Manager, Compliance Program & PCI Officer

Under the general supervision of the Associate Director, GRC, the Compliance Program Manager & PCI Officer is responsible to the Chief Financial Officer and Chief Information Security & Digital Trust Officer for establishing, operationalizing, and sustaining the University of Toronto’s institutional Payment Card Industry Data Security Standard (PCI DSS) compliance program and the broader information security compliance posture of the University. Whilst the Associate Director, GRC retains primary supervisory responsibility, this role maintains a dotted line reporting to the Executive Director, Treasury & Investment Services in Financial Services to provide oversight and guidance on financial risk, payment systems and merchant control considerations.

This role represents a substantive shift from project-based strategic execution to program ownership and operational compliance leadership. The Manager serves as the Universit...