Share this Job

Information Security Analyst Advisory

Date: Mar 14, 2019

Location: Scarborough, ON, CA

Company: Scotiabank



Requisition ID: 57328


Join the Global Community of Scotiabankers to help customers become better off.

Scotiabank is a large international bank with financial services in over 38 countries worldwide.  Technical Security Services (TSS) is a team of security professionals in the Scotiabank Information Security and Controls (IS&C) group with a mandate to develop and manage security technologies and operational security services to secure the business and protect information assets globally.   The objectives of the team are to ensure high availability of a broad range of security technical controls and to enable the various lines of business through simple security solutions.  The successful candidate will be collaboratively engaged in the development and on-going management of a variety of security technologies deployed worldwide. 


Job Summary

Reporting to the Senior Manager, Technical Security Solutions, the Information Security Advisor is responsible to manage information security technologies and focus on the ongoing management of several information security services integral to the Scotiabank security program.   TSS security services comprise the following areas:  Enterprise Security Log Management, DDOS Protection Support, User Behavior Analytics Platform Support, e-Discovery Platform Support.  The position involves execution of day-to-day production operations of security technologies deployed across the Scotiabank IT infrastructure. 


Key Accountabilities

The successful candidate will:

  • Under limited supervision, perform all procedures necessary to ensure the safety of information systems assets and to protect systems from unauthorized access
  • Work collaboratively within a team of security professionals and across the organization in matters of security, production, technology strategy and development
  • Support various Security, IT and Business projects by providing input on security technologies and operational practices, assisting in the development of technical deployment solutions and engaging collaboratively in team-based, Agile initiatives
  • Be a consultant to the IS&C management and the business lines, providing input into policy, solution and architecture decisions
  • Support and maintain key production systems, ensuring  7/24 availability
  • Respond to incidents and resolve, triage or escalate as appropriate to meet and exceed SLA metrics
  • Develop subject matter expertise on assigned security technologies enabling effective and efficient delivery of security services
  • Upgrade technology systems according to vendor product roadmaps and patching requirements
  • Derive baseline configurations for security technologies and maintain over the course of the technology life cycle
  • Provide input to management reporting including executive summaries, condition status reporting, statistics and action item tracking. 
  • Investigate, escalate and resolve incidents related to the ongoing availability of security controls including supporting security incident investigations
  • Consistently perform internal steady state processes according to procedures within specified timelines to ensure ongoing compliance.
  • Contribute to the development and ongoing management of production operations processes including but not limited to disaster recovery, backups, technical support, break/fix, patch management


Functional Competencies

The following competencies will be considered in the selection of the successful candidate:

  • Four years or more of experience in information security, IT operations or software development
  • Interest in working with leading security technology vendors implementing state of the art solutions in a complex, global network
  • Solid working knowledge of information security and security operations
  • Experience with ITIL incident, problem and change management processes
  • Familiarity and experience with several security technologies including, but not limited to, solutions for DDOS, URL filtering, email gateway security, DLP, and IPS
  • Experience developing and implementing security technologies is an asset
  • Experience in IT production operations and incident response is an asset
  • IT platform competency in one or several of: networks, Window, Linux, UNIX, databases
  • Experience in project management, SDLC or Agile project methodologies is an asset
  • Collaborative orientation
  • Good problem solving skills
  • Competent written and verbal communication with good presentation skills


Education and Professional Designations

The following will be considered in the selection of the successful candidate:

• University degree or college diploma in a computer-related discipline

• Professional security designation such as CISSP, CISA, CISM or other is an asset

Location(s):  Canada : Ontario : Scarborough

As Canada’s International Bank, we are a leader when it comes to inclusion. We are a diverse and global team, speaking more than 100 languages with backgrounds from more than 120 countries. We value the unique skills and experiences each individual brings to the bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates selected for an interview will be contacted directly.  If you require accommodation during the recruitment and selection process, please let us know. We will work with you to provide as seamless a recruitment experience as possible.

Job Segment: Information Security, Bank, Banking, Information Systems, Technology, Security, Finance