Title:  Team Lead, Cybersecurity Monitoring and Triage

Requisition ID: 248193

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Reporting to the Senior Manager, Monitoring and Triage team, the Team Lead, is responsible of leading the Investigators in reviewing, assessing, and investigating network and data security events. They will work with the team to take actions against various network and data security use-cases while coordinating key programs that impact all divisions within the Cybersecurity Operations (CSOps) organization and all of Information Security & Controls (IS&C).

The role:

• Leads and drives a customer focused culture throughout their team to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
• Conducts real-time triage, analysis and aggregation of security events and logs from the SIEM and controls such as the IDS, Firewall, and Anti-Malware.
• Analyze and interprets data from multiple sources, document the results and provide meaningful analysis reports and briefings.
• Tracks repetitive or noisy alerts and identify tuning opportunities.
• Use industry leading productivity tools to produce quantitative/qualitative reports, data flow diagrams & visual presentations.
• Maintains continuous SOC readiness by managing shift coverage, handovers, and escalation continuity.
• Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions. 
        

Is this role right for you? In this role, you will:

• You are passionate about utilizing your technical knowledge to perform cybersecurity investigations using various analytical methods and technologies
• You thrive in using different solutions to enhance the company’s global security monitoring
• You excel in using available intrusion detection infrastructure to detect and remediates threats.
• You enjoy investigating and reviewing suspicious activities reported by customers or other employees of the bank.
• You enjoy taking part in initiatives to contribute to the strategic direction for security related technologies or other controls that need to be put in place to reduce the threat levels to the company.
• You thrive in effectively breaking down complex technology knowledge & communicating same to non-technical people.

Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:

• You possess advanced communication (verbal/written/presentation) skills in English. The same in Spanish is a strong asset.
• You have at least 1 year of hands-on technical working experience in performing any of network security, information security, network and IT support or any other related fields.
• You have developed capabilities in prioritizing and completing assigned tasks in a timely manner and provide oversight and training to other less experienced team members.
• You have a working knowledge of various network principles, cyber security concepts, investigation procedures, and adversary techniques.
• You have a strong analytical and problem resolution skills.
• 24/7 Split shifts Monitoring team in a rotational basis
• You can demonstrate ability to conduct investigations across multiple security technologies
• Post-secondary education in Computer Science or in a related field.
• Certifications (GSEC, CompTIA Security+, CCNA, CompTIA Networking+, ITIL CEH, and OSCP) are nice to have.

What's in it for you?

• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employees to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.  
• Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
• Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, Humans of Digital and much more!

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.