Title:  Manager, Technology Control Testing

Requisition ID: 252609 

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Contributes to the overall success of the Global Technology Control Testing (GTCT) function in Canada by executing individual goals, initiatives, and control testing activities that support the Bank’s technology risk management strategy and business objectives. Ensures all activities are conducted in compliance with applicable regulatory requirements, internal policies, standards, and procedures.

The Global Technology Control Testing team plays a critical role within the Bank’s Three Lines of Defense framework, operating as the First Line of Defense for the Enterprise technology portfolio. GTCT provides independent challenge and assurance over technology risks across key domains, including but not limited to Cyber Security, Data Privacy, Software Development Lifecycle (SDLC), Patch and Vulnerability Management, Incident and Problem Management, Disaster Recovery and Backup, Identity and Access Management, Third‑Party Risk Management, and Audit and Regulatory Issue Remediation.

The Manager, Technology Control Testing supports the Senior Manager, Technology Control Testing by leading and executing technology control testing across in‑scope business lines and platforms. This role is part of a strategic and enterprise‑wide IT Risk Management function and is responsible for ensuring control testing execution, documentation, issue management, and reporting align with regulatory expectations, the Bank’s risk appetite, and evolving technology and business practices.

The role requires strong technical understanding, the ability to interpret complex technology processes, and significant coordination with stakeholders across Technology, Security, Risk, Audit, and Compliance, including engagement with First, Second, and Third Lines of Defense.

Is this role right for you? In this role, you will:

• Demonstrate a strong understanding of the Bank’s risk appetite, technology risk landscape, and control environment, and applies this understanding to day‑to‑day decision‑making and testing activities.
• Partner with Technology Control Owners to support adherence to applicable policies, frameworks, standards, and guidelines through active engagement, technical challenge, and guidance.
• Perform design and operating effectiveness testing of technology controls across infrastructure, application, security, and data domains.
• Conduct IT General Controls (ITGCs), automated control reviews, and technical walkthroughs, including assessment of configuration, system settings, and evidence generated by technology platforms

• Identify, assess, prioritize, and report material technology risks in collaboration with control owners.

• Ensure control testing results, observations, and findings are accurately documented and recorded in the enterprise Issue Management system.
• Support the development and execution of ongoing control monitoring activities, including key risk indicators (KRIs), metrics analysis, thematic reviews, and sample‑based testing.
• Track, validate, and monitor the progress of remediation activities for issues identified through Technology Control Testing and management self‑identified findings.
• Support ad‑hoc, special, or targeted reviews in response to emerging risks, regulatory focus areas, incidents, or senior management requests.

Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:

• Strong background in technology control testing across cybersecurity, infrastructure, application development, or IT operations, with the ability to understand and challenge technical processes and controls.

• Experience performing or supporting technology control testing, IT risk assessments, audits, or regulatory reviews.
• Working knowledge of industry frameworks and standards (e.g., COBIT, NIST, ISO 27001, ITIL).

• Ability to analyze technical evidence, system outputs, and configurations to support accurate control effectiveness and risk assessments.

• Strong stakeholder management skills, with experience engaging technical SMEs and senior management.

What's in it for you?

• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employees to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.  
• Upskilling through online courses, cross-functional development opportunities, and tuition assistance. 
• Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, Humans of Digital and much more!

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our  Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.