Typical Day in Role:
Dedicated and detail-oriented cybersecurity professional with a strong background in regulatory compliance.
• Continuously monitor and assess the effectiveness of security controls and processes.
• Perform the information security compliance tasks such as ensuring IT activities, processes, and procedures meet defined requirements, policies and regulations.
• Perform control assessments against enterprise cybersecurity frameworks and Scotiabank’s standards.
• Track, manage, and report on any internal or external cybersecurity-related issues.
Candidate Requirements/Must Have Skills:
1. 5+ years of experience in related cybersecurity technical background and exposure to cloud technologies (Azure, Google)
2. 3+ years of recent project experience with security governance, policies, cybersecurity frameworks, security standards, and regulatory compliance
3. 3+ years of experience with and strong knowledge of security controls/mechanisms (gap analysis)
4. Intermediate Excel skills (V-lookups, macro, etc.)
Nice-To-Have Skills:
1) experience with risk assessment techniques pertaining to complex data, application, and networking environments
2) Information security related certification (such as Security+, CISA, CISM, CISSP)
3) Recent relevant Financial Industry Experience
Soft Skills Required:
– Excellent communications and written skills.
– Comfortable putting together and presenting risk reporting to a US IS&C management.
– Candidate must be a team player and may be required to assist other team members in other security and IT risk tasks, as needed.
– Ability to manage assigned tasks and expectations without direct instruction or oversight.
– Fast, adaptable learner who can hit the ground running.
– Ability to work well under pressure while demonstrating strong professionalism.
– Willingness to learn new technologies and security-related information
Education:
Bachelors degree in related Cyber/ IT field or relevant experience