Requisition ID: 99686Join the Global Community of Scotiabankers to help customers become better off.
Purpose of Job
The incumbent will promote and support the mandate of the Scotiabank Privacy Office, which includes protecting Scotiabank, its senior managers, directors, officers and employees from the serious adverse consequences of non-compliance with privacy legislation (including regulatory sanction and damage to reputation).
The incumbent will support Scotiabanks privacy program and is accountable for: Assisting in the development and management of privacy policies and programs; providing training and awareness; and supporting business units in managing privacy complaints, inquiries, incidents and breaches. The incumbent will stay apprised of applicable federal and provincial privacy laws, and monitor developments in privacy laws and regulations to promote the Banks adaptation and compliance.
Specific accountabilities include:
1. Breach Management
Acting as the subject-matter expert supporting business lines to manage privacy incidents. This includes assessing severity, developing scripting and determining the root cause.
Addressing daily privacy escalations and significant incidents which may require collaboration with the Privacy Breach Management Team.
Maintaining accurate and complete records of privacy incidents and supporting documentation for legal and regulatory purposes.
Collaborating closely with other Bank stakeholders such as IT security and the business to respond to, investigate, and resolve privacy incidents.
2. Training and Awareness
Assisting in the development and implementation of applicable internal and customer-facing privacy and related policies and guidelines.
Developing privacy training materials and other communications to increase employee understanding of Scotiabank privacy policies, procedures and legal obligations.
Delivering on-going privacy training and awareness to employees.
Working with business unit compliance officers to help promote awareness of best practices on privacy issues.
3. Monitoring and Oversight
Identifying privacy risks across business units and making recommendations, as well as communicating and following-up on recommendations to stakeholders.
Monitoring key privacy and data protection legislation, analyzing compliance requirements, and making recommendations as needed.
The incumbent must be:
Highly knowledgeable about global privacy and information security regulations, enforcement trends and best practices.
Knowledgeable in risk management, privacy and compliance controls, customer dispute resolution strategies, reporting and monitoring.
Familiar with information security concepts, and able to quickly understand and assess financial services technology, systems and processes.
Skilled in analyzing information from data sets and identifying trends and patterns to help create risk mitigation plans to drive business decisions.
Experienced at using technology to support compliance programs such as issue management systems.
Experienced in the initiation, development and implementation of new policies, procedures and practices, employing solid project management skills and the organizational know-how to get things done through a network of contacts within Scotiabank.
Innovative and a self-starter with strong analytical, project management and documentation skills.
Highly skilled in communicating both verbally and in writing in order to develop succinct and useful reporting on compliance issues for an Executive Management audience.
Sensitive to the diverse cultural make-up of the Banks customer and employee population.
Able to solicit and keep the good will and cooperation of a wide range of individuals, including operational and senior management, while providing advice, guidance and strategic influencing on complex privacy compliance issues.
The incumbent must have:
Sound judgment and a strong practical approach to considering courses of action.
The flexibility to balance multiple accountabilities with competing priorities.
The ability to work independently and meet tight deadlines, and to quickly adapt to unforeseen changes in priorities and initiatives.
Understanding of security controls, privacy risk management framework and compliance models.
Demonstrated ability to deal with ambiguity and seek for clarity independently, and work effectively with remote, global teams in multiple time zones.
Strong cross team organization collaborative skills.
4+ years of experience working in a financial services company preferably with related work experience in Privacy or Compliance.
Other desired skills
Certified Information Privacy Professional (CIPP), or Information Technology Certification an asset.
Spanish proficiency an asset.
The incumbent is expected to have an Undergraduate University Degree (preferably in business or Information technology).
Location(s): Canada : Ontario : Toronto
As Canada’s International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. Our employees are committed to a superior customer experience and use the Banks six guiding sales practice principles to ensure they act with honesty and integrity.At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.