Manager, Governance, Risk and Compliance

Xplore Inc. is Canada’s Fibre and 5G broadband company for rural living. Founded in Woodstock, New Brunswick, Xplore has become one of the country’s largest facilities-based telecommunications providers for residential and business customers. Xplore is committed to the relentless pursuit of an improved broadband experience for Canadians. Xplore is building a world-class fibre optic and 5G wireless network to enable innovative broadband services for better every day rural living, for today and future generations.

We are seeking a Manager, Governance Risk & Compliance based out of Markham, ON (Hybrid). Reporting to Director, Security & Privacy, the Manager, Governance, Risk & Compliance plays a critical role in strengthening our cybersecurity posture and ensuring alignment with industry standards such as the NIST Cybersecurity Framework (CSF) and Risk Management Framework (RMF). This role leads cyber control audits, vendor risk assessments, and PCI governance, while also coordinating enterprise-wide penetration testing efforts to proactively reduce IT and information security risks.

• Responsible for the planning, execution and reporting on internal audits of processes (standards) to policies to ensure compliance. Identify gaps and track remediation.
• Create, review, and update security policy documentation to reflect evolving standards and business needs
• Responsible for supporting the security team, perform gap analysis in processes, and to gather data as it relates to compliance initiatives.
• Responsible for evaluation of third party cyber security posture
• Identifying potential risks across business units
• Collaborate with internal teams, provide guidance, and conduct awareness sessions on governance and audit findings.
• Ad-hoc requests and tasks assigned by the Director, Security & Privacy

• Minimum 5 years of experience in cybersecurity governance, risk management, or IT audit, with hands-on exposure to frameworks such as NIST CSF and RMF.
• Security / Risk Mitigation mindset
• Strong interpersonal skills with the ability to work effectively with others that have conflicting viewpoints
• Professional certifications such as CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), or CISSP (Certified Information Systems Security Professional) would be considered an asset.
• Ability to interpret and apply regulatory requirements (e.g., CPPA, Law-25, PIPEDA, PCI-DSS).
• Experience with GRC platforms (e.g., Archer, ServiceNow, OneTrust). Additional certifications in risk management, cloud security, or vendor risk (e.g., CRISC, CCSP, ISO 27001 Lead Auditor) are also beneficial.

As a condition of employment and in order to comply with industry related data security standards, this position is subject to the successful completion of a Criminal Background Check. Details will be supplied to applicants as they move through the selection process.

Xplore is committed to creating an accessible environment and will accommodate disabilities during the selection process. Please let your recruiter know during the selection process of any accommodation needs.

Xplore Inc. is Canada’s fibre, 5G and satellite broadband company for rural living. Xplore is committed to the relentless pursuit of an improved broadband experience for all Canadians. Xplore is building a world-class fibre optic and 5G wireless network to enable innovative broadband services for better every day rural living, for today and future generations.