Security Analyst

Overview Requisition ID: Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. Cyber Automation - Scotiabank’s Cyber Integration & Automation (CIA) team, the Policy Design and Implementation group is responsible for designing, testing and implementing security control configurations operated under Cyber Security Services (CSS). This involves building security policy configurations, testing to ensure they meet business requirements and deploying them globally across the bank’s security infrastructure. This team also provides post implementation support and root cause analysis in supporting the bank’s mission and mandates for cyber security. Coverage and maintenance of Sensitive Data Loss Prevention classifications and policies including Data Discovery. Key roles in Email DLP replacement technology program, and DLP technology alignment across the bank and subsidiaries. The Cyber Control and Defense group is seeking an IT Security Analyst to manage and support the bank’s security controls, with a focus on solutions around data loss prevention (DLP). This individual will report directly to the Senior Manager of Cyber Integrations & Automation. The successful candidate will not only have the opportunity to gain valuable experience at a top Canadian bank but also get exposure to one of the most forward-thinking security groups within banking while working hands on with some of the newest software's and applications. Responsibilities Build, create and manage policies across Data Loss Prevention technologies in the Bank Work with various teams on creating policies, working with vendors to keep infrastructure and technology up to date Work with DLP software such as Trellix (McAfee), Big ID, Microsoft, Forcepoint, Broadcom, Zscaler, GCP, Proofpoint or other similar tech The main function of an IT Security Analyst is to plan, coordinate, and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction or disclosure of information The candidate will be planning, coordinating and implementing security measures to safeguard the bank network’s sensitive data Identify security issues and risks, and develop mitigation plans Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles Develop and interpret security policies and procedures Participate in security compliance efforts Develop and deliver training materials and perform general security awareness and specific security technology training Evaluate and recommend new and emerging security products and technologies Qualifications 5+ years of experience in a similar IT Security Analyst or Cybersecurity Role. 3+ years of combined experience in these DLP technologies: Trellix/McAfee, Proofpoint, Broadcom, Forcepoint, Zscaler, Symantec 3+ years of experience monitoring or investigating DLP incidents directly on application or console. 3+ years of experience with end user troubleshooting – someone with desktop support, or troubleshooting report preferably using Windows Proficiency in MS Office (advanced knowledge in MS Excel) 2+ years’ experience with Regex or Python scripting programming languages - intermediate level preferred. Bilingual in Spanish is a strong preference. Experience from Banking/FI. Experience in international regulatory and compliance frameworks. Experience in infrastructure or application-level vulnerability testing and auditing. Experience with Automation, APIs, and SaaS services. Microsoft Active Directory and file server/ directory experience. Project management experience Excellent verbal and written communication skills are essential. Must be reliable, proactive, results-oriented, customer-focused and attentive to details. Must be flexible to adapt to a dynamic environment, make quick and sound decisions under pressure. Strong organizational skills, excellent problem-solving, communication, and collaboration skills. Bachelor's degree in a technical field such as computer science, computer engineering or related field required. Applicable security certifications (CISSP, CISA, ITIL) are nice to have. Strong technical Security Analyst skillset with DLP technologies and incidents investigating. Data governance and/or financial data classification knowledge. Banking experience is an asset– DLP works with special financial classifications Benefits Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs). Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements. Upskilling through online courses, cross-functional development opportunities, and tuition assistance. Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one. Community Engagement - opportunities for community engagement and belonging with programs such as hackathons, Humans of Digital and more. Location(s): Canada : Ontario : Toronto Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets. At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted. #J-18808-Ljbffr