Manager, Information Security
About the role
COMPANY OVERVIEW
Prairie Payments Joint Venture (PPJV) is a joint venture owned by three Prairie centrals created to digitally transform and modernize payment services for credit unions in the Prairies. PPJV’s goal is to ensure Prairie credit unions are competitive in payments and have access to efficient, modernized payments processing infrastructure.
ROLE SUMMARY
The Manager, Information Security will work with the broader Prairie Payments Joint Venture (PPJV) team to manage and maintain Information Security functions to support the five main payments streams (e-Transfer, Bill Pay, Cheque, Wires, Automated Funds Transfer (AFT)) as well as emerging payments digital initiatives (Open Banking, Digital ID, Real Time Rail etc.) by following ISO, NIST, SOC2 and related financial standards and guidelines.
This position is accountable for proactively managing the PPJV Identity and Access Management (IAM) program, managing the PPJV identity providers, user accounts, privileges, and their continuous audit. The role is responsible for designing, developing and implementing the Identity and Access Management program, governance and oversight, all related governance, to streamline and automate access reviews, and issuance of access, while aligning PPJV to industry best practices related to the IAM space.
KEY RESPONSIBILITIES
Manage the Cyber Security and IT Security Functions:
- Lead the implementation, management, consolidation, and automation of the PPJV Identity and Access Management (IAM) capabilities across all workstreams and functions.
- Lead the architectural redesign of PPJV’s internal and customer facing authentication capabilities.
- Participate in investigations of any actual or potential information security violations and manage escalation of security events.
- Provide regular reporting on the current state of IAM program to the DISO, and other members of the Leadership team as appropriate.
- Participate in development, implementation, and maintenance of all information security policies and guidelines, and oversee the dissemination of security policies and practices.
- Contribute to and execute PPJV’s Information Security strategy and roadmap.
- Support internal and external teams to ensure that security is factored into the evaluation, selection, installation, and configuration of all digital assets.
- Manage security related metrics and reporting framework to measure the efficiency, effectiveness, and maturity level of the program.
- Liaise with relevant business units (such as Internal Audit, Law, Finance, Risk Management, Compliance and P&C teams), and external agencies as needed to ensure that PPJV maintains a strong security posture.
- Ensure PPJV’s information security program is consistently enforced throughout the organization.
- Monitor identities, roles, permissions, security threats, and vulnerabilities to determine the risks they pose to the business, and what countermeasures must be put in place to address them.
- Willingness to collaborate with peers and providing information security cross functionally.
REQUIREMENTS
- Bachelor's degree from an accredited college/university or equivalent professional experience
- 10+ years of related experience.
- Expert knowledge of Identity and Access Management domain such as best practices, audits, automation, access reviews, attestations, and standards and information security best practices
- Experience with MS Entra ID, MS Active Directory, Auth0, RBAC, OAuth 2.0, OpenID Connect, SAML 2.0, Kerberos, FIDO2
- Strong understanding and implementation experience of Federated Identity Models including cross domain implementations of Single Sign On
- Knowledge of the financial services industry
- Previous compliance related experience related to NIST CSF, SOC2, ISO27001 and OSFI criteria.
- Prior exposure to Risk Management and Vendor Management
- High degree of initiative and dependability; experience managing multiple, simultaneous, and high-profile information security initiatives and responses.
SKILLS REQUIRED
- Technical knowledge of operating systems/networking/cloud/development processes
- Familiarity with modern security tools with focus on Azure and M365
- Working knowledge of Information Security domains such as Security Architecture, Risk Management, Application Security, Data Security, Cloud Security
- Strong analytical, communication, and presentation skills
- Proven experience in managing complexity and navigating ambiguity
- Nice to have - Understanding and working knowledge of Cryptographically Verifiable Credential standards including ISO-18013-5 mDL, W3C Verifiable Credentials, Microsoft Entra Verified ID, Decentralized Identifiers, and mobile wallet technology
RELATIONSHIPS
Internal: Functional leaders, Executive Team.
External: Contact with Credit Unions, other financial institutions, government agencies, other affiliates, vendors, and suppliers
This is a mostly remote role with occasional travel to the office when needed. Preferred location: Greater Toronto Area, ON or Calgary, AB.
The Environment
PPJV is a fast paced and focused environment where employees and contractors share the mission to deliver efficient, cost effective, modernized payments processing to prairie credit unions.
Interested candidates are asked to submit a resume & cover letter by 4:00 PM on Friday, October 3, 2025. We thank all candidates for their interest; however, only those candidates selected for an interview will be contacted.
About Prairie Payments Joint Venture
DELIVERING EXCELLENCE IN PAYMENTS
The payments landscape is changing, and so are the needs of Canadians. Real-time payments are happening all over the world. Prairie Payments was created to digitally transform and modernize payment services in Canada. Owned by credit unions, we are committed to providing fast, flexible, and secure payments for all members.
Our modernized payments platform ensures our clients remain competitive in the payments landscape by providing access to the most efficient, cost-effective modernized payments processing infrastructure.
Manager, Information Security
About the role
COMPANY OVERVIEW
Prairie Payments Joint Venture (PPJV) is a joint venture owned by three Prairie centrals created to digitally transform and modernize payment services for credit unions in the Prairies. PPJV’s goal is to ensure Prairie credit unions are competitive in payments and have access to efficient, modernized payments processing infrastructure.
ROLE SUMMARY
The Manager, Information Security will work with the broader Prairie Payments Joint Venture (PPJV) team to manage and maintain Information Security functions to support the five main payments streams (e-Transfer, Bill Pay, Cheque, Wires, Automated Funds Transfer (AFT)) as well as emerging payments digital initiatives (Open Banking, Digital ID, Real Time Rail etc.) by following ISO, NIST, SOC2 and related financial standards and guidelines.
This position is accountable for proactively managing the PPJV Identity and Access Management (IAM) program, managing the PPJV identity providers, user accounts, privileges, and their continuous audit. The role is responsible for designing, developing and implementing the Identity and Access Management program, governance and oversight, all related governance, to streamline and automate access reviews, and issuance of access, while aligning PPJV to industry best practices related to the IAM space.
KEY RESPONSIBILITIES
Manage the Cyber Security and IT Security Functions:
- Lead the implementation, management, consolidation, and automation of the PPJV Identity and Access Management (IAM) capabilities across all workstreams and functions.
- Lead the architectural redesign of PPJV’s internal and customer facing authentication capabilities.
- Participate in investigations of any actual or potential information security violations and manage escalation of security events.
- Provide regular reporting on the current state of IAM program to the DISO, and other members of the Leadership team as appropriate.
- Participate in development, implementation, and maintenance of all information security policies and guidelines, and oversee the dissemination of security policies and practices.
- Contribute to and execute PPJV’s Information Security strategy and roadmap.
- Support internal and external teams to ensure that security is factored into the evaluation, selection, installation, and configuration of all digital assets.
- Manage security related metrics and reporting framework to measure the efficiency, effectiveness, and maturity level of the program.
- Liaise with relevant business units (such as Internal Audit, Law, Finance, Risk Management, Compliance and P&C teams), and external agencies as needed to ensure that PPJV maintains a strong security posture.
- Ensure PPJV’s information security program is consistently enforced throughout the organization.
- Monitor identities, roles, permissions, security threats, and vulnerabilities to determine the risks they pose to the business, and what countermeasures must be put in place to address them.
- Willingness to collaborate with peers and providing information security cross functionally.
REQUIREMENTS
- Bachelor's degree from an accredited college/university or equivalent professional experience
- 10+ years of related experience.
- Expert knowledge of Identity and Access Management domain such as best practices, audits, automation, access reviews, attestations, and standards and information security best practices
- Experience with MS Entra ID, MS Active Directory, Auth0, RBAC, OAuth 2.0, OpenID Connect, SAML 2.0, Kerberos, FIDO2
- Strong understanding and implementation experience of Federated Identity Models including cross domain implementations of Single Sign On
- Knowledge of the financial services industry
- Previous compliance related experience related to NIST CSF, SOC2, ISO27001 and OSFI criteria.
- Prior exposure to Risk Management and Vendor Management
- High degree of initiative and dependability; experience managing multiple, simultaneous, and high-profile information security initiatives and responses.
SKILLS REQUIRED
- Technical knowledge of operating systems/networking/cloud/development processes
- Familiarity with modern security tools with focus on Azure and M365
- Working knowledge of Information Security domains such as Security Architecture, Risk Management, Application Security, Data Security, Cloud Security
- Strong analytical, communication, and presentation skills
- Proven experience in managing complexity and navigating ambiguity
- Nice to have - Understanding and working knowledge of Cryptographically Verifiable Credential standards including ISO-18013-5 mDL, W3C Verifiable Credentials, Microsoft Entra Verified ID, Decentralized Identifiers, and mobile wallet technology
RELATIONSHIPS
Internal: Functional leaders, Executive Team.
External: Contact with Credit Unions, other financial institutions, government agencies, other affiliates, vendors, and suppliers
This is a mostly remote role with occasional travel to the office when needed. Preferred location: Greater Toronto Area, ON or Calgary, AB.
The Environment
PPJV is a fast paced and focused environment where employees and contractors share the mission to deliver efficient, cost effective, modernized payments processing to prairie credit unions.
Interested candidates are asked to submit a resume & cover letter by 4:00 PM on Friday, October 3, 2025. We thank all candidates for their interest; however, only those candidates selected for an interview will be contacted.
About Prairie Payments Joint Venture
DELIVERING EXCELLENCE IN PAYMENTS
The payments landscape is changing, and so are the needs of Canadians. Real-time payments are happening all over the world. Prairie Payments was created to digitally transform and modernize payment services in Canada. Owned by credit unions, we are committed to providing fast, flexible, and secure payments for all members.
Our modernized payments platform ensures our clients remain competitive in the payments landscape by providing access to the most efficient, cost-effective modernized payments processing infrastructure.