Manager, Security Compliance

Wealthsimple

Manager leading SOX and ICFR compliance at Canada's largest fintech, ensuring regulatory obligations and building a scalable compliance function.

Posted 4/30/2026full-timeRemote • 🇨🇦 CanadaMid-LevelSenior💰 CA$166,400 - CA$208,000 per yearWebsite

About the role

Key responsibilities & impact

Own and manage the IT general controls (ITGCs) component of the ICFR compliance program while supporting the build out of the ITGCs & IT Application controls (ITAC) for the SOX program from the ground up, leveraging existing frameworks and controls where applicable
Partner with Finance, IT, and business stakeholders to identify and document key controls over financial reporting, ensuring controls are designed and in place ahead of audit cycles
Ensure ITGCs and ITACs supporting financial systems are properly documented and operating as intended
Serve as the primary point of contact for external auditors, coordinating evidence requests, walkthroughs, and finding remediation
Build and maintain a controls inventory with clear ownership, documentation standards, and readiness status
Work cross-functionally with control owners to ensure gaps are identified early and remediation plans are in place before audit periods
Develop and report on compliance readiness and control health to senior leadership
Drive continuous improvement in the efficiency and effectiveness of the SOX Compliance system (AuditBoard) and related technologies
Maintain current knowledge of emerging risks, industry trends, and regulatory changes relevant to the business and the audit profession
Expand ownership to include SOC 1&2, PCI DSS, and NIST compliance programs, building a unified compliance function
Lead a small team of compliance specialists, providing mentorship, prioritization, and ensuring alignment across the aforementioned compliance initiatives

Requirements

What you’ll need

6-8 years of experience in IT audit, compliance, or security assurance, with deep expertise in SOX/ICFR compliance (preferably in financial services or fintech)
Strong understanding of COSO framework, ITGCs, ITACs, and control design principles
Experience working with external auditors on SOX engagements, particularly in a coordination or liaison capacity
Proven ability to lead and manage a team, ensuring that audit deliverables are met efficiently and on time.
Working knowledge of SOC, PCI DSS, and/or NIST frameworks is a strong asset
Proven ability to manage multiple compliance workstreams and competing priorities
Strong stakeholder management and communication skills with ability to influence across technical and non-technical teams
Experience with GRC tools and control management platforms
Self-directed professional who can build programs from the ground up and drive initiatives to completion
Relevant certifications preferred (CISA, CISSP, CPA, CIA, or equivalent)

Benefits

Comp & perks

Top-tier health benefits and life insurance
Long-term group savings with employer match, through Wealthsimple for Business
20 vacation days, 4 wellness days, and unlimited sick and mental health days per year
90 days away: work outside Canada for up to 90 days per year
Employee resource groups, including Rainbow (2SLGBTQ), Women of WS, and Black at WS

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

IT auditcompliancesecurity assuranceSOX complianceICFR complianceCOSO frameworkcontrol design principlesGRC toolscontrol management

Soft Skills

stakeholder managementcommunicationteam leadershipmentorshipprioritizationinfluenceself-directedcross-functional collaborationproblem-solving

Certifications

CISACISSPCPACIA