Title:  Senior Cybersecurity Investigator, Cybersecurity Monitoring & Triage

Requisition ID: 258964 

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Purpose

Reporting to the Senior Manager, Monitoring and Triage team, the Team Lead, is responsible of leading the Investigators in reviewing, assessing, and investigating network and data security events. They will work with the team to take actions against various network and data security use-cases while coordinating key programs that impact all divisions within the Cybersecurity Operations (CSOps) organization and all of Information Security & Controls (IS&C).

What You’ll Do:

• Leads and drives a customer focused culture throughout their team to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
• Conducts real-time triage, analysis and aggregation of security events and logs from the SIEM and controls such as the IDS, Firewall, and Anti-Malware.
• Analyze and interprets data from multiple sources, document the results and provide meaningful analysis reports and briefings.
• Tracks repetitive or noisy alerts and identify tuning opportunities.
• Use industry leading productivity tools to produce quantitative/qualitative reports, data flow diagrams & visual presentations.
• Maintains continuous SOC readiness by managing shift coverage, handovers, and escalation continuity.
• Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions. 

Is this role right for you?

• You are passionate about utilizing your technical knowledge to perform cybersecurity investigations using various analytical methods and technologies
• You thrive in using different solutions to enhance the company’s global security monitoring
• You excel in using available intrusion detection infrastructure to detect and remediates threats.
• You enjoy investigating and reviewing suspicious activities reported by customers or other employees of the bank.
• You enjoy taking part in initiatives to contribute to the strategic direction for security related technologies or other controls that need to be put in place to reduce the threat levels to the company.
• You thrive in effectively breaking down complex technology knowledge & communicating same to non-technical people.

What You'll Bring:

• You possess advanced communication (verbal/written/presentation) skills in English. The same in Spanish is a strong asset.
• You have at least 1 year of hands-on technical working experience in performing any of network security, information security, network and IT support or any other related fields.
• You have developed capabilities in prioritizing and completing assigned tasks in a timely manner and provide oversight and training to other less experienced team members.
• Based on the results of the investigations, be able to determine the escalation path and engage other teams should be involved in the investigationYou have a working knowledge of various network principles, cyber security concepts, investigation procedures, and adversary techniques.
• You have a strong analytical and problem resolution skills.
• 24/7 Split shifts Monitoring team in a rotational basis. This is one of the main roles in this position requires the employees to participate in rotational support on call schedules, like primary or secondary, to attend/receive calls made through the CSOC Hotline, during the day, night and weekends
• You can demonstrate ability to conduct investigations across multiple security technologies
• Post-secondary education in Computer Science or in a related field.
• Certifications (GSEC, CompTIA Security+, CCNA, CompTIA Networking+, ITIL CEH, and OSCP) are nice to have.

Working Conditions

Work in standard office-based environments located in Scarborough and Downtown Toronto; non-standard hours are a common occurrence. No external travel required.

Interested?

If your experience is closely related but doesn’t align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank!

At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That’s why we work to grow and diversify talent and engage employees in a performance-oriented culture.

What's in it for you?

• While our focus is on finding someone to support Enterprise technologies, we are part of a global information security team that supports various business lines globally.  As a team we have the opportunity to work on various applications and complex project.
• Our primary office in Scarborough is freshly renovated with a design focus on enabling collaboration through both environment and technology.
• This role is in person.
• Onsite cafeteria plus complimentary hot beverage stations in the workplace.
• Minutes by TTC bus from Warden subway station on Line 2.
• Free employee shuttle service connecting the IT campus with nearby GO stations.
• Free onsite & offsite employee parking with charging stations for electric vehicles onsite
• Dress codes don't apply here, being comfortable does
• We provide you with the tools and technology needed to create beautiful customer experiences
• We have an inclusive and collaborative working environment that encourages creativity, curiosity, and celebrates success!
• You'll get to work with and learn from diverse industry leaders, who have hailed from top technology companies around the world.
• We foster an environment of innovation and continuous learning.
• We offer a competitive total rewards package, including a performance bonus, company matching programs (pension & Employee Share Ownership), generous vacation; health/medical/wellness benefits; employee banking privileges.

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our  Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.