Information Security Advisor

Requisition ID: 203260

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

The Information security advisor is responsible for contributing to the overall success of the Information Security & Control Advisory Services in Canada, Latin America, and the Caribbean ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team’s business strategies and objectives. Ensures all activities conducted follow governing regulations, internal policies, and procedures. The resource should be able to act like a subject matter expert on the threat risk assessment/advisory service processes and enable the advisory team to produce quality assessments.

KEY ACCOUNTABILITIES

• Focus on implementing right security controls for the bankand ensure all the threat risk assessments are well documented, tracked, and managed.

• Educate team members on security awareness and industry best practices to enable them for success.

• Demonstrate experience in security controls such as network security, logical access management etc. and provide valuable feedback to the risk advisors.

• Lead initiatives to enhance bank security posture by regularly reviewing bank’s standards and aligning them with bank’s policies and NIST standards.

• Propose technical feasibility solutions for new functional designs and suggest options for performance improvement.

• Identify gaps in the Threat risk assessment process and work with the stakeholders to align the process as per the bank standards.

• Standardize artifacts/documents and develop operating procedures including training material related to threat risk assessment (TRA).

• Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.

• Focus on continuous improvement and learning, data driven decisions, and accountability for delivery of key metrics and deliverables.

FUNCTIONAL COMPETENCIES

• Effectively support security advisory services governance team by ensuring all the tasks are completed and delivered on time. Able to escalate any material issues that may put bank assets at risk .

• Supports and executes status reports with the purpose of measuring progress towards goals, tracking high/critical risks, and identifying improvement opportunities in the areas of threat risk assessment, risk tracking and action plans.

• Must be able to simplify security and technical concepts for teams within our business and technology teams.

• Demonstrated ability to work autonomously and manage a wide variety of work streams simultaneously.

• Champions a high-performance environment and contributes to an inclusive work environment.

EDUCATIONAL REQUIREMENTS

• Master’s or bachelor’s degree in computer science or a related field

• Minimum 5+ years’ experience as information security advisor with emphasis on IT Security and technical solutions

• Good to have one of the following Information Security accreditations, CISSP, CISA, CISM or Equivalent

• Excellent written and verbal communication skills to include the creation of reports and the manipulation of data using the Microsoft Productivity suite of tools

• Experienced in GRC tools(e.g., RSA Archer or ServiceNow) and its implementation

• Demonstrates knowledge of risk management and mitigation concepts

Location(s): Canada : Ontario : Toronto

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, pleaseclick here (https://www.scotiabank.com/careers/en/careers/technical-support-for-applicants.html) . Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.