×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security IT Consultant

Governance Risk & Compliance, Lead

Job in Toronto, Ontario, M5A, Canada
Listing for: Interac Corp.
Full Time position
Listed on 2026-02-02
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, IT Consultant
Job Description & How to Apply Below

Who We Are:

Every transaction matters. Every Canadian matters. At Interac, we protect both — driving trust, security, and inclusion, so our digital economy thrives.

Founded in 1984, Interac connects Canadians through secure digital payments, advanced identity verification and industry-leading fraud protection. Connecting banks, businesses, and individuals, Interac enables millions to send, receive, and manage money safely and effortlessly every day — across both digital and physical environments.

As the backbone of Canada’s financial ecosystem, Interac facilitates over 20 million transactions daily, supported by trusted partnerships with government and financial institutions. Consistently ranked as Canada’s most reputable financial technology brand, Interac is deeply embedded in the daily lives of Canadians.

Who You Will Work With:

The vacant Governance Risk and Compliance, Lead is a key resource to ensuring Interac Corp. “Security First” principles are embedded in all environments.

Reporting to the Leader, Governance Risk and Compliance, the successful candidate will have knowledge of principles in security policies and standards and modern practices and a good understanding of security aspects of the various technologies. As a member a dedicated Information Security team, The Governance Risk and Compliance Lead works closely with senior leadership, team members and staff across Risk, Audit, Legal, HR, Fraud, Operations, and Infrastructure teams to ensure the organization is operating securely.

In this role, you are working with the various teams to maintain security risk posture of the organization. You want to know as much about the state of the environment as you can, and you can think outside the box when it comes to proposing solutions which will benefit the organization.

A key initiative will be maintaining ISO 27001 Certification.

What You Will Do:

  • Expertise leading the implementation and ongoing management of the Governance Risk and Compliance Tool (GRC Tool) for Information Security

  • Preparing and maintain risk register that identifies gaps during project, system and software lifecycles through security risk assessments or security reviews and track risks for remediation

  • Reporting on and measure the effectiveness of the technical controls via security metrics.

  • Enhancing and maintaining the security risk assessment framework

  • Proactively contribute to security governance initiatives, providing technical and business advice, as well as insight on management processes

  • Aligning and refining Information Security policies and standards with industry best practices, pertinent regulations and standards bodies (ISO 27001/2, PCI DSS, CIS, NIST Series)

  • Developing security requirements matrix mapped to organization’s policies and standards

  • Prepare, track and maintain risk acceptances and security exceptions.

  • Leverage expertise in information security risk management to prepare and conduct security assessments for both planned initiatives and unplanned instances.

  • Examine and interpret requirement documents and architecture diagrams and determine security risks to the organization

  • Collaborate with senior leaders and make informed, risk-based recommendations to enhance the security posture of the organization, products and services

  • Weigh business needs against security concerns to help guide the business to make practical and informed risk decisions

  • Participate and support security related and serve as a key interface with external and internal auditors for security compliance related activities

  • Support development, enhancement, and socialization of the security awareness program

  • Create and update technical documents in line with company policies

  • Ensure that effective BCP/DR policies and plans are in place and maintained

  • Keep abreast of the cybersecurity threats and assess their potential impact to Interac’s posture

    • What You Bring:

  • You have an excellent knowledge information security with Degree or Diploma in Information Technology and/or business, or combined relevant field experience and certifications CISSP, CISA, CRISC, CISM

  • You have 7+ years of experience working with or in Information Security, Information Security…

    • Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search