Full-time
Senior Information Security Advisor Security Policy

Join the Global Community of Scotiabankers to help customers become financially better off. A Best WorkplaceScotiabank is a premier financial institution and Canada’s most international bank recognized as a Best Workplace®, in Canada, Mexico, El Salvador, Costa Rica, Puerto Rico, Dominican Republic, Panama, Peru, Chile and Latin America by the Great Place to Work® Institute. A multinational winning team Scotiabank is Canada’s international bank and a leading financial services provider in North America, Latin America, the Caribbean and Central America, and parts of Asia. We are dedicated to helping our 21 million customers become better off through a broad range of advice, products and services, including personal and commercial banking, wealth management, corporate and investment banking. Corporate Social ResponsibilityScotiabank helps to build bright futures worldwide through ethical banking practices, environmental awareness and a commitment to communities. By working together, we build strong relationships and create value for our customers. Scotiabank’s Information Technology and Solutions provides global technology solutions support to each of our core businesses - Domestic Banking, International Banking, Global Banking & Markets and Global Wealth & Insurance. Our technology-based solutions enable Scotiabank to achieve sustained profitable growth and a competitive advantage. Job Summary: The incumbent is responsible for providing advisory services to business lines, subsidiaries and affiliates enabling the achievement of the Bank's Information Security Policy. Specifically, the incumbent will provide advisory services to assist in the development and support of sound security strategies and secure control processes to protect the Bank's information and data resources, by: • Acting as a central point of reference and core competency for Information Security. Assisting in the classification and protection of data resources by providing guidance on secure and cost effective implementation of Bank's security policies and standards. • Representing Information Security in projects, initiatives, mergers and acquisitions. Working with business lines to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes to protect the Bank. Drive initiatives and support business functions to assess security risks and to make informed decisions to protect information assets. • Leading security due diligence reviews over third party services providers to determine to determine if implemented security and control practices align with the Bank and industry best practices. Working with the relationship owner and the 3rd party to create and track an action plan for remediation of identified issues. • Providing guidance to design, develop and implement sound risk management controls in accordance with Bank's standards that assure the Bank's compliance with industry regulations. Keeping informed and well versed on financial industry regulations demands in different regions based on practical experience. • Pursuing security and control process improvements to advance security compliance and improve internal processes. Key Accountabilities: The incumbent is responsible for providing advisory services to business lines, subsidiaries and affiliates enabling the achievement of the Bank's Information Security Policy. Specifically, the incumbent will provide advisory services to assist in the development and support of sound security strategies and secure control processes to protect the Bank's information and data resources, by: • Acting as a central point of reference and core competency for Information Security. Assisting in the classification and protection of data resources by providing guidance on secure and cost effective implementation of Bank's security policies and standards. • Representing Information Security in projects, initiatives, mergers and acquisitions. Working with business lines to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes to protect the Bank. Drive initiatives and support business functions to assess security risks and to make informed decisions to protect information assets. • Leading security due diligence reviews over third party services providers to determine to determine if implemented security and control practices align with the Bank and industry best practices. Working with the relationship owner and the 3rd party to create and track an action plan for remediation of identified issues. • Providing guidance to design, develop and implement sound risk management controls in accordance with Bank's standards that assure the Bank's compliance with industry regulations. Keeping informed and well versed on financial industry regulations demands in different regions based on practical experience. • Pursuing security and control process improvements to advance security compliance and improve internal processes. Functional Competencies: Required Skills: Minimum of 5 years work experience and expert understanding of IT security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, application and networking environments.Minimum of 5 years experience and expert knowledge of security software such as ACF2 and Active Directory; zOS, UNIX or Windows operating systems with emphasis on security features; one or more of the following databases - Oracle, DB2, Sybase, SQL Server. Expert knowledge and understanding of the Bank information security policy and standards. Avanced verbal and written communication skills in English, especially report writing and presentation abilities.Strong skills in Microsoft Office suite of products - Excel, Word, Visio and Powerpoint. Educational Requirements: Educational Requirements: University degree in a computer science/related field or relevant work experienceCertifications in CISSP, CISA or SANOther Information: Must have a proven “can-do” attitude.Must be results focused with ability to manage multiple assignments concurrently. Must be able to adapt quickly to changing priorities. Must manage assignments to completion with minimal supervision, ensuring line management is aware of potential issues. Must be professional and confident when interacting with peers and those in higher positions both in the Bank and with external outsourcing partners and vendors. Must be able to travel and have a valid passport. Scotiabank is an equal opportunity employer and welcomes applications from all interested parties. We thank you for your interest, however, only those candidates selected for an interview will be contacted. No agencies please.

Expired, click here to search for relevant jobs

Around the Network