Senior Analyst, Cyber Security Control

Senior Analyst, Cyber Security Control & Defense Join to apply for the Senior Analyst, Cyber Security Control & Defense role at Scotiabank. Requisition ID: 239183. Scotiabank’s Cyber Integration & Automation (CIA) team, the Policy Design and Implementation group, is responsible for designing, testing, and implementing security control configurations operated under Cyber Security Services (CSS). This involves building security policy configurations, testing to ensure they meet business requirements, and deploying them globally across the bank’s security infrastructure. The group also provides post‑implementation support and root‑cause analysis to support the bank’s mission and mandates for cyber security. The Cyber Control and Defense group seeks an IT Security Analyst to manage and support the bank’s security controls, with a focus on solutions around data loss prevention (DLP). The successful candidate will report directly to the Senior Manager of Cyber Integrations & Automation. In this role, you will: Build, create, and manage policies across data loss prevention for the Bank. Work with various teams to develop policies and collaborate with vendors on infrastructure updates. Work with large software products such as Trellix, Forcepoint, Broadcom, Zscaler, GCP, Proofpoint, Big ID, and Microsoft. Collaborate with other teams to support data protection objectives. Plan, coordinate, and implement security measures for information systems to regulate access and prevent unauthorized modification, destruction, or disclosure of information. Identify security issues and risks, and develop mitigation plans. Architect, design, implement, support, and evaluate security‑focused tools and services, including project leadership roles. Develop and interpret security policies and procedures. Participate in security compliance efforts. Develop and deliver training materials and provide general security awareness and specific security technology training. Evaluate and recommend new and emerging security products and technologies. Conduct data analysis to identify opportunities to strengthen controls or tune existing controls for better performance. Do you have the skills that will enable you to succeed in this role? We would love to work with you if you have: 5+ years of experience in a similar IT Security Analyst or Cybersecurity role. 3+ years of combined experience in DLP technologies such as McAfee/Trellix, Proofpoint, and Zscaler (these 3 preferred); Symantec DLP is an acceptable replacement. 3+ years of experience monitoring or investigating DLP incidents directly in application or console. 3+ years of experience with end‑user troubleshooting – including desktop support or reporting, preferably using Windows. Proficiency in Microsoft Office, including advanced knowledge of Excel. 2+ years’ experience with regular expression (regex) or Python scripting (intermediate level preferred). Bilingual in Spanish is a strong preference. Experience from Banking/Financial Institutions. Experience in international regulatory and compliance frameworks. Experience in infrastructure or application‑level vulnerability testing and auditing. Experience with automation, APIs, and SaaS services. Microsoft Active Directory and file server/directory experience. Cloud Security and DLP experience. Excellent verbal and written communication skills. Reliability, proactiveness, results‑orientation, customer focus, and attention to detail. Flexibility and adaptability to a dynamic environment, with the ability to make quick, sound decisions under pressure. Strong organizational, problem‑solving, communication, and collaboration skills. Bachelor’s degree in a technical field such as computer science, computer engineering, or a related field (required). Applicable security certifications (CISSP, CISA, ITIL) are nice to have. Strong technical Security Analyst skillset with DLP technologies and incident investigation. Data governance and/or financial data classification knowledge. Banking experience is an asset – DLP works with special financial classifications. What’s in it for you? Diversity, Equity, Inclusion & Allyship – We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and embraced through bias‑free practices and inclusive values across Scotiabank. Accessibility and Workplace Accommodations – We value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Upskilling through online courses, cross‑functional development opportunities, and tuition assistance. Competitive Rewards program including bonus, flexible vacation, personal, and sick days, with benefits starting on day one. Community Engagement – Opportunities for community engagement & belonging through programs such as hackathons, contests, and more. Location(s): Canada : Ontario : Toronto. Scotiabank is a leading bank in the Americas, guided by our purpose: "for every future". We help our customers, families, and communities succeed through a broad range of advice, products, and services. For recruitment, if you require accommodation—including an accessible interview site, alternate format documents, an ASL interpreter, or assistive technology—please let our Recruitment team know. We thank all applicants for their interest; however, only those selected for an interview will be contacted. Seniority level Associate Employment type Full‑time Job function Information Technology Banking Sign in to set job alerts for “Cyber Security Analyst” roles. #J-18808-Ljbffr