Title:  Specialist, Security Assurance

Requisition ID: 240234

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Security Assurance within Security Risk Governance is responsible for reviewing privileged accesses and configurations on a scheduled basis to identify areas where access and configurations have been changed without cause. This team is responsible for

• Ensuring security operation teams adhere to defined processes and procedures, supporting the achievement of the Bank’s security objectives.
• Reviewing operational practices, reporting gaps, and working with the process owners to achieve resolution of any identified deficiencies.
• Identifying and managing compliance related issues, tracking IT risks as well as other key performance indicators.

The Role

As an Information Security Specialist, the role ensures the protection and integrity of Bank’s critical information and assets. In this role you will:

• Collaborate with team members
• Coordinate and liaise with management as needed
• Review access to systems including Critical Information Assets (CIA).
• Validate that access was due to authorized and documented activities (e.g. change records)
• Ensure that configurations are changed with cause and appropriate documentation.
• Identify malicious activity.
• Conduct detailed, risk-based evaluations/monitoring of Information Technology (IT) controls utilizing the Bank’s information security standards and regulatory requirements

Is this role right for you? In this role, you will:

• You have a passion for security compliance and risk, researching, implementing and maintaining effective security controls.
• You are a self-starter with skills in communication and analytical thinking, who can review large amounts of unstructured data and critically interpret findings. 
• You have an interest in reviewing various alerts and risk ratings for critical information and security sensitive or high-risk events.
• You understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.
• You want to collaborate with the business, along with the technical and operational groups across the Bank to ensure alignment of technical solutions to the business strategy
• You enjoy the challenge of leading a team.

Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:

• You have familiarity and experience with several banking applications and infrastructure environment including, but not limited to, firewalls and network security.
• You have working knowledge within IT key controls and risk assessment concepts
• Experience with operational/security risks, threats and potential exposures and potential security breach situations.
• Knowledge of audit practices and methodologies.
• One or more industry certifications like CISSP, CISA, CRISC, etc. in a related field is preferred
• You have strong communication (verbal/written) and good interpersonal skills to build relationships with internal and external customers.
• Post-Secondary education in Computer Science (related field) or 3 plus years of experience in Information Technology or a compliance role

What's in it for you?

• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements. 
• Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
• Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, Humans of Digital and much more!

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.