred)

  • Minimum 12+ years of experience Previous experience in the payment industry considered an asset. Also, out of 12 years, minimum 5 years in leadership capacity

  • Proven track record of developing and executing security GRC strategies in a complex, global organization.

  • Strong understanding of security frameworks, standards, and regulations (e.g., NIST, PCI-DSS, ISO27001, GDPR).

  • Ability to navigate complex regulatory environments and influence organizational change

  • Information Security GRC, Regulatory Compliance management, Information Security domain knowledge in IAM, Network Security, Cloud Security

  • Strong understanding of frameworks NIST, PCI-DSS, etc)·

  • Relevant certifications such as CISM, CISSP, CRISC, CISA, or similar are highly preferred.

Your Moneris Career - What you get

  • Comprehensive Total Rewards Program including bonuses, flexible benefits starting from day 1, and your choice of either a health spending account (HSA) or personal spending account (PSA)

  • RRSP matching & defined contribution pension plan

  • Learning & development programs and resources including unlimited free access to Coursera and an Educational Assistance Program

  • Holistic approach to your well-being, with an Employee Assistance Program for you and your family, access to 24/7 virtual health care, wellness events and a supportive workplace culture

  • A workplace committed to investing in Diversity, Equity and Inclusion (DEI) through various initiatives including, employee inclusion groups (EIGs), mentorship, DEI learning and workshops, educational events, and various resources including an internal DEI website and newsletter

  • Company-wide paid year-end closure & personal time off (including religious, personal, and volunteer days)

Find out more about the work perks and benefits you get as a Moneris employee at Moneris.com/careers

#LI-Hybrid

#TECH-IND

Note: We welcome and encourage applications from Indigenous peoples, people of colour, people with disabilities, people of all genders, sexual orientation and intersectional identities.

We acknowledge that people from equity-deserving groups (including racialized individuals, women, gender diverse individuals, individuals with disabilities, neurodivergent individuals, members of 2SLGBTQIA+ communities and those born outside of Canada) are less likely to apply for jobs unless they feel they meet all the requirements posted. At Moneris, we believe candidates bring experience to their work in many ways. We encourage you to apply and share, in the application form, the transferrable experience you bring, and how this will support your success in this role.

DirectEmployers