Requisition ID: 103132Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.
As the Senior Manager, Cyber Security and IT Risk, you will contribute to the overall successful development and execution of a second line of defense program for Cyber Security and IT risk, performs assessments of risk management practices carried out by the first lines of defense, carry out quantitative analysis of threat and vulnerability scenarios which may impact global IT systems operation as well as business processes supporting the Banks multiple delivery channels, ensuring all operates within the Banks risk appetite levels for Cyber Security and IT services
You will contribute to the development, execution and ultimately the overall success of a second line of defence function within the Global Cyber Security and IT Risk Management Program. You will also deliver challenge and independent assessment and oversight of risk management practices carried out by the first line of defence.
What you’ll do in this role?
Deliver objective evaluation and oversight of risk management practices carried out by the first line of defence to ensure that the Banks processes and controls relating to Cyber Security and IT Risks are sufficient to maintain the consistent operation of systems, the continuous availability and integrity of data and the confidentiality of sensitive information. The Banks global IT operation consists of over 2000 applications and more than 250,000 technology components across various global sites which are security monitored through the Banks centralized Security Operations Centre.
Guide IT, Security and other control functions on Cyber Security and IT Risk management processes, systems and procedures; reviews and provide advice relating to policies frameworks, standards and control objectives; and ultimately build and sustain a risk aware culture.
Collaborate with internal and external partners to ensure information sharing and support complementary and contrasting risk oversight initiatives as appropriate
What we’re looking for?
Masters degree or higher in science, technology, engineering, or mathematics
Experience with statistical modeling and data science methods
5+ years experience in consulting and advisory roles. Experience in the Security and Information Technology Industry.
5+ years of experience with IT Operations, Information/Cybersecurity risk experience. Subject matter expertise is an asset.
Demonstrated ability to analyze complex data in order to arrive at succinct messages and conclusions.
Excellent interpersonal, leadership and relationship-building skills to deal with senior levels of management, local and remote business partners and regional risk teams.
Experience using COBIT, ITIL and other IT Operation specific industry frameworks. Experience using of GRC risk management tools. Professional certifications and membership of associations such as CRISC, CISA, CISSP, CISM, etc. are an asset.
Must have a proven demonstrated practice in leading and executing change initiatives
Experience programming in statistical languages such as Python, R, or Matlab
Spanish proficiency is an asset, not required
This position is located in downtown, Toronto. Based in Toronto with a significant amount of work performed remotely with other countries, majority of the work is performed via voice and video calls.
Location(s): Canada : Ontario : Toronto Scotiabank is a leading bank in the Americas. Guided by our purpose: “for every future”, we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets. At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.