Manager, Security Governance - Ottawa, Canada - Payments Canada

Payments Canada

Verified Company

Ottawa, Canada

1 week ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Payments Canada's purpose is to make payments easier, smarter and safer for all Canadians.

We care deeply about our employees' well-being and are committed to providing a flexible, hybrid work environment that supports in-person connection and remote work.

|Get to Know Us

We are a unique organization situated at the centre of Canada's payments ecosystem.

We own and operate payment systems that process hundreds of billions of dollars worth of payment transactions every business day.

We convene ecosystem participants to discuss their multiple and diverse interests and ideas, and to navigate industry-level challenges.

We adhere to a set of values that in themselves are tensions:
Inspire Trust, Build Community and Enable Change.

Payments Canada - where our country connects:
|Our Culture
We are a collaborative, diverse and passionate group of individuals. We support one another, make impactful contributions to the organization, and develop and nurture meaningful connections across our ecosystem
Come and join us - Where Payments Meets Purpose

| About the role

The Security Team plays an integral role within Payments Canada, overseeing security management of the organization.

The Security Governance team develops Payments Canada's security strategy, framework, policies, standards, and programs and ensures that these remain sound, guiding mitigation activities to reduce the impact of risks that are applicable to Payments Canada.

| What you'll do

As Manager, Security Governance, you will work with a team of dedicated security professionals and will report to the Director, Security Architecture and Governance.

The Manager, Security Governance will be responsible to:

Develop and maintain the Cyber Resilience Strategy and associated Cyber Resilience Framework;
Develop and maintain Security Policies, Standards and Guidelines in partnership with key stakeholders;
Collaborate with Compliance and Audit teams to manage security audits; track finding resolution, and report and track audit findings as per regulatory requirements;
Develop and maintain a compliance against security policies and standards program;
Work with various multifunctional departments to foster a culture around enhancing the maturity of the security program, awareness and practices;
Develop and provide program metrics to communicate to internal and external stakeholders;
Relationship management by maintaining strong and effective working relationships with IT Infrastructure, Operational Business Units, External/Internal Audit, Risk & Compliance and Legal departments;

|Minimum Qualifications

Postsecondary education in computer science or other field related to information systems and technology or information security management or equivalent work experience;
A minimum of seven (7) years of progressive or relevant experience in an information security, information risk management or security governance capacity;
Minimum 3 years of relationship management and/or leadership experience within a governance, risk or technical security team;
Familiarity with industry regulations, best practices, frameworks and benchmarks (e.g. ISF, PCI, PIPEDA, ISO 27000 series, NIST, CIS);
Energy and passion for Strategy, Policies and Standards, with an aptitude to evolve and mature the program, taking it to the next level;
Good communication skills to address a variety of audiences;
Excellent project coordination, time management skills and ability to deliver to strict deadlines;
Ability to collaborate with and influence diverse stakeholders and teams from business leaders; to individual contributors, and drive outcomes with urgency, accountability, and ownership;
Government of Canada Level II Secret Clearance or eligible to obtain.

|Preferred Qualifications

Experience with SWIFT CSP or ISO 27001 certification or other security audits is considered an asset;
The following industry security certifications: CISM, CCSP, CGEIT, CRISC, CCSP, CSSLP or CISA are considered assets;
Technical background or knowledge (networking, cloud, architecture, security assessments, etc.) is considered and asset;
Bilingualism (English/French) is considered an asset;
Experience in Payments of Financial industries is considered an asset.

| Salary Range

Based on qualifications and experience: $112,364 and $140,455.

| Payments Meets Purpose - What you can expect from us

Flexible, hybrid (remote/office) environment;
Competitive compensation package, including annual variable bonus and defined contribution pension plan with employer matching percentage;
Comprehensive health and dental benefit coverage, including mental health coverage, life insurance and a health spending account for you and your dependents;
Paid time off: minimum four weeks paid vacation, sick and personal days, December Holiday Shutdown and Cultural Holiday Observance Days;
26 Weeks of paid maternity and parental leave topup;
Rewards and recognition