Share this Job

Senior Audit Manager, Emerging Risks & Cyber Security

Date: Jun 28, 2019

Location: Toronto, ON, CA

Company: Scotiabank






Requisition ID: 63157


Join the Global Community of Scotiabankers to help customers become better off.

Job Purpose


Lead and conduct risk based IT audits following the bank's audit methodology.


Job Accountabilities


  • Plan and lead collaborative risk-based IT infrastructure audits of moderate to high complexity and conclude whether risks are appropriately managed through the existence of effective control or other techniques. 
  • For those audits where the auditor assumes a supervisory role, the auditor is expected to develop a comprehensive audit plan clearly outlining the objective, scope, deliverables, approach, resourcing and schedule.
  • Follow the Audit Standard Guidelines of the Bank and specific application, project and operations audit methodologies.
  • Ensure that audit conclusions and recommendations are properly supported by an orderly accumulation and analysis of documented audit evidence, and that the audit report content is clear, concise and supported by the audit work completed.
  • Perform accountabilities with minimal supervision and provide audit management and audit client with regular status updates of  the assignment.  The incumbent is expected to seek and obtain direction, perspective and resources as required in order to complete the assigned audit on time and within budget.
  • Prepare and deliver effective presentations to clients at audit opening and closing meetings as a means of communicating and gaining their agreement and understanding of audit plans and audit results.
  • When required, prepare and present effective presentations on various audit and technology related matters as a means to share information and demonstrate expertise.
  • Prepare and discuss audit findings with client senior management; identifying significant issues in a business context, working with audit clients to identify and recommend feasible solutions.
  • Establish and maintain positive a profesional relationship with audit clients.
  • Maintain IT availability and information security competency through ongoing professional development and staying abreast of technical matters in the industry.


Education /Experience


  • Bachelor's degree in Information Technology, Computer Science or equivalent required.
  • One or more of the following certifications: CISA, CISM, CRISC, CRMA, CISSP, GCIA, CEH, OSCP, OSCE is required.
  • 5 years of hands-on IT infrastructure and information security experience.
  • Excellent written and verbal communication skills.
  • Experience in the assessment of threats and risks over IT processes and assets.
  • Knowledge and hands-on experience with a variety of baseline IT processes, including some of the following: IT asset management, change management, access management, incident and problem management, continuity management, availability, performance and capacity management.
  • Knowledge and hands-on experience with a variety of cyber security processes, including some of the following: network security architecture, penetration testing, Red Team testing, vulnerability asssessments, Data Loss Prevention, web application security, cloud security, DDoS protection, encryption and malware protection.
  • Knowledge and hands-on experience with a variety of technology platforms, including some of the following: operating systems, databases, middleware, networking, ABMs, workstations and mobile devices.
  • Knowledge and experience with security assessment tools (exploit tools, vulnerability assessment) and Security Operations Centre software (IDS, IPS, SIEM, etc).
  • Working knowledge of primary Bank business areas (e.g. retail banking, wealth management) would be an asset.

Location(s):  Canada : Ontario : Toronto 

As Canada's International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. We value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.

Job Segment: Audit, Risk Management, Bank, Banking, Accounting, Finance

Find similar jobs: