Director, Cloud Security

1 month ago


Old Toronto, Canada Scotiabank Full time

Join a purpose-driven winning team, committed to results, in an inclusive and high-performing culture.

The Director, Cloud Security will lead and oversee Cloud Security within Global Risk Management (GRM) globally ensuring business strategies, plans and initiatives are executed and delivered in compliance with governing regulations, internal policies, procedures with an understanding of industry frameworks/regulations/standards like CSA STAR, ISO, NIST, OWASP, OSFI etc in scope of cloud security.

Leads a second line of defense team to oversee and monitor cloud security, architecture and design with a focus on data risk management programs (i.e., data protection). The role will partner closely with cross-functional teams in the Bank including data risk management, security, devOps, infrastructure, network and technology teams to evolve foundational and transformational security and data risk management strategy for cloud across the enterprise.

Is this role right for you? In this role, you will:

  • Lead and drive a customer-focused culture throughout your team to deepen client relationships and leverage broader Bank relationships, systems, and knowledge.
  • Drive security and compliance of the Bank’s cloud environments while providing strategic guidance and implementation of a comprehensive second line of defense over key components in cloud, including security, data protection, architecture (both technical and data).
  • Partner with key stakeholders to oversee and monitor enterprise aligned cloud strategic framework as well as assess design and provide architectural advice on how to securely develop and build applications and supporting infrastructure.
  • Develop programs to enable the identification of cloud cyber security and IT risks, by providing compliance and oversight in the form of frameworks, policies, tools, and techniques to support risk and compliance management.
  • Challenge the creation of secure reference architectures, frameworks, policies and patterns for the security aspects of the SDLC including application, mobile, infrastructure, DevOps, cloud, and CI/CD pipelines. Challenge scalable Cloud Security architectural patterns and templates that support enhancing Cloud Security posture through tooling, automation, and other means.
  • Govern cloud security practices at Scotiabank to enable cloud acceleration in a secure manner. Assess security controls, requirements, architecture and tooling to manage the security posture and secure workloads to support the Bank’s cloud migration.
  • Support a continuously evolving holistic cloud security strategy covering the various cloud deployment models – SaaS, PaaS, and IaaS.
  • Monitor and report on the effectiveness of security controls and make recommendations for improvement.
  • Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.
  • Create an environment in which your team pursues effective and efficient operations of their respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
  • Build a high-performance environment and implement a people strategy that attracts, retains, develops, and motivates your team by fostering an inclusive work environment and using a coaching mindset and behaviours; communicating vision/values/business strategy; and, managing succession and development planning for the team.

Do you have the skills that will enable you to succeed in this role? We’d love to work with you if you have experience with:

  • University degree, preferably in Computer Engineering, Computer Science or related field, and a minimum of 10 years’ experience in increasingly senior Information Security roles in a complex, global organization.
  • 3+ years of experience developing, implementing, and maintaining security solutions in public cloud like GCP, Azure or AWS. Extensive understanding of cloud infrastructure and services.
  • Experience leveraging CI/CD deployment methodologies and infrastructure as code (IaC).
  • Financial services and, specifically, banking experience is mandatory.
  • Experience in driving cross-functional senior executive steering committees with a global presence.
  • Experience in developing and managing multi-million business cases for strategic initiatives.
  • Expertise in product/application security architecture, application security, cloud SaaS/PaaS/IaaS solutions.
  • Understanding of application and product architectures, programming languages, web application stacks, and SDLC pipelines.
  • Excellent written and verbal communication skills, with the ability to communicate security objectives and concepts to technology and business teams to technical and non-technical stakeholders.
  • Ability to lead technical teams in a highly complex and matrixed organization. Ability to lead through influence, excellence, and example is essential to success.
  • Strong leadership and collaboration skills. Excellent oral and written communication, ability to present confidently to senior executives, attention to detail and strong planning and management ability.
  • Deep and broad knowledge of enterprise, cloud, and security technologies is expected. Specific strong knowledge and experience with common hosting, storage, and networking technologies is required. Experience with Workload Protection and Posture Management products an asset.
  • Experience with and knowledge of formal project management methodologies is desired.
  • English fluency required and Spanish preferred.

What's in it for you?

  • The opportunity to join a forward-thinking and collaborative team, surrounded by innovative thinkers.
  • A rewarding career path with diverse opportunities for professional development.
  • Internal training to support your growth and enhance your skills.
  • An inclusive working environment that encourages creativity, curiosity, and celebrates success
  • Work in an Ecosystem; a bright, modern space where you’ll have access to group seating, offices, collaboration spaces, a cafeteria with different options daily, a bistro, and more.

Location(s): Canada : Ontario : Toronto

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families, and their communities achieve success through a broad range of advice, products, and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.

#J-18808-Ljbffr

  • Old Toronto, Canada Scotiabank Full time

    Director, Cloud Security Job Summary:The Director, Cloud Security will lead and oversee Cloud Security within Global Risk Management (GRM) globally to ensure business strategies, plans, and initiatives are executed and delivered in compliance with governing regulations, internal policies, procedures, and industry frameworks.The role will partner closely with...


  • Old Toronto, Canada Scotiabank Full time

    Join a purpose-driven winning team, committed to results, in an inclusive and high-performing culture.The Director, Cloud Security will lead and oversee Cloud Security within Global Risk Management (GRM) globally ensuring business strategies, plans and initiatives are executed and delivered in compliance with governing regulations, internal policies,...


  • Old Toronto, Canada Robinhood Full time

    Job DescriptionWe are seeking a skilled Technical Director to lead our Application Security team within Security Engineering.About the RoleThe ideal candidate will possess a deep understanding of both information security and software engineering, with experience leading teams of engineers from diverse disciplines. They should be able to deploy and manage...


  • Old Toronto, Canada ProViso Staffing Full time

    Story Behind the Need:Business group: Cloud Security Engineering – We design, build and oversee Security procedures and tools for the Bank’s Cloud Infrastructure.Project: CNAPP – Role is critical to design & implement Cloud Native Security Tooling in Google and Azure environments.Candidate Value Proposition:The successful candidate will have the...


  • Old Toronto, Canada PagerDuty Full time

    About the RoleWe are seeking a highly skilled and experienced Security Engineering Director to join our team at PagerDuty. As a key member of our security organization, you will be responsible for leading the development and implementation of our cloud security architecture, ensuring the safety of our customers' data and the security of our cloud...

  • Director, Analysis

    3 weeks ago


    Old Toronto, Canada Director File Full time

    Reporting to the Senior Director of Threat Intelligence, you will be responsible for intelligence collection, analysis, and production. You will be assessing trends and providing recommendations to support end-users across the enterprise.Skills:Experience working within Threat Intelligence. A background in a Security Operations Center is nice to...

  • Cloud Security Expert

    4 weeks ago


    Old Toronto, Canada Robinhood Full time

    About the Cloud Security Team:The Cloud Security team at Robinhood is dedicated to protecting our AWS cloud infrastructure and providing engineers with the foundational security capabilities they need to develop secure applications. A Staff Cloud Security Engineer on this team is a well-rounded technologist with deep knowledge of cloud security and building...


  • Old Toronto, Canada Questrade Financial Group Full time

    About This RoleAt Questrade Financial Group, we are committed to fostering a diverse and inclusive work environment that supports the growth and development of our employees.We are seeking a highly skilled Cloud Security Architect to join our team and contribute to the development of our cloud security strategy.The successful candidate will have a deep...


  • Old Toronto, Canada LZ Security & Service GmbH Full time

    As the Director of Security Transformation, you will lead the enhancement of the Security strategy through the development of a multi-year roadmap. Key responsibilities include:Development of a multi-year cyber security roadmap and executing on a revamped security strategy.Working with vendors and executing RFPs.Managing, growing, and mentoring the current...


  • Old Toronto, Canada Menlo Ventures Full time

    About This RoleAt Menlo Ventures, we're seeking an experienced Cloud Security Architect to join our team. In this critical security leadership role, you will be responsible for developing and implementing a comprehensive identity and access management (IAM) strategy to ensure the security and integrity of our cloud infrastructure.Key ResponsibilitiesDevelop...


  • Toronto, Canada Delpath Full time

    Job DescriptionDelpath is seeking an experienced Cloud Security Specialist to join our team. The successful candidate will have a strong background in cloud security, including IAM, workload protection, cloud misconfiguration, encryption, and network security.The ideal candidate will have at least 8 years of experience in IT, with 4+ years as an IT Product...


  • Old Toronto, Canada BDO Canada LLP Full time

    Senior Cloud Security SpecialistBDO Canada's Cybersecurity consulting team is seeking a Senior Consultant to join our Cloud Security Engineering team. This role involves collaborating with clients and internal team members to ensure project goals and objectives are met, delivering high-quality work on time and within budget.Key Responsibilities:Collaborate...

  • Director, IT Security

    6 months ago


    Toronto, Canada Scene+ Full time

    **Who we are** Join Scene+ and be part of Canada's most robust lifestyle loyalty program with over 15 million members and growing! We are a trusted brand, driven by the belief that there's always something to look forward to with rewards for every kind of life. Our goal is to become Canada’s favourite loyalty program by nurturing our Members with rewards...


  • Old Toronto, Canada Robinhood Full time

    About the RoleThe Cloud Security team at Robinhood is responsible for protecting our AWS cloud environment and providing engineers with foundational security capabilities. This aligns with our 'Safety First' value, where we strive to make our cloud platform safe by default.We are looking for a seasoned cloud security expert to build security controls on...


  • Old Toronto, Canada LotusFlare, Inc Full time

    Job Description:We are seeking a skilled Cloud Security Architect to join our team at LotusFlare, Inc. in Silicon Valley.About the Role:This is a challenging and rewarding position that requires strong technical skills, excellent communication abilities, and a passion for security.Duties and Responsibilities:Act as a key member of our cloud-native digital...


  • Old Toronto, Canada Scotiabank Full time

    Cloud Engineering Director - Cloud OperationsWe are seeking an experienced Cloud Engineering Director to lead our Cloud Operations team in Toronto, Canada.The successful candidate will be responsible for designing and managing cloud services and components to enable safe enterprise-wide use of public cloud offerings with a hands-on approach.Key...


  • Toronto, Canada Delpath Full time

    Job DescriptionWe are seeking a skilled Cloud Security Specialist to join our DevOps team at Delpath. As a junior-level Product Manager, you will play a critical role in the implementation of CNAPP products across our organization.The successful candidate will have strong technical expertise in cloud security domains, including IAM, workload protection,...


  • Toronto, Ontario, Canada mccainfood Full time

    Job DescriptionWe are seeking a highly experienced and skilled Cloud Transformation Director to lead our cloud transformation strategy and implementation.About Us:Mccain Food is a global leader in the food industry, and we are committed to shaping the future of food through innovation and technology.Job Summary:The Director of Cloud Infrastructure Strategy...


  • Old Toronto, Canada LotusFlare Full time

    Job SummaryLorem ipsum dolor sit amet, consectetur adipiscing elit. Sed sit amet nulla auctor, vestibulum magna sed, convallis ex. Proin ultricies ligula quis lectus scelerisque, et sollicitudin ex congue. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus.Key ResponsibilitiesManage the security of cloud-native runtime...


  • Old Toronto, Canada ProViso Staffing Full time

    About the RoleAt ProViso Staffing, we are seeking an experienced Cloud Security Solutions Architect to join our team. This is a critical role that involves designing and implementing cloud native security tooling in Google and Azure environments.Key ResponsibilitiesCollaborate with DevOps teams to integrate cloud security tools within their pipelines.Design...