Title:  Cloud Security Architect-Cloud & Platform Engineering

Requisition ID: 261087 

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Scotiabank continues to be an industry leader for Payments technology and innovation. We have a history of safely leveraging new tools to enable new experiences for our customers, focusing on ensuring we protect their interests and goals. The result of this leads to modernization programs which aim to offer enriched information and transparencies to support the rapidly evolving payments community.

The Role

The Cloud Security Architect ensures continuity and maturity of Cloud Security and CNAPP architecture, including CSPM, CIEM, CWPP, and IaC controls, which are foundational to securing bank's cloud platforms. This strategic senior role owns day‑to‑day architecture decisions, platform integrations, and risk-driven design aligned with enterprise security standards.

What You’ll Do:

• Lead CNAPP architecture & rollout across multi-cloud and Hybrid solutions, including integration patterns and operationalization design.
• Design multi-cloud / hybrid security solutions covering data protection, IAM, and threat management for enterprise workloads and global user base.
• Define security controls through policy as Code (e.g., OPA, CNAPP tool's OOTB policies, Cloud Fabric policies), aligned to enterprise standards and design its integrations points to ensure posture security, vulnerability management and remediation workflows are in place. 
• Define and publish Security Reference Architectures and reusable patterns (secure-by-design) for engineering adoption across platforms and products.
  Partner with platform engineering / DevSecOps teams to integrate scanning and controls into CI/CD (e.g., Terraform Cloud, GitHub Actions, Azure DevOps), including risk decisions and exceptions.
• Own cloud security architecture artifacts (diagrams, deep dives, capability views) and communicate target/current state to stakeholders.
• Provide advisory and architecture reviews (TRA / governance forums), identify gaps, recommend pragmatic remediation, and align to delivery timelines.
• Support audit and compliance evidence through control documentation, traceability to NIST / CSA / CIS, and responses for internal/external reviews.
  Coordinate cloud security integrations requiring network/service-boundary controls) for vendor/tool onboarding.
• Define enterprise AI security reference architectures

What You'll Bring:

• Demonstrated experience in cloud security architecture across GCP, Azure, or AWS, including deep understanding of cloud platform services and enterprise-scale design patterns.
• Proven experience designing, implementing, and scaling CNAPP capabilities (such as CSPM, CWPP, CIEM, IaC scanning) in production-grade cloud environments.
• Hands-on experience integrating DevSecOps controls into CI/CD pipelines such as GHA, Jenkins, including secure infrastructure provisioning using tools such as Terraform Cloud. 
• Strong understanding of cryptography, IAM, data protection and Network architecture
• Strong experience designing and implementing security controls aligned to frameworks such as NIST and CIS.
• Experience with cloud-native workload security: containers/Kubernetes (e.g., GKE,AKS,EKS) and runtime controls (CWPP-style).
• Familiarity with common security toolchain integrations (e.g., CNAPP, SSPM, SAST/DAST, logging/monitoring).
• Strong architecture communication: writing reference architectures, diagrams, and decision records; influencing stakeholders across security/engineering/risk.
• Certifications or equivalent depth (e.g., CISSP, CCSP) and comfort operating in regulated / audit-driven environments.
• Experience working in Agentic AI applications is an asset.

What's in it for you?

• You’ll join a team focused on building cloud platforms as products, enabling delivery teams across the enterprise rather than acting as a centralized gatekeeper or operating within a narrow delivery focus. This role offers exposure to a wide range of technologies, problem domains, and stakeholders.
• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove, and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.
• Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
• Competitive Rewards program including bonus, flexible vacation, personal, sick days, and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs.

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our  Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.