Title:  Manager, Security Advisor USA

Requisition ID: 254890 

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Global Banking and Markets 

Global Banking and Markets (GBM) is a leading Canadian Capital Markets and Investment Banking business with a growing platform in the US and Latin America, operating globally for over 100 years. Scotiabank’s strong U.S. presence provides our clients an important bridge to this key global market for trade and investment flows across the Americas and the world. 

Global Banking & Markets provides a full range of investment banking, credit and risk management products and services relevant to the financing and strategic development needs of our clients. Our products include debt and equity financing, mergers & acquisitions, corporate banking, institutional equity sales, trading and research, fixed income products, derivatives, energy, foreign exchange and precious & metals. We also cross-sell the full range of wholesale products and services offered by the Scotiabank Group.  

Be part of an innovative, Global Capital Markets and Investment Banking business with a unique geographic footprint that puts capital to work for our clients across industries!  We work together to drive ambition for every future! 

Purpose

The Manager, Security Advisor is responsible for providing guidance to business lines to ensure the design, development and implementation of technological solutions that integrate security practices, assisting them in making informed decisions to protect Bank information and data resources, by: 

• Working with business lines, Solution Architects and Enterprise Architects to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes, by assessing security risk.  
• Designing and developing sound risk management controls in accordance with Bank's standards that ensure the Bank's compliance with industry regulations. 
• Pursuing security and control process improvements to advance security compliance. 
• Reporting to management on the status of the system of internal controls with recommendations for remediation of risks. 

What You'll Do

•  Security Solutioning:

  • Provide strategic guidance and technical expertise to business lines, IT support functions, and IS&C Control functions to include security within early stages of the design of Bank´s technological solutions. 

  • Conduct comprehensive security assessments. 

  • Conduct or provide Quality Assurance on Threat Modelling as required. 

  • Design and recommend security controls that protect Bank applications and infrastructure. 

  • Review architecture and solution design documentation and identify and assess potential risks. 

  • Evaluate existing security solutions and propose enhancements or new designs to address emerging threats and business requirements. 

  • Support the development of security patterns. 

  • Enforce security patterns, policies, standards, and procedures to protect the integrity, availability, and confidentiality of the Bank applications and infrastructure. 

  • Solution for multiple security domains (Risk Management, Data Protection, Security Engineering, Identity and Access Management, Security Architecture, Cloud Security, etc).

• Compliance:

  • Ensure that Bank security solutions align with industry regulations and organizational compliance requirements. 

• Continuous Improvement:

  • Stay updated with emerging trends in information security and propose improvements to the current security posture and processes. 

  • Conduct industry reviews and benchmarking exercises to ensure our controls are aligned with our peers, emerging threats, and available mitigation strategies. 

  • Evaluate new information security controls, technologies, tools, and processes to enhance the organization’s security. 

  • Keep informed and well versed on financial industry regulations demands in different regions based on practical experience. 

What You’ll Bring 

• Threat Modeling and Risk Management: Experience in threat modeling, identifying risks in cloud environments, and advising on security best practices during cloud migration and modernization projects.
• Compliance and Governance: Strong knowledge of cloud security governance frameworks (e.g., NIST, ISO 27001, SOC 2, CIS Benchmarks) and regulatory compliance requirements (e.g., GDPR, PIPEDA, PCI DSS).
• Security Advisory: Experience in providing security advisory services, guiding teams through cloud security best practices and modernization security strategies.
• Post-secondary education in Computer Science or in a related field. 
• At least 5 years of hands-on technical work experience in performing threat risk assessments on complex applications and network environments.  
• At least 6 years of experience in security solution architecture, software development, and/or hands-on experience with implementations of security controls. 
• Strong experience leading complex projects providing security advice to ensure information security risks are mitigated. 
• Certifications (CISSP, CISM, CCSP, CRISC, Cloud oriented Google, Microsoft or AWS certificates) are nice to have. 
• Familiar with industry standards and frameworks e.g. NIST 800-53, ISO 27001, ISO27002, ISO 27017, ISO27018, PCI DSS. 
• Solid knowledge of cloud technologies and cloud security (GCP or Azure or AWS, Kubernetes and IAM, CI/CD pipelines, Terraforms, infrastructure as a code). 
• Advanced communication (verbal/written/presentation) skills in English. 

Interested? 

If your experience is closely related but doesn’t align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank! 

At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That’s why we work to grow and diversify talent and engage employees in a performance-oriented culture. 

What's in it for you? 

Scotiabank wants you to be able to bring your best self to work – and life, every day. With a focus on holistic well-being, our many flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs.

#GBM

Location(s):  United States : Texas : Dallas 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our  Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.