Senior Information Security Advisor
3 weeks ago
Requisition ID: 218020
Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.
The Team
Scotiabank's Security Advisory Services team is responsible for providing advisory services to Tangerine Bank and its business lines, subsidiaries, and affiliates enabling the achievement of the Bank's Information Security as it continues to move to the Public Cloud.
The Role
Reporting to the Senior Manager of Security Advisory (Tangerine), the Senior Information Security Advisor provides guidance to business lines to ensure design, development, and implementation of complex cloud projects and initiatives are in accordance with the Bank's Information Security Standards and in compliance with industry regulations. In this senior role, you will be supporting various business lines while assisting them in making informed decisions to protect information assets deployed in Public Clouds environments.
Is this role right for you? In this role, you will:
- Lead complex projects providing security advice to ensure information security risks are mitigated.
- Thrive in solutioning for multiple security domains (Application Security, Data Protection, Cloud Security Engineering, Identity and Access Management, Cloud Security Architecture, Network Security, Risk Management, etc.) while being knowledgeable of Zero Trust Architecture principles.
- Have experience in solutioning security architecture for Public Clouds, creating and reviewing security patterns, and advising on security risks.
- Be proficient in reviewing architecture and solution design documentation to identify and assess potential risks.
- Excel in reviewing Technical Design and Security Design documents and creating assessment documents (Threat Risk Assessment) and evaluating risks.
- Be passionate about new technologies and enjoy the challenges of implementing security controls to protect them.
- Work on different types of projects (from large complex to simple).
- Collaborate with various business lines, IT support functions, and IS&C Control functions.
Key Job Accountabilities:
- Conduct Threat Risk Assessments and perform security advisory work on specific applications and infrastructure associated with Scotiabank's Cloud and other initiatives ensuring that controls are adequate, meet Bank standards, and enable business objectives.
- Provide Quality Assurance on Threat Risk Assessments and Threat Modelling as required for Cloud initiatives.
- Provide strategic guidance and technical expertise on cloud security solutions and recommend best practices.
- Conduct comprehensive security assessments on large high-profile cloud initiatives implemented in GCP and Azure.
- Collaborate with cross-functional teams to design and implement robust security architectures for various systems, applications, and networks.
- Evaluate existing security solutions and propose enhancements or new designs to address emerging threats and business requirements.
- Ensure alignment with industry best practices, compliance standards, and organizational security policies.
- Identify security weaknesses, vulnerabilities, and gaps in existing systems and recommend remediation strategies.
- Provide support on how to apply the Bank's portfolio of standards to the technology footprint of Scotiabank's Cloud offering.
- Provide oversight over the specific line of business security posture, ensuring that all tools available to detect and remediate security risks have been applied.
- Conduct industry reviews and benchmarking exercises to ensure our controls are aligned with our peers, emerging threats, and available mitigation strategies.
- Work directly with technical leads from assigned Lines of Businesses supporting their initiatives from an Information Security perspective.
- Provide relationship management function primarily to the Enterprise Cloud team from an Information Security perspective.
Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:
- Post-secondary education in Computer Science or in a related field.
- At least 5 years of hands-on technical working experience in performing security assessments on cloud platforms, CI/CD deployment pipelines, network infrastructure, and complex applications. Experience with Risk Assessments of applications migrated into Cloud Environments.
- At least 6 years' experience in security solution architecture, software development, and/or hands-on experience with implementations of cloud environments, security controls, and cloud-based solutions.
- Strong communication skills and capability of creating clear documentation.
- Solid knowledge of cloud technologies and cloud security (GCP or Azure or AWS, Kubernetes and IAM, CI/CD pipelines, Terraform, infrastructure as code).
- Experience with GCP and Kubernetes is a strong asset.
- Experience with tools used in securing cloud deployments such as CNAPP, CSPM, CWPP, etc.
- Cloud security engineering or cloud solution architecture certifications from Google, Microsoft, or AWS.
- Use of industry-leading productivity tools to produce quantitative/qualitative reports, data flow diagrams & visual presentations.
- Certifications (CISSP, CISM, CCSP, CRISC) are nice to have.
- Familiarity with industry standards and frameworks e.g., NIST 800-53, ISO 27001, ISO27002, ISO 27017, ISO27018, PCI DSS, CIS.
- Advanced communication (verbal/written/presentation) skills in English. Knowledge of Spanish is an asset.
What's in it for you?
- Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank.
- Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone.
- Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
- Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
- Community Engagement - we offer opportunities for community engagement & belonging with various programs such as hackathons, contests, cooking with friends, Humans of Digital, and much more
- Working location condition: Hybrid.
Location(s): Canada : Ontario : Toronto
Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families, and their communities achieve success through a broad range of advice, products, and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.
If you require accommodation during the recruitment and selection process, please let our Recruitment team know. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.
#J-18808-Ljbffr-
Senior Information Security Advisor
3 weeks ago
Toronto, Ontario, Canada Scotiabank Full timeTitle: Senior Information Security AdvisorRequisition ID: 218020Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.The TeamScotiabank's Security Advisory Services team is responsible for providing advisory services to Tangerine Bank and its business lines, subsidiaries, and affiliates enabling the...
-
Senior Information Security Advisor
6 days ago
Toronto, Ontario, Canada Scotiabank Full timeTitle: Senior Information Security AdvisorRequisition ID: 218020Tangerine is Canada's leading direct bank. We offer flexible and accessible banking options, innovative products, and award-winning Client service. The reason why Tangerine employees come to work each day is to help Canadians live better lives. We focus on making a difference in our communities,...
-
Senior Information Security Advisor
11 hours ago
Toronto, Ontario, Canada Tangerine Bank Full timeTitle: Senior Information Security AdvisorRequisition ID: 218020Tangerine is Canada's leading direct bank. We offer flexible and accessible banking options, innovative products, and award-winning Client service. The reason why Tangerine employees come to work each day is to help Canadians live better lives. We focus on making a difference in our communities,...
-
Senior Information Security Advisor
2 weeks ago
Toronto, Ontario, Canada Scotiabank Full timeTitle: Senior Information Security AdvisorRequisition ID: 218020Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.The TeamScotiabank's Security Advisory Services team is responsible for providing advisory services to Tangerine Bank and its business lines, subsidiaries and affiliates enabling the achievement...
-
Information Security Advisor
4 days ago
Toronto, Ontario, Canada Avature Full timeWe're seeking an Information Security Advisor to join our team and help our clients navigate the complex world of cybersecurity.As a trusted advisor, you'll work closely with our clients to understand their unique security challenges and develop tailored solutions to address them.About Your RoleYou'll work closely with our clients to identify and mitigate...
-
Senior Information Security Advisor 15h Left
1 week ago
Toronto, Ontario, Canada Scotiabank Full timeTitle: Senior Information Security AdvisorRequisition ID: 218020Tangerine is Canada's leading direct bank. We offer flexible and accessible banking options, innovative products, and award-winning Client service. The reason why Tangerine employees come to work each day is to help Canadians live better lives. We focus on making a difference in our communities,...
-
Cloud Security Expert Advisor
6 days ago
Toronto, Ontario, Canada Scotiabank Full timeThe role of Senior Information Security Advisor at Scotiabank's Security Advisory Services team is crucial in providing advisory services to Tangerine Bank and its business lines, subsidiaries, and affiliates. This position enables the achievement of the Bank's Information Security as it continues to move to the Public Cloud.As a Senior Information Security...
-
Sun Life Information Security Specialist
1 day ago
Toronto, Ontario, Canada Cyber Crime Full timeAbout the RoleThis is a challenging opportunity for an experienced information security professional to join our team as a Senior Information Security Advisor. The successful candidate will be responsible for managing information security risk assessments, reviewing contracts, and advising on security best practices to ensure the safeguarding and protection...
-
Information Security Architect Lead
6 days ago
Toronto, Ontario, Canada Scotiabank Full timeThe Senior Information Security Advisor role at Scotiabank's Security Advisory Services team is a critical position that provides advisory services to Tangerine Bank and its business lines, subsidiaries, and affiliates.This position enables the achievement of the Bank's Information Security as it continues to move to the Public Cloud.You will be responsible...
-
Senior Advisor for Information Protection
3 days ago
Toronto, Ontario, Canada Websitecyber Full timeBenefitsAs a Senior Security Advisor – Data Protection at Websitecyber, you will enjoy a range of benefits, including:A financial rewards program that recognizes your success.An industry-leading Employee Share Purchase Plan; we match 50% of net shares purchased.An extensive flex pension and benefits package, with access to virtual healthcare.Possibility to...
-
Senior Manager, Information Security
3 days ago
Toronto, Ontario, Canada Manulife Insurance Malaysia Full timeAbout the Position:We are looking for an experienced Senior Manager, Information Security to join our team at Manulife. As a key member of our information security leadership team, you will be responsible for developing and implementing comprehensive information security strategies to protect our business from evolving threats.This senior role requires a...
-
Information Security Specialist
5 days ago
Toronto, Ontario, Canada SML Inox Full timeAbout the JobThe Senior Information Security Advisor plays a vital role in ensuring the security and integrity of SML Inox's information assets. As a subject matter expert, you will provide technical guidance and support to business stakeholders on information security matters.Key Responsibilities:Conduct risk assessments and develop mitigation plansProvide...
-
Information Security Governance Expert
7 days ago
Toronto, Ontario, Canada TD Full timeAbout the JobWe're looking for an experienced Information Security Specialist to join our global team. As a member of our team, you'll work closely with senior leadership to develop and implement effective regulatory compliance strategies.ResponsibilitiesLed and execute regulatory remediation assurance efforts within an area of significant risk, complexity...
-
Information Security Portfolio Strategist
6 days ago
Toronto, Ontario, Canada Interac Corp. Full timeAbout the RoleWe are seeking a highly experienced and skilled individual to join our team as an Information Security Portfolio Strategist. The successful candidate will have a proven track record of delivering complex security programs and projects, with a focus on portfolio management and optimization.In this role, you will partner with the business to...
-
Senior Information Security Consultant
3 hours ago
Toronto, Ontario, Canada Tangerine Bank Full timeWe're seeking a highly skilled Senior Information Security Consultant to join our team at Tangerine Bank. As a Senior Information Security Consultant, you'll provide expert advice on information security matters and help ensure the security posture of our organization. You'll work closely with various business lines, IT support functions, and IS&C Control...
-
Senior Manager of GRC, Information Security
2 days ago
Toronto, Ontario, Canada First National Full timeWe are hiring a Senior Manager of GRC in our Information Security department The Role: A strategic and integral member of the Information Security Team, reporting to the AVP, Information Security, is responsible for ensuring the security, integrity, and availability of First National information assets. The candidate will contribute to the...
-
Senior Information Security Expert
7 days ago
Toronto, Ontario, Canada CAAT Pension Plan Full timeJob SummaryThe Senior Information Security Analyst will be responsible for assisting with the implementation and monitoring of security controls that protect the organization's valuable assets and data. This role is key in the identification of risks and threats, protection of information and assets, detection and monitoring of events and anomalies, and...
-
Senior Information Security Professional
7 days ago
Toronto, Ontario, Canada Scotiabank Full timeAs a Senior Information Security Professional, you will play a key role in ensuring the security of Scotiabank's cloud-based systems and applications. You will provide strategic guidance and technical expertise on cloud security solutions and recommend best practices to ensure alignment with industry standards and organizational policies.The ideal candidate...
-
Senior Information Security Leader
7 days ago
Toronto, Ontario, Canada TD Bank Full timeKey Responsibilities:As a Senior Manager, Information Security Specialist, you will lead a team tasked with testing and validating corrective actions outlined in response to regulatory findings. You will also oversee the investigation, assessment, and validation of evidence supporting remediation efforts, and ensure that TD Bank's regulatory obligations are...
-
Senior Information Security Specialist
3 days ago
Toronto, Ontario, Canada Sun Life Full timeJob SummarySun Life is seeking a Senior Security Platform Engineer to join our team. This role will be responsible for designing and implementing secure networks and endpoint systems for Sun Life.About the JobThe ideal candidate will have extensive experience in managing security technologies and leading global information security projects. You will have a...
