×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Manager, Security Compliance

Job in Winnipeg, Manitoba, Canada
Listing for: Wealthsimple
Full Time position
Listed on 2026-06-09
Job specializations:
  • IT/Tech
    Cybersecurity
  • Finance & Banking
Job Description & How to Apply Below
Build something people love

Wealthsimple's mission is to help everyone achieve financial freedom – by making financial services simple, transparent, and low-cost. We're Canada's largest fintech, trusted by over 3 million clients with more than $100 billion in assets. We move fast, we own our work, and we care deeply about the people using our products. If that sounds like you, keep reading.

We’re proud of what we’ve built — and we’re just getting started. Read our Culture Manual and learn more about how we work.

The Security GRC team plays a critical role in adhering to security frameworks and creating space for risk mitigation and oversight. We want to ensure that Wealthsimple maintains a secure operational environment by implementing and monitoring controls designed to protect information, systems and infrastructure.

We are looking to expand the Security GRC team with a Manager, Security Compliance to lead our SOX and ICFR compliance program. This role will be instrumental in ensuring Wealthsimple meets its regulatory obligations around internal controls over financial reporting while building a scalable compliance function.

You will focus on owning and maturing our SOX and ICFR compliance program and have the opportunity to expand your scope to oversee the broader compliance function, including SOC 1& 2, PCI DSS, and NIST frameworks and leading a team of specialists. You'll work closely with teams across Security, Finance, Legal, Product, and Engineering to ensure controls are designed, implemented, and operating effectively.

In this role, you'll have the opportunity to

Own and manage the IT general controls (ITGCs) component of the ICFR compliance program while supporting the build out of the ITGCs & IT Application controls (ITAC) for the SOX program from the ground up, leveraging existing frameworks and controls where applicable

Partner with Finance, IT, and business stakeholders to identify and document key controls over financial reporting, ensuring controls are designed and in place ahead of audit cycles

Ensure ITGCs and ITACs supporting financial systems are properly documented and operating as intended

Serve as the primary point of contact for external auditors, coordinating evidence requests, walkthroughs, and finding remediation

Build and maintain a controls inventory with clear ownership, documentation standards, and readiness status

Work cross-functionally with control owners to ensure gaps are identified early and remediation plans are in place before audit periods

Develop and report on compliance readiness and control health to senior leadership

Drive continuous improvement in the efficiency and effectiveness of the SOX Compliance system (Audit Board) and related technologies

Maintain current knowledge of emerging risks, industry trends, and regulatory changes relevant to the business and the audit profession

Expand ownership to include SOC 1& 2, PCI DSS, and NIST compliance programs, building a unified compliance function

Lead a small team of compliance specialists, providing mentorship, prioritization, and ensuring alignment across the aforementioned compliance initiatives

What You'll Bring

6‑8 years of experience in IT audit, compliance, or security assurance, with deep expertise in SOX/ICFR compliance (preferably in financial services or fintech)

Strong understanding of COSO framework, ITGCs, ITACs, and control design principles

Experience working with external auditors on SOX engagements, particularly in a coordination or liaison capacity

Proven ability to lead and manage a team, ensuring that audit deliverables are met efficiently and on time.

Working knowledge of SOC, PCI DSS, and/or NIST frameworks is a strong asset

Proven ability to manage multiple compliance work streams and competing priorities

Strong stakeholder management and communication skills with ability to influence across technical and non‑technical teams

Experience with GRC tools and control management platforms

Self‑directed professional who can build programs from the ground up and drive initiatives to completion

Relevant certifications preferred (CISA, CISSP, CPA, CIA, or equivalent)

Why Wealthsimple?
Top‑tier health benefits and…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search